Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XW0q25k8R7Pc357yznD1HE2tA0k.roa
File: XW0q25k8R7Pc357yznD1HE2tA0k.roa (raw, json)
Hash identifier: LyxISuOrV2tw+QPo7kqAB6jpy2mLx0BVidS+2237jOg=
Subject key identifier: 5D:6D:2A:DB:99:3C:47:B3:DC:DF:9E:F2:CE:70:F5:1C:4D:AD:03:49
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 08F3C7A4
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XW0q25k8R7Pc357yznD1HE2tA0k.roa
Signing time: Sat 01 Jan 2022 16:00:06 +0000
ROA not before: Sat 01 Jan 2022 16:00:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9332
IP address blocks: 185.227.71.0/24 maxlen: 24
45.90.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150194084 (0x8f3c7a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d6d2adb993c47b3dcdf9ef2ce70f51c4dad0349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0d:c7:04:cd:26:45:8b:b8:22:7f:c6:56:d4:
4a:da:96:05:c3:78:cb:0c:36:b4:24:9c:dc:6b:8b:
09:36:16:ff:9c:53:69:ce:c1:a0:fd:41:c6:c1:b2:
2e:74:79:3b:2a:65:cb:7d:92:4b:0e:bf:ee:68:63:
71:c9:de:10:df:e7:77:97:a9:d4:e8:cb:85:85:18:
28:d8:08:b0:b5:61:b2:aa:e6:d5:13:69:35:88:aa:
74:70:fd:19:7c:f5:2c:e4:21:5e:a6:2d:ff:98:37:
2a:c4:24:54:82:4b:5d:41:98:bb:d0:b7:ec:d5:fc:
4e:e8:84:93:21:e7:a2:fa:b7:93:d0:0f:2c:22:ca:
30:31:c8:b5:80:d2:a3:02:c0:b4:a5:eb:06:99:43:
ed:c8:f6:3f:77:81:de:36:ce:f3:79:d0:ff:75:b1:
a7:a2:bf:1a:b9:e3:53:05:6c:96:ee:b3:f4:e9:bb:
b7:41:ce:fb:49:97:79:86:a4:28:c3:fc:eb:cb:ad:
b4:9d:fc:26:c1:7e:da:16:a5:88:53:3d:e6:28:ac:
4c:ea:12:61:42:74:06:f9:c8:48:6a:5b:4b:f4:8d:
ad:48:d8:0e:1c:67:ee:01:04:9a:ee:50:20:64:60:
2a:32:40:e7:c5:a8:05:45:d1:1c:ab:6c:fc:67:fc:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:6D:2A:DB:99:3C:47:B3:DC:DF:9E:F2:CE:70:F5:1C:4D:AD:03:49
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/XW0q25k8R7Pc357yznD1HE2tA0k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.145.0/24
185.227.71.0/24
Signature Algorithm: sha256WithRSAEncryption
8e:ca:af:0d:6d:60:44:b5:d4:3a:8e:11:4c:8b:4b:93:47:2d:
a0:4b:ed:1a:0f:c1:42:03:a8:be:70:f0:87:12:2c:41:73:7c:
6b:cb:75:31:3b:fb:47:aa:1b:86:cd:21:11:43:78:75:47:8d:
0e:28:1a:aa:cf:68:9a:ea:b6:ee:ed:a2:97:85:93:fb:99:9b:
2c:e9:1e:00:ac:ae:4d:86:0b:34:af:12:ba:94:d1:ae:9a:a6:
20:3f:12:73:39:ee:89:21:3f:c0:a7:95:39:6e:b4:e2:64:20:
f1:de:e8:a1:0e:9d:2f:c3:5c:7e:64:b0:20:5a:d0:a5:f5:8f:
4b:98:9d:87:3f:ef:2b:a0:94:02:12:6f:d7:05:66:9f:a7:85:
ef:35:3d:dd:12:b0:3b:e4:e8:c4:3d:5e:4d:5d:96:9d:99:d9:
5e:1e:64:77:a3:28:21:b0:02:28:99:93:3b:f7:df:3a:79:40:
19:fe:64:54:03:b9:04:40:da:dd:b6:4d:f1:29:6d:4e:81:15:
f0:f9:41:49:fd:dc:91:b7:4f:ff:85:eb:72:dc:f6:ee:b1:a9:
1d:7b:e5:22:69:88:48:c6:a9:a1:2f:4b:9d:7a:0f:a1:d0:5e:
77:b5:7c:e5:5e:ba:7e:d1:54:cd:3a:72:fb:e4:f4:83:9d:63:
24:b4:7a:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:39 2024 by rpki-client on console-ams.rpki-client.org