Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/pWtgnFiodYkjGeqj_HwI3Eyv-mY.roa
File: pWtgnFiodYkjGeqj_HwI3Eyv-mY.roa (raw, json)
Hash identifier: wK3mVEb3CkGFtsX3pHWa/8KIA158syOjOzOJpI+VkB0=
Subject key identifier: A5:6B:60:9C:58:A8:75:89:23:19:EA:A3:FC:7C:08:DC:4C:AF:FA:66
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 01840E3E0A095DE15A93B73403905FDD0689
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/pWtgnFiodYkjGeqj_HwI3Eyv-mY.roa
Signing time: Tue 25 Oct 2022 08:24:17 +0000
ROA not before: Tue 25 Oct 2022 08:24:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 45.10.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:3e:0a:09:5d:e1:5a:93:b7:34:03:90:5f:dd:06:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Oct 25 08:24:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a56b609c58a875892319eaa3fc7c08dc4caffa66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:b3:5c:09:83:9f:4f:c6:af:49:42:17:a9:c7:
c9:cb:c1:c2:69:d1:3f:11:15:8d:0e:b2:3a:3a:4e:
65:45:0e:ec:40:5f:8e:49:3c:d6:58:1f:b2:64:88:
6e:60:68:b5:6b:6f:48:aa:e5:93:6f:23:7d:01:80:
38:b6:76:dd:56:3b:57:cf:2a:d6:15:8b:75:4d:00:
6e:2b:62:68:aa:25:73:1e:f2:31:40:9c:04:1b:cf:
b6:ff:9c:ba:c3:64:1d:2c:41:be:0b:bd:43:84:72:
19:49:55:35:21:94:bd:71:58:2a:2e:8c:80:91:a1:
af:12:80:68:17:37:63:6c:03:73:47:9e:fd:26:b2:
ae:bd:9d:98:84:78:69:f1:3f:da:b7:89:a3:3e:03:
eb:7d:a1:da:e9:d8:ca:17:90:57:f8:a0:06:26:94:
14:7d:99:ba:6d:a4:59:7d:26:a4:d7:29:91:e8:13:
a9:08:60:13:9e:9a:e0:38:04:49:13:ed:92:8c:df:
25:67:ae:8a:ec:27:18:45:89:63:f9:d5:87:80:be:
45:1d:bb:51:b5:28:dd:7b:7c:66:4c:a5:f9:83:02:
51:7c:d2:25:df:54:90:b5:ca:64:d4:b8:4c:ef:72:
47:8d:07:ed:93:55:46:0f:af:7f:20:45:dc:cb:2f:
eb:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:6B:60:9C:58:A8:75:89:23:19:EA:A3:FC:7C:08:DC:4C:AF:FA:66
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/pWtgnFiodYkjGeqj_HwI3Eyv-mY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.150.0/24
Signature Algorithm: sha256WithRSAEncryption
17:b4:13:5b:9d:95:02:40:10:e3:70:a7:a3:c6:5f:33:9c:a5:
b6:4c:14:cb:27:75:75:dc:a1:35:fd:45:03:55:65:95:5b:42:
ab:d1:ac:da:93:e6:e7:e0:10:c8:4f:39:1b:08:e9:f9:bb:61:
52:1f:c6:b0:ad:30:34:fd:f6:bd:1c:cc:10:41:0b:84:83:64:
d2:52:15:ed:7a:85:57:c0:96:f5:1e:30:3f:5d:5a:b3:c8:6e:
0c:74:db:3f:54:f9:00:76:30:97:50:30:39:2d:ea:32:26:c7:
dc:f7:97:2c:43:17:70:f0:17:02:09:cd:3a:65:8e:41:51:5d:
97:13:5e:5e:7c:93:d9:03:16:49:e9:68:52:ba:63:02:99:c2:
57:68:4f:3a:c2:88:9c:1a:e5:ce:1a:a4:cf:39:cf:50:78:58:
e2:40:00:9f:6d:ab:9e:d1:84:ea:6a:34:dc:89:0c:53:04:6e:
ad:89:0d:ad:19:8e:f8:3f:0b:28:46:18:0d:2f:80:86:de:d5:
ac:ea:83:15:39:b2:30:91:13:1a:4e:e8:db:62:d8:96:75:1a:
5a:a6:4b:4d:cd:e7:a4:3a:72:eb:4f:f4:da:2b:79:16:d1:53:
1b:9b:be:96:67:a6:80:fe:60:6f:41:16:07:55:9d:21:04:ad:
a4:04:05:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org