Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/0w3GyaB95ew8YoObc_2QK8cTvGY.roa
File: 0w3GyaB95ew8YoObc_2QK8cTvGY.roa (raw, json)
Hash identifier: +XkeON4HLH99qeQkIUIFbULS9QZzsg4I1v7Vc5q0aq0=
Subject key identifier: D3:0D:C6:C9:A0:7D:E5:EC:3C:62:83:9B:73:FD:90:2B:C7:13:BC:66
Certificate issuer: /CN=49722a0ca8bbc94d48a5cb48ccc92efef845a7e3
Certificate serial: 05AC75F9
Authority key identifier: 49:72:2A:0C:A8:BB:C9:4D:48:A5:CB:48:CC:C9:2E:FE:F8:45:A7:E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SXIqDKi7yU1IpctIzMku_vhFp-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/0w3GyaB95ew8YoObc_2QK8cTvGY.roa
Signing time: Sat 01 Jan 2022 08:52:46 +0000
ROA not before: Sat 01 Jan 2022 08:52:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 45.81.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95188473 (0x5ac75f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49722a0ca8bbc94d48a5cb48ccc92efef845a7e3
Validity
Not Before: Jan 1 08:52:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d30dc6c9a07de5ec3c62839b73fd902bc713bc66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:4d:4a:45:f7:de:00:a2:6b:a0:42:88:aa:31:
4c:7c:ba:a7:3f:89:47:64:c6:2a:d6:50:e5:da:b4:
14:80:13:66:c2:d1:67:ff:e2:7f:5c:5e:41:01:d8:
8b:52:a2:41:15:95:57:ca:76:cd:e3:2b:a7:30:6c:
b0:8e:f7:aa:73:dd:7c:54:45:d7:32:63:4e:a3:49:
b2:a1:06:4c:0c:be:02:58:1f:0a:8d:90:55:57:c1:
94:93:3c:80:10:6d:07:e9:92:e8:68:d4:d6:f8:b5:
e6:78:5b:3d:f3:e3:22:61:78:ed:7c:0b:db:ca:4e:
11:d5:a5:0e:2a:c6:10:c7:75:ff:c8:f1:55:92:7e:
83:71:31:43:d7:16:e7:f8:4a:66:fc:75:bb:87:2d:
57:19:fc:a9:de:1e:28:3a:4d:2a:2d:3d:95:10:ca:
ef:f8:eb:8f:df:c1:de:32:5f:77:ff:9b:c0:7e:fd:
d9:30:b6:40:82:b2:07:ce:46:5a:d6:6a:41:28:da:
7c:25:58:4c:fe:99:5e:d5:07:fd:6c:da:33:8f:a7:
d5:25:ce:54:91:05:f6:17:e0:ef:65:3f:c9:83:ba:
1f:63:cd:38:73:60:9f:2e:0c:7e:bd:cb:4c:3c:5a:
85:cc:ee:7f:ea:0a:46:8e:6c:e4:9b:4a:38:13:8d:
6f:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:0D:C6:C9:A0:7D:E5:EC:3C:62:83:9B:73:FD:90:2B:C7:13:BC:66
X509v3 Authority Key Identifier:
keyid:49:72:2A:0C:A8:BB:C9:4D:48:A5:CB:48:CC:C9:2E:FE:F8:45:A7:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SXIqDKi7yU1IpctIzMku_vhFp-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/0w3GyaB95ew8YoObc_2QK8cTvGY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/ec5208-f695-4bdb-9bb2-e18fa658055a/1/SXIqDKi7yU1IpctIzMku_vhFp-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.232.0/22
Signature Algorithm: sha256WithRSAEncryption
2b:89:11:b7:73:37:1d:09:0b:fd:d6:7c:c4:fc:fd:f5:48:56:
66:67:51:6f:02:a6:f0:b3:af:6d:a1:f9:23:3a:e7:0e:69:55:
c9:15:14:8f:29:cb:66:58:80:37:67:3e:92:40:fb:50:ae:83:
0d:d3:01:53:c4:6a:29:b9:7d:12:a9:a2:d5:d4:4f:6c:a0:28:
36:79:55:7d:ef:27:a6:92:3e:9b:b0:e0:99:2e:c7:09:ca:15:
38:28:c1:37:f8:b2:6e:1f:4e:0c:f5:1e:1c:ee:38:a5:a2:f3:
79:ab:18:18:ed:f5:fb:1d:45:30:ba:66:39:4a:40:20:a0:15:
3f:19:6e:08:d4:c9:45:a7:e1:63:46:3b:90:6a:37:04:8c:ff:
2b:ed:8a:1c:67:7c:98:05:37:a1:56:00:73:30:1d:ca:69:41:
87:b0:98:ad:a5:bd:4c:8d:6c:16:5d:5f:e4:f8:07:1c:5f:18:
41:a7:24:fb:74:64:e0:08:bd:ea:cb:4e:34:26:5a:67:0b:0e:
8b:07:ff:bb:5e:83:30:5b:32:14:3e:76:41:9b:c1:41:7d:0c:
23:c4:63:44:4a:e4:3d:9b:ed:e1:23:b6:01:eb:7e:e4:4c:68:
d2:c4:4f:e4:a8:c2:4b:0e:9d:7d:1e:f1:ba:ae:a3:99:14:b8:
38:88:57:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:13 2024 by rpki-client on console-fra.rpki-client.org