Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/wAcfLWtHqMj7K19BDKqzMnAcFLY.roa
File: wAcfLWtHqMj7K19BDKqzMnAcFLY.roa (raw, json)
Hash identifier: x147XLrVazYbSIo+8RuosbZqjhgF6py9RYmaGtOTqXw=
Subject key identifier: C0:07:1F:2D:6B:47:A8:C8:FB:2B:5F:41:0C:AA:B3:32:70:1C:14:B6
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19D95377
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/wAcfLWtHqMj7K19BDKqzMnAcFLY.roa
Signing time: Sat 01 Jan 2022 15:56:43 +0000
ROA not before: Sat 01 Jan 2022 15:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 37406
IP address blocks: 45.148.27.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433673079 (0x19d95377)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c0071f2d6b47a8c8fb2b5f410caab332701c14b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:38:f7:ea:da:08:d4:4f:49:cb:cd:d2:eb:87:
67:8e:b7:6e:f4:83:d0:37:2b:72:78:34:5f:c4:f5:
c6:c5:df:b3:b3:2f:1e:3c:4f:fd:4a:00:89:91:e0:
b8:79:7a:64:93:ee:dd:d4:e2:2f:62:80:32:19:f7:
95:0b:47:2d:06:7c:8c:77:a6:c5:a1:fd:77:e1:22:
45:69:b3:e2:f5:4c:48:6f:b9:12:2f:ab:1b:e0:7c:
2f:34:d2:f5:0f:a3:74:9e:e7:f9:c9:23:b9:aa:80:
a1:f5:8b:de:1d:52:f2:6d:71:70:93:42:d7:39:ab:
31:ca:a6:6f:93:d3:b3:18:13:f5:c0:4a:2a:04:0e:
58:f8:b1:df:7d:13:88:08:cf:5a:ba:2b:91:89:3a:
13:3c:e2:8a:bc:6d:23:fa:e9:14:b9:5c:96:85:3a:
7d:d5:48:81:95:f2:6a:42:78:c3:62:3b:b8:99:72:
af:4f:01:bf:71:7b:c7:46:1f:01:0d:a5:64:9d:50:
d2:97:18:b3:f2:68:11:44:76:42:d5:0d:3c:71:71:
be:d9:0c:64:69:9a:ff:fd:29:35:23:af:09:e9:27:
5c:e2:88:33:4c:01:bf:c0:7f:00:c4:5b:a4:e7:ea:
c9:10:84:54:48:e4:b1:f1:b3:e1:74:2f:82:1b:bf:
fb:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:07:1F:2D:6B:47:A8:C8:FB:2B:5F:41:0C:AA:B3:32:70:1C:14:B6
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/wAcfLWtHqMj7K19BDKqzMnAcFLY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.27.0/24
Signature Algorithm: sha256WithRSAEncryption
05:93:86:b0:e1:7f:cc:a7:28:47:1b:53:df:f4:8f:f2:c9:d8:
c8:bc:45:16:8e:39:4e:3d:e6:bc:da:29:b4:78:f5:b4:81:83:
cb:69:8f:4d:52:35:02:73:c5:2f:23:92:11:85:61:e8:42:2e:
fd:72:44:ad:f2:0d:f3:22:e1:09:44:19:16:f9:b0:cc:8a:51:
bd:e1:e7:f7:f6:53:65:40:92:fe:ea:b8:82:e2:5c:9b:69:b3:
90:ea:df:8a:1a:1e:8b:3b:51:a4:53:be:ab:aa:60:a6:97:22:
a4:fe:4d:b4:e8:ce:d4:67:69:39:66:ae:fd:1f:d1:09:0e:a3:
05:3a:2e:8d:b3:ca:2d:68:0b:2c:19:d6:45:cb:58:18:7c:eb:
5c:dd:32:d3:84:10:52:c8:2b:0e:3f:9b:64:39:cd:2e:66:12:
c5:1a:83:ef:47:9f:19:31:3e:ae:36:13:1b:3c:47:01:5b:f6:
d2:88:d5:30:50:0f:6b:2c:80:8e:03:06:09:b9:09:57:76:49:
c5:cf:6f:e9:2b:ea:60:79:5a:15:11:18:a7:16:e0:c3:7d:bc:
fc:62:da:2e:83:2e:84:0f:af:13:c9:96:0d:8e:97:85:56:68:
08:02:e7:9c:b8:cc:6e:e7:c5:13:0e:2a:eb:be:b6:eb:b6:67:
de:46:c7:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org