Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/M0wCugnEAB_RhL-fdjmdYHY73gM.roa
File: M0wCugnEAB_RhL-fdjmdYHY73gM.roa (raw, json)
Hash identifier: AGNKoPpTLuMIZZvIA8cWabcwsPK/clZXzIcgwaNcZKY=
Subject key identifier: 33:4C:02:BA:09:C4:00:1F:D1:84:BF:9F:76:39:9D:60:76:3B:DE:03
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 094BA8E3
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/M0wCugnEAB_RhL-fdjmdYHY73gM.roa
Signing time: Sat 01 Jan 2022 06:00:37 +0000
ROA not before: Sat 01 Jan 2022 06:00:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208751
IP address blocks: 45.135.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155953379 (0x94ba8e3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=334c02ba09c4001fd184bf9f76399d60763bde03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:13:68:ee:d1:ba:3a:25:08:bd:df:03:b7:96:
60:18:e6:59:a3:c7:58:44:ec:1d:a5:69:28:b5:36:
f4:a9:ab:97:cd:a4:b6:fe:1c:a3:43:4d:da:48:d9:
eb:98:4e:ac:f0:bf:e2:28:45:df:71:1a:72:48:e6:
19:c4:f8:ac:cd:fb:2b:b9:51:50:3d:40:f1:47:80:
dd:82:7e:84:d4:65:24:00:56:dc:f5:a6:f9:60:e2:
03:b3:9d:0e:be:10:e0:d9:7d:35:c8:b6:18:34:f1:
83:6d:f4:3d:30:05:1f:c4:c2:f9:c8:47:f3:57:77:
fa:81:c2:af:98:69:37:41:a7:c2:06:c8:be:0b:1b:
68:f4:f0:05:83:f7:3d:7f:89:f8:0a:6f:aa:8d:86:
f1:25:6f:82:e5:c6:6b:78:bb:80:11:2b:a4:eb:28:
76:60:61:a2:8d:73:c9:13:b3:09:2b:80:cd:98:0e:
9a:8e:2d:82:da:fe:0c:04:35:a1:f3:66:d5:e7:34:
ec:b0:7d:9b:f5:6a:4e:9c:cd:7f:73:95:58:2a:d0:
1f:41:11:5d:b7:b0:24:ec:ee:7f:2c:9e:01:cb:63:
82:93:c0:3e:fd:d5:fd:3e:f7:3b:d6:1a:a1:1d:10:
70:20:f8:88:c1:55:a9:6c:36:cc:59:31:95:5b:96:
7e:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:4C:02:BA:09:C4:00:1F:D1:84:BF:9F:76:39:9D:60:76:3B:DE:03
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/M0wCugnEAB_RhL-fdjmdYHY73gM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.151.0/24
Signature Algorithm: sha256WithRSAEncryption
94:ef:dd:fc:47:10:9e:31:02:ee:8c:0e:53:7e:a0:4b:c4:2e:
30:bb:e0:1b:d9:38:0d:0c:0f:91:e1:a9:53:ca:0f:ab:e1:54:
ce:c7:e7:e0:91:2c:16:ce:32:ad:12:61:29:08:2c:12:6e:8c:
b9:1d:0f:8c:0e:61:ca:92:42:ba:6c:db:38:62:93:b4:20:f9:
28:15:80:91:45:79:8f:a6:bd:49:09:55:31:13:40:72:a3:66:
0d:e7:0f:8a:25:5d:5b:b7:b9:90:49:a2:52:ae:be:f7:32:0a:
12:c1:7b:0e:64:07:8c:15:2c:1f:fb:ba:16:9a:d6:4f:93:f7:
f7:6a:6d:89:8b:d3:3d:17:d3:50:10:ef:0d:4a:f0:4b:cd:73:
bb:aa:f8:c4:8f:3d:15:78:fc:c3:2f:84:ac:49:b4:3b:34:f9:
98:38:c7:7d:23:81:8d:60:62:6b:d5:ec:5a:3c:6b:cf:bc:b3:
ca:83:21:52:6c:c3:6d:82:04:2b:6f:f9:a4:e4:7b:17:aa:ff:
0e:03:f0:76:60:76:a6:c2:b0:9a:13:c0:cb:65:39:db:43:80:
30:71:63:d2:0e:92:0d:a5:9b:45:22:7b:71:b6:c6:f4:44:c9:
8c:1a:4e:2a:a4:89:f2:63:e0:ea:99:3b:65:83:b5:bc:bb:2a:
8b:e6:75:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org