Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FIdhwAiTbSauTmwMKrxg8gUoxrk.roa
File: FIdhwAiTbSauTmwMKrxg8gUoxrk.roa (raw, json)
Hash identifier: slN0G5xYtaMBv95hRpWT/taPihceO6HXAXmxLJpUYrI=
Subject key identifier: 14:87:61:C0:08:93:6D:26:AE:4E:6C:0C:2A:BC:60:F2:05:28:C6:B9
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19D3C8ED
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FIdhwAiTbSauTmwMKrxg8gUoxrk.roa
Signing time: Sat 01 Jan 2022 15:56:41 +0000
ROA not before: Sat 01 Jan 2022 15:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.149.72.0/22 maxlen: 22
45.148.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433309933 (0x19d3c8ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=148761c008936d26ae4e6c0c2abc60f20528c6b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:db:bf:43:00:ca:8e:bb:9e:fe:4b:ce:79:f8:
73:7e:cf:c4:f4:4d:1d:13:e0:81:3e:45:15:d5:cc:
79:59:0e:2c:c4:4a:42:ce:1f:c8:3c:69:89:17:82:
e5:f2:97:0d:ea:ff:61:b8:9e:85:f2:02:5a:51:c5:
39:fe:41:de:c6:13:9a:7e:43:ad:8a:11:87:33:d7:
a5:81:47:b5:c5:07:b8:52:16:fb:5a:06:18:71:f8:
63:a2:13:26:71:2c:98:2a:1c:02:0a:1e:fa:bf:64:
15:60:6c:d7:16:f2:6f:71:af:47:ea:ad:1e:71:09:
7f:9a:91:75:0d:47:1e:f6:2a:4f:86:ee:ad:4f:17:
b8:f6:d4:1a:fe:b0:b5:ec:15:98:07:2f:7b:c8:62:
7a:66:ae:28:9f:95:a6:8e:c1:20:61:e6:b6:99:8f:
1b:09:34:b4:a5:29:63:13:04:86:93:23:50:4e:cc:
9d:32:80:ed:86:3c:24:29:0b:d8:63:0c:a0:51:28:
8f:eb:34:75:5b:81:76:ec:0f:c1:23:9e:59:c3:6c:
bc:32:b3:61:46:2f:5d:0b:28:10:92:53:ff:6b:d9:
e1:63:af:d3:c0:99:89:76:4c:3f:d1:4e:f8:ce:2f:
a9:9f:71:7f:dc:86:52:b7:1b:40:b4:eb:88:b0:e1:
b3:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:87:61:C0:08:93:6D:26:AE:4E:6C:0C:2A:BC:60:F2:05:28:C6:B9
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FIdhwAiTbSauTmwMKrxg8gUoxrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.252.0/22
45.149.72.0/22
Signature Algorithm: sha256WithRSAEncryption
a2:c9:03:a2:bb:c6:d1:3c:20:a4:18:e3:50:82:55:c6:46:bd:
20:75:5f:8b:65:b7:26:e7:60:68:47:80:d1:ae:1d:d7:3e:2c:
fb:3e:36:5c:83:c1:95:dd:52:b6:48:59:7e:e4:5d:4c:72:a4:
34:d6:21:5f:7d:ab:44:13:13:4b:36:25:62:ba:61:c4:34:31:
dc:9a:61:09:94:0e:0b:94:fd:a8:f7:f9:fd:65:dc:c2:b1:5f:
68:de:a2:56:81:5c:88:cf:0d:73:05:c2:56:ab:85:2a:72:0b:
3c:f1:0c:dd:09:d1:98:08:3d:73:0e:b7:fb:a9:7b:38:ca:62:
01:7f:fe:43:be:dc:5b:88:d5:d3:c0:97:0a:61:bd:f4:20:59:
e1:fc:b1:4e:10:39:ea:ec:e0:09:af:d6:1a:15:63:64:00:03:
a3:04:94:41:4c:6d:fd:a8:c1:44:cc:69:ed:d1:75:f5:0d:15:
83:a7:6b:e0:3c:d8:f1:3a:ed:07:2a:86:4f:6a:85:67:75:6a:
80:e8:67:c7:26:8c:ec:b2:80:46:f1:a6:3f:fa:a9:0b:4b:c7:
e6:a8:70:e6:bd:bc:a7:70:53:61:52:78:58:a5:c8:5d:fd:06:
6a:9c:d7:54:02:1a:02:6f:72:d0:59:1f:cb:5b:fa:e4:d0:df:
9a:19:24:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org