Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/MBF3KeVjxu4ICzTPuMX6LJ4vhWM.roa
File: MBF3KeVjxu4ICzTPuMX6LJ4vhWM.roa (raw, json)
Hash identifier: iVBjYTOKHD3Y1/K4R3mw9B4AgW2jEgy0detR7cZdNIw=
Subject key identifier: 30:11:77:29:E5:63:C6:EE:08:0B:34:CF:B8:C5:FA:2C:9E:2F:85:63
Certificate issuer: /CN=2ac943517f5e3b747e7530320789a03444b43912
Certificate serial: 7E3ABE
Authority key identifier: 2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/MBF3KeVjxu4ICzTPuMX6LJ4vhWM.roa
Signing time: Sat 01 Jan 2022 02:58:07 +0000
ROA not before: Sat 01 Jan 2022 02:58:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206176
IP address blocks: 45.135.58.0/23 maxlen: 23
45.135.56.0/23 maxlen: 23
45.135.56.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8272574 (0x7e3abe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac943517f5e3b747e7530320789a03444b43912
Validity
Not Before: Jan 1 02:58:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=30117729e563c6ee080b34cfb8c5fa2c9e2f8563
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:47:cd:4a:d2:2c:27:88:12:32:d5:86:7a:4e:
ab:19:64:cd:10:ed:a8:ae:bf:ab:8a:ac:81:0b:ee:
19:ac:c9:a2:13:26:0e:c0:84:fd:0a:39:60:85:ad:
05:8e:a1:51:d6:1f:2c:88:87:db:45:aa:5b:68:fd:
1c:db:20:de:fe:86:2a:43:f5:c0:95:37:64:c9:92:
37:d2:b7:e9:b8:11:df:04:a9:36:f0:d5:12:bb:b0:
e8:c3:d7:41:79:e8:bd:e1:b1:be:66:eb:b7:e7:08:
e4:e6:86:27:e7:bc:81:f3:70:39:a4:67:cb:72:72:
12:6c:4d:38:21:62:4e:0c:9b:50:ac:5d:a4:29:96:
2d:19:39:2f:0c:5c:61:5a:6c:26:f5:39:41:16:66:
f5:6d:07:f4:c3:3d:66:7f:74:9b:9b:bc:40:77:a1:
53:0a:fc:3f:ab:1e:69:23:8a:18:37:67:f0:07:97:
ac:6a:12:aa:e7:30:47:7a:b7:1a:00:12:db:6c:8f:
c8:95:7a:ec:a5:3c:27:44:bb:fd:76:4c:8f:b7:73:
1b:cb:96:25:22:dd:d5:23:c5:53:0d:c5:47:e7:11:
4c:01:05:3e:2b:2a:70:da:cb:3f:c4:63:e3:e2:ae:
f2:f2:f8:12:85:4e:c4:1f:24:34:03:88:95:d8:09:
cf:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:11:77:29:E5:63:C6:EE:08:0B:34:CF:B8:C5:FA:2C:9E:2F:85:63
X509v3 Authority Key Identifier:
keyid:2A:C9:43:51:7F:5E:3B:74:7E:75:30:32:07:89:A0:34:44:B4:39:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KslDUX9eO3R-dTAyB4mgNES0ORI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/MBF3KeVjxu4ICzTPuMX6LJ4vhWM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/19511d-537e-4241-a0d8-2d91cfd7aaf4/1/KslDUX9eO3R-dTAyB4mgNES0ORI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.56.0/22
Signature Algorithm: sha256WithRSAEncryption
42:07:55:00:b3:16:5d:d7:10:83:2c:2e:4c:2a:1e:2a:77:c5:
0d:2d:b6:dc:8f:a6:a0:11:62:c5:2f:a3:08:60:c7:96:da:4d:
57:a6:1b:ab:30:85:a8:64:97:64:f0:21:04:fa:89:7c:da:84:
70:05:57:62:0e:d0:2c:3a:c1:56:4d:d2:52:0b:eb:f6:64:52:
cf:d5:d2:68:5c:fc:08:c0:59:b0:74:1f:3c:76:c0:c0:d8:b9:
ab:b9:f3:73:c0:8e:f2:8b:cf:87:bf:c1:b7:47:b7:d0:6a:35:
bb:a5:6e:21:e0:17:02:7d:6c:e1:a8:c4:c4:d7:8f:99:37:ef:
ae:64:e4:96:d5:6e:3c:d4:dc:d0:6b:72:4f:bc:bf:3e:37:99:
df:ce:70:59:95:98:f8:5f:b3:74:6e:bf:5b:40:6c:91:90:74:
c0:3b:5f:d4:d7:a8:1d:59:f7:4d:56:83:4b:1a:ed:80:5d:21:
ec:39:b8:c5:cb:1a:2d:4c:e9:4d:59:8c:bc:e4:5f:f6:b8:7c:
3c:f7:d0:13:bc:1d:7c:44:ed:fb:62:0d:69:f8:75:ba:81:7b:
9d:10:6a:ad:7c:a1:53:4a:2f:13:4f:6f:97:66:30:68:de:fa:
0c:3c:e0:95:5f:7f:62:9e:5a:f5:06:7a:63:c1:47:0b:18:7c:
b5:ff:01:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:18 2024 by rpki-client on console-fra.rpki-client.org