Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Mc2vaVIsCy47xHl_7Q2DghHrAq8.roa
File: Mc2vaVIsCy47xHl_7Q2DghHrAq8.roa (raw, json)
Hash identifier: cXZPgofRFt0GbxD2xZR+UZ/Ar7eTYMvRXFl9jUfSVJA=
Subject key identifier: 31:CD:AF:69:52:2C:0B:2E:3B:C4:79:7F:ED:0D:83:82:11:EB:02:AF
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 018393D7AC58721CDD9A663E2CECE03BA945
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Mc2vaVIsCy47xHl_7Q2DghHrAq8.roa
Signing time: Sat 01 Oct 2022 13:58:48 +0000
ROA not before: Sat 01 Oct 2022 13:58:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396998
IP address blocks: 45.134.36.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:93:d7:ac:58:72:1c:dd:9a:66:3e:2c:ec:e0:3b:a9:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 1 13:58:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31cdaf69522c0b2e3bc4797fed0d838211eb02af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8f:b3:b7:88:73:ec:8b:1e:86:62:67:98:1c:
44:cb:5b:07:5f:cf:bb:81:03:3d:c0:e4:3e:6c:34:
d6:47:31:6b:69:60:09:69:21:f0:09:39:f9:c4:e8:
28:0a:9c:8a:35:66:b5:e9:43:bf:70:1f:fb:64:12:
ff:a0:d3:ed:de:bd:f4:e7:21:60:ac:c9:77:6e:f7:
51:40:7a:54:b5:97:95:cc:44:b5:18:ef:45:33:0d:
41:4c:03:26:e0:0b:67:94:69:76:b2:b6:3a:37:a9:
30:8c:51:de:68:3c:72:e4:eb:f7:76:d0:c9:89:b6:
40:b1:9a:49:d0:d3:51:d2:9e:6e:bc:42:9a:31:7c:
54:cf:bb:db:46:6a:3f:59:c3:12:c2:6e:db:8a:db:
a9:ee:30:83:2e:5d:eb:eb:ae:dd:8a:53:98:eb:89:
89:cb:9c:61:9b:d6:ba:20:2c:70:a9:0e:dd:2a:eb:
30:61:e2:4c:90:94:0d:28:98:17:cc:d0:57:45:b6:
cf:3d:7c:d5:9c:65:d7:3e:b8:a7:d5:c6:ea:6d:50:
21:bc:c5:80:a6:23:70:aa:a2:f2:56:66:20:38:9c:
ad:51:be:8c:ac:09:ff:a5:a6:d9:2d:bd:72:1e:79:
6d:1a:84:77:ea:67:cf:9e:46:3e:96:a1:11:1e:41:
8c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CD:AF:69:52:2C:0B:2E:3B:C4:79:7F:ED:0D:83:82:11:EB:02:AF
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Mc2vaVIsCy47xHl_7Q2DghHrAq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.36.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:c1:8c:5d:a6:38:8e:61:4d:4a:e3:75:19:97:1c:6f:38:11:
8b:39:12:a2:2c:42:fb:1f:79:34:cb:68:74:43:9d:b5:4b:85:
88:73:d8:ea:56:84:8d:d9:f1:54:3e:49:68:ed:e5:99:7d:e0:
ae:cb:40:0d:cc:2c:30:15:aa:b5:bd:f8:44:19:9b:0a:ba:73:
65:c2:08:0a:3d:ba:95:28:15:46:65:9d:2b:2a:b6:ff:ee:37:
e4:c3:28:20:3a:32:15:99:ff:38:e8:2a:8d:d3:8a:1a:a3:13:
3f:5b:30:98:ce:e3:1d:ed:f9:ce:00:91:df:0b:6d:76:75:82:
d0:d1:19:05:db:2e:e5:47:7e:c4:b5:98:64:09:37:53:13:41:
af:c1:c1:aa:32:83:cf:fe:5a:3d:42:1b:59:fe:db:bc:d7:d6:
44:cb:d2:48:ee:7c:7f:9d:cb:5b:cc:38:cd:e5:ff:8f:b1:0f:
f1:0d:19:0a:5a:d6:4c:87:a4:55:ca:66:a6:5d:fc:52:e5:96:
34:0b:9c:c8:72:7c:92:da:32:2c:b7:97:50:f7:4c:72:a7:25:
ee:c2:7f:21:7f:c9:3b:b6:76:e7:8a:48:4a:33:31:1f:47:5f:
9b:f5:3c:33:07:e5:b5:62:ce:b1:5e:54:15:a7:69:a2:d7:e5:
32:31:6d:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org