Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/eDWCDV0rIn6zu6VNtddvKbtzRaA.roa
File: eDWCDV0rIn6zu6VNtddvKbtzRaA.roa (raw, json)
Hash identifier: FHP9Pa7n0fmNaeQa4zdaJt4Ya6Ik35B6iRS36KwCaLk=
Subject key identifier: 78:35:82:0D:5D:2B:22:7E:B3:BB:A5:4D:B5:D7:6F:29:BB:73:45:A0
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01840F838A88C2FE30BEDF38DCDFDB12A16A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/eDWCDV0rIn6zu6VNtddvKbtzRaA.roa
Signing time: Tue 25 Oct 2022 14:19:49 +0000
ROA not before: Tue 25 Oct 2022 14:19:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199524
IP address blocks: 45.130.137.0/24 maxlen: 24
45.130.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0f:83:8a:88:c2:fe:30:be:df:38:dc:df:db:12:a1:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Oct 25 14:19:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7835820d5d2b227eb3bba54db5d76f29bb7345a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:4f:a1:de:9f:60:b6:eb:f2:c7:2a:8d:6b:45:
19:b0:b4:bb:32:0a:be:d4:f2:86:b7:3b:a7:fa:64:
e7:b1:8a:88:61:69:96:be:29:62:a1:2c:de:70:97:
23:39:06:79:40:35:81:83:06:89:6d:14:51:12:76:
3a:3d:c7:0a:20:14:36:c9:0d:87:1f:33:ac:eb:8c:
fb:2a:04:fb:55:fb:4c:cf:0a:cb:0a:6d:89:b0:a2:
b1:cf:05:a8:ec:2f:c3:43:a5:9c:c3:aa:25:0d:24:
63:5a:94:58:9c:e4:a7:99:b7:a9:2b:ba:5e:87:e3:
18:df:34:bd:76:c8:d3:5a:bb:4d:e4:76:6e:d1:45:
0b:ad:b8:f2:35:81:91:31:96:7b:b0:00:ff:29:77:
6c:75:ac:f8:fe:ac:1a:e1:44:cc:32:9d:de:2b:45:
0b:ab:5b:bf:c5:b8:e2:8d:c2:de:10:50:d9:c5:7b:
91:7f:d3:60:ec:1b:88:0e:9b:f5:8a:c5:91:b3:c6:
f5:1f:8c:a9:8d:88:20:1a:26:92:a9:22:fb:9c:87:
5a:75:84:69:92:e1:5d:5e:60:72:bc:dc:e9:d8:1d:
60:b2:db:46:4c:4b:8a:97:d8:cd:a5:f9:58:49:0d:
01:c9:72:e9:1c:3e:30:bb:52:57:ce:26:62:95:9c:
e5:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:35:82:0D:5D:2B:22:7E:B3:BB:A5:4D:B5:D7:6F:29:BB:73:45:A0
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/eDWCDV0rIn6zu6VNtddvKbtzRaA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.137.0/24
45.130.139.0/24
Signature Algorithm: sha256WithRSAEncryption
b1:57:00:8a:47:b5:d0:e3:7b:21:00:20:2a:f2:e7:bc:0a:39:
f4:34:5c:85:1e:90:41:03:61:ba:c7:6a:69:85:b3:01:1e:fa:
32:d8:c4:a1:cb:d6:a0:9e:34:67:09:1e:53:14:6f:c1:3f:4f:
69:a0:0a:7b:43:8c:5c:30:77:82:1e:4a:46:76:a6:b5:73:81:
a3:26:9c:06:fc:79:6c:03:90:33:0c:a9:14:84:dd:69:f4:24:
66:18:b4:37:c6:2c:fd:5e:63:2e:54:46:5d:aa:03:f5:7f:2b:
28:d8:0d:c9:dc:83:cc:72:46:ee:67:e6:c8:24:73:43:66:2e:
11:04:26:0e:21:43:bb:f6:9f:78:5c:f6:4c:1b:67:03:71:bb:
3b:06:67:0f:d3:3c:b8:2d:3a:c8:46:ad:ff:3e:da:90:4a:2b:
8c:79:c5:c0:3a:13:f2:3d:07:df:77:f6:b6:93:cb:08:78:e8:
d6:df:cf:7a:90:cc:77:54:73:b6:87:fa:76:04:16:d9:f9:cd:
40:fd:ca:3a:c2:9d:ea:36:c6:e1:2f:46:8f:ac:77:df:00:0c:
4b:28:21:dd:38:29:2d:cf:38:4d:fb:11:87:d4:22:3a:3e:08:
88:88:ab:f7:08:25:5c:65:0b:a5:db:1f:9c:b8:5d:70:5b:3a:
65:e8:f0:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-fra.rpki-client.org