Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PwnUe2aoVsQmQIZ41mCTkhL0w1k.roa
File: PwnUe2aoVsQmQIZ41mCTkhL0w1k.roa (raw, json)
Hash identifier: Mr0xfA5Bjs5/uhyyC6/skMa9MBTH9O8KGbqd4UwDCgA=
Subject key identifier: 3F:09:D4:7B:66:A8:56:C4:26:40:86:78:D6:60:93:92:12:F4:C3:59
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 4E32D9
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PwnUe2aoVsQmQIZ41mCTkhL0w1k.roa
Signing time: Mon 28 Mar 2022 12:44:01 +0000
ROA not before: Mon 28 Mar 2022 12:44:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139660
IP address blocks: 45.155.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5124825 (0x4e32d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 28 12:44:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f09d47b66a856c426408678d660939212f4c359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:32:ba:1b:98:0b:a1:89:bf:97:23:71:59:92:
c6:4e:c1:6c:01:5b:a3:a3:04:f6:f7:8d:9f:b9:00:
9d:ad:78:5b:4a:f2:d4:e8:8b:a1:f1:a0:9f:52:0c:
00:4d:24:45:ea:e5:77:26:be:21:3c:c7:5b:5c:08:
73:dc:81:f2:79:d2:7d:9b:c8:87:4f:c7:95:47:ed:
6f:81:88:3d:0e:31:e8:e1:1b:98:a8:9e:2c:b6:ee:
b6:d7:7d:2d:83:a1:c5:26:c0:37:b1:a8:70:9a:f1:
f0:9d:ed:e0:95:f7:76:6a:dd:84:cf:5c:47:02:8b:
96:ae:d5:4f:0b:ef:f5:7c:00:7c:eb:74:61:99:99:
dc:0e:b5:86:5f:99:25:d5:1a:33:ca:f4:df:28:2d:
a5:f8:0f:be:54:58:6c:ef:75:81:a3:cb:ec:f3:74:
1b:56:3b:eb:c4:66:0b:74:a2:60:66:3a:96:e1:09:
21:cd:45:29:de:86:0d:f0:8a:02:a2:8d:42:68:a9:
95:cc:26:8b:6a:bd:38:d2:4a:e3:43:71:58:42:ad:
86:f0:ec:6a:ef:84:11:0e:75:aa:1f:6c:cf:51:a0:
5b:c7:8f:fb:67:50:7e:5d:df:14:57:3e:74:c2:96:
7f:90:aa:a1:fb:10:47:c6:7d:41:47:0c:89:0d:35:
f2:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:09:D4:7B:66:A8:56:C4:26:40:86:78:D6:60:93:92:12:F4:C3:59
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/PwnUe2aoVsQmQIZ41mCTkhL0w1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.66.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:dd:97:de:f6:ea:47:25:18:8d:35:c6:f9:b8:b1:c0:ec:71:
61:2f:14:2c:ba:ce:42:b8:1d:a4:70:18:f0:1a:77:44:1c:36:
c2:03:9a:7d:1b:29:95:fa:f7:91:2d:bf:9a:77:cf:22:0d:59:
34:7d:a0:0f:48:54:d0:c9:5d:bd:d4:9d:5b:28:20:e0:be:10:
7a:71:d9:08:32:8c:2c:64:09:b8:4e:2e:37:52:44:3b:32:08:
05:4a:d4:37:50:46:c1:d7:4a:26:72:65:80:25:fd:b5:2f:6d:
60:fd:c9:63:57:a8:8a:69:ab:95:cb:0f:7c:af:65:6b:75:77:
bf:55:fe:67:df:fc:07:7e:23:98:ad:45:e8:af:44:ab:82:50:
18:99:b0:da:20:5d:1c:bf:d5:da:df:a9:ee:b6:bd:9d:c5:95:
31:90:94:6e:65:e9:78:b6:f0:23:ad:fd:0a:e4:1a:1e:06:37:
a3:8b:3e:a7:62:29:a2:25:a1:60:a8:e3:ed:5e:67:0c:3d:4a:
a1:9e:b8:2a:38:a1:7a:0d:56:2c:b8:31:59:6e:7f:5d:a7:b2:
6c:c8:28:0a:30:13:d0:de:f4:5c:27:c0:52:f5:d6:4a:0e:79:
5a:24:a0:01:6e:29:87:e1:85:ee:22:ab:61:9c:1a:c7:3f:26:
78:f9:e4:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:10 2023 by rpki-client on console-fra.rpki-client.org