Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/8vqZFVFqygRXvhfieX9elYOhlCI.roa
File: 8vqZFVFqygRXvhfieX9elYOhlCI.roa (raw, json)
Hash identifier: j/aUHf/vGs082NEvmobj+pthPjPs2LTjhrVIPvfOAik=
Subject key identifier: F2:FA:99:15:51:6A:CA:04:57:BE:17:E2:79:7F:5E:95:83:A1:94:22
Certificate issuer: /CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Certificate serial: 0701BD79
Authority key identifier: 89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/8vqZFVFqygRXvhfieX9elYOhlCI.roa
Signing time: Sat 01 Jan 2022 04:52:45 +0000
ROA not before: Sat 01 Jan 2022 04:52:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60917
IP address blocks: 45.158.0.0/24 maxlen: 24
45.158.3.0/24 maxlen: 24
45.158.0.0/22 maxlen: 22
45.158.2.0/24 maxlen: 24
45.158.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117554553 (0x701bd79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89acb8893e94180747eec1975ed5604c4ddbe0c5
Validity
Not Before: Jan 1 04:52:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f2fa9915516aca0457be17e2797f5e9583a19422
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e2:64:53:7f:81:39:dc:a7:0f:2b:38:57:31:
04:7a:17:ce:91:01:0c:87:4d:23:af:b4:db:9a:49:
b1:c4:28:8b:d6:f6:2d:cb:87:91:d8:6b:f3:52:82:
4c:52:2d:c9:3a:6a:f4:31:9e:64:39:bc:15:c9:ec:
56:2b:ab:4a:5b:2a:72:3f:7d:80:b4:8f:aa:d9:50:
51:d5:3e:b8:bb:dd:94:5a:b0:73:12:08:71:f0:ff:
2f:db:99:37:41:e2:94:b8:e2:96:25:e5:4e:7f:4d:
b8:5a:f9:4f:3e:95:68:79:01:3e:3b:ec:90:f0:5d:
2c:c1:74:44:c5:a5:28:09:c5:e2:3f:09:b8:a5:61:
66:be:88:96:da:d9:91:d4:38:00:18:7b:43:a2:f8:
09:6b:ac:4b:07:99:e7:d6:01:f2:ad:8a:2f:95:04:
49:f7:75:d4:60:ce:54:db:72:95:20:fb:03:1a:ce:
ce:f5:50:f8:4d:b8:a9:9e:f3:17:6d:0a:fb:49:5f:
8d:94:cd:d4:90:44:b0:23:fd:a9:52:ff:86:c8:12:
84:ba:30:03:d7:18:52:06:89:ef:fe:b9:e8:ca:56:
89:a4:ad:93:9e:ec:b3:0f:7e:97:24:df:24:9b:a6:
69:61:c1:56:53:ef:53:6b:70:4a:e7:ec:ed:57:42:
b6:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:FA:99:15:51:6A:CA:04:57:BE:17:E2:79:7F:5E:95:83:A1:94:22
X509v3 Authority Key Identifier:
keyid:89:AC:B8:89:3E:94:18:07:47:EE:C1:97:5E:D5:60:4C:4D:DB:E0:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iay4iT6UGAdH7sGXXtVgTE3b4MU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/8vqZFVFqygRXvhfieX9elYOhlCI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/0cd4be-247f-4de2-938c-f0cd8bb552e0/1/iay4iT6UGAdH7sGXXtVgTE3b4MU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.0.0/22
Signature Algorithm: sha256WithRSAEncryption
18:f0:da:46:46:19:ea:c2:7c:72:4c:95:7c:e8:38:00:9e:0a:
46:96:0c:0f:97:20:85:41:09:46:d5:7c:fd:91:7f:18:79:5c:
22:12:d3:03:b0:7a:be:54:fd:59:5d:25:d4:79:8e:31:2b:9d:
01:63:96:29:30:ed:a5:1d:c0:44:92:e9:3d:bb:ed:5b:71:ec:
11:e6:94:0f:bb:0c:aa:88:4b:c2:80:0e:26:f7:64:8d:f9:c9:
4f:87:d0:ee:48:c8:41:18:09:ff:84:50:c5:d8:32:50:fa:ae:
60:1d:4c:d0:c3:c0:db:b1:c9:d1:e9:16:4a:a1:cd:9a:2d:7c:
99:df:d2:74:f9:10:39:a9:90:f4:af:3c:17:54:ce:44:ff:c3:
9f:93:e6:2a:98:17:45:bf:eb:15:75:da:a3:23:5a:e1:22:8c:
19:f0:a0:b6:3d:f6:38:39:6c:06:84:6b:1b:99:ca:0b:92:f5:
c0:eb:cc:8d:39:ed:9b:ba:00:33:f4:61:83:0f:5f:6d:f6:7a:
72:7f:b4:34:33:e7:08:b1:c1:e1:36:70:bc:f5:e5:27:9c:d5:
78:2e:be:b3:c6:cd:94:6d:44:9b:ad:17:fe:3c:d9:c6:18:4a:
3c:24:77:4e:1d:d1:23:d3:72:68:f2:fa:b3:e4:d7:8f:f3:84:
81:05:b6:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org