Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6b1e95-bc53-48ca-a1ee-b543f853ff25/1/HOEWJhrafNSpI7h9fzoUP5La_NM.roa
File: HOEWJhrafNSpI7h9fzoUP5La_NM.roa (raw, json)
Hash identifier: Z3hhLtsayEFja1UmySo8jTwzP5vKXCs6PYWPFYR7xLM=
Subject key identifier: 1C:E1:16:26:1A:DA:7C:D4:A9:23:B8:7D:7F:3A:14:3F:92:DA:FC:D3
Certificate issuer: /CN=d834ed2f9e2cef4701021e75ff454164fedc7c51
Certificate serial: 294B3D
Authority key identifier: D8:34:ED:2F:9E:2C:EF:47:01:02:1E:75:FF:45:41:64:FE:DC:7C:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2DTtL54s70cBAh51_0VBZP7cfFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6b1e95-bc53-48ca-a1ee-b543f853ff25/1/HOEWJhrafNSpI7h9fzoUP5La_NM.roa
Signing time: Sat 01 Jan 2022 01:03:19 +0000
ROA not before: Sat 01 Jan 2022 01:03:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199738
IP address blocks: 45.8.48.0/24 maxlen: 24
45.8.48.0/23 maxlen: 23
45.8.49.0/24 maxlen: 24
45.8.50.0/23 maxlen: 23
45.8.50.0/24 maxlen: 24
45.8.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2706237 (0x294b3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d834ed2f9e2cef4701021e75ff454164fedc7c51
Validity
Not Before: Jan 1 01:03:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ce116261ada7cd4a923b87d7f3a143f92dafcd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6f:b5:36:33:ed:d1:4c:28:1d:49:87:c8:80:
3f:1d:5a:e7:bd:9d:6c:fb:66:a4:fb:00:75:a8:0d:
96:5d:31:63:bb:3c:0a:6f:66:7d:03:ed:da:57:78:
a3:8b:96:57:f3:fc:47:16:e6:d2:45:74:25:9a:b1:
55:d8:de:19:fa:d6:2c:d0:1c:00:79:f4:0f:6f:76:
f9:a9:ec:c1:0e:bc:7c:c1:c4:fb:d6:1d:af:73:77:
36:30:0e:7d:8f:b1:ac:0e:3d:42:53:a9:75:02:0a:
ed:cb:a6:bb:b0:15:6b:4b:ec:e1:88:f1:65:7d:42:
29:dc:6c:31:4e:b4:60:0c:98:f5:1f:94:17:8b:b1:
0c:67:89:88:56:29:72:c4:40:fe:37:1a:da:86:0b:
1a:bf:1a:ad:8e:a4:6e:65:d5:a0:37:7e:61:37:b2:
4e:fc:25:e6:0a:f0:58:1b:98:42:f0:93:4e:f7:50:
21:bf:7d:3e:cc:38:1d:2f:73:96:49:d8:2b:e9:f0:
d9:ad:f1:09:ae:bb:f2:a6:2a:a9:65:96:48:49:ff:
dd:02:a1:99:e7:2c:98:e3:cf:31:61:3a:03:26:a4:
e7:ac:bf:de:6e:15:3f:37:08:8b:7d:57:e9:5a:7c:
91:93:19:82:67:e5:1d:ba:df:27:c4:5d:2d:36:ba:
a3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:E1:16:26:1A:DA:7C:D4:A9:23:B8:7D:7F:3A:14:3F:92:DA:FC:D3
X509v3 Authority Key Identifier:
keyid:D8:34:ED:2F:9E:2C:EF:47:01:02:1E:75:FF:45:41:64:FE:DC:7C:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2DTtL54s70cBAh51_0VBZP7cfFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b1e95-bc53-48ca-a1ee-b543f853ff25/1/HOEWJhrafNSpI7h9fzoUP5La_NM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6b1e95-bc53-48ca-a1ee-b543f853ff25/1/2DTtL54s70cBAh51_0VBZP7cfFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.48.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:41:57:63:00:02:b8:f2:c6:7e:01:20:f7:1e:d4:a2:4d:fc:
b1:fe:4b:1a:b6:3d:bd:d7:32:35:b8:47:9d:3d:8b:56:47:d9:
be:b7:2d:a3:97:a7:a9:16:0c:3d:43:2b:22:05:e8:16:11:5e:
e5:08:36:d5:d1:a5:f5:55:6b:2c:06:c0:97:e7:99:62:2f:0a:
ab:22:4a:66:1f:0b:8a:92:25:1d:53:6d:52:46:31:5c:73:0f:
50:40:0e:0b:bd:b8:ff:f8:ea:f5:03:6c:93:cf:a2:ee:30:67:
06:4c:7b:55:29:d2:6d:8b:f3:ed:07:03:7b:d3:df:f0:c6:ea:
d7:61:ca:db:35:d8:db:88:f9:c9:36:e1:3b:25:eb:32:d0:a5:
53:7f:53:b0:1c:da:4d:62:57:55:d7:6b:d2:a4:37:79:0d:ab:
cd:aa:e7:c7:36:e3:23:a9:4b:ff:2e:ee:79:8d:4f:67:6b:f0:
65:b1:12:23:fb:2f:3b:fb:11:2d:e0:b3:18:75:43:e8:7f:8a:
80:37:7f:5c:53:57:ad:f5:4e:0e:09:b1:ae:37:12:65:3c:44:
80:89:c9:c9:38:97:81:79:90:77:f6:b0:0b:2b:19:b3:b2:ad:
3c:f9:75:82:7c:65:87:56:99:3c:07:ff:eb:7b:62:0d:4d:ad:
f2:f0:e5:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:47 2023 by rpki-client on console-fra.rpki-client.org