Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/fUvXyCc2-i9X9dMvikjJbbOdQZ0.roa
File: fUvXyCc2-i9X9dMvikjJbbOdQZ0.roa (raw, json)
Hash identifier: B55IpBJmcMF81o8Mq3lyws9LD57oUWN2/IlAiSkj3w8=
Subject key identifier: 7D:4B:D7:C8:27:36:FA:2F:57:F5:D3:2F:8A:48:C9:6D:B3:9D:41:9D
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 01849BB2C965B6F9B538DCBF8BEA3A81C7CB
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/fUvXyCc2-i9X9dMvikjJbbOdQZ0.roa
Signing time: Mon 21 Nov 2022 19:38:16 +0000
ROA not before: Mon 21 Nov 2022 19:38:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44094
IP address blocks: 45.150.64.0/24 maxlen: 32
45.144.31.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:b2:c9:65:b6:f9:b5:38:dc:bf:8b:ea:3a:81:c7:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Nov 21 19:38:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d4bd7c82736fa2f57f5d32f8a48c96db39d419d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c3:a3:0f:c4:d5:12:ee:3f:f4:65:a1:34:4b:
73:ef:ce:0b:cb:2d:d8:e8:47:9f:d7:7b:98:d0:c3:
37:3f:4a:c5:06:62:53:e1:3b:59:43:fd:9b:0a:dc:
b5:d5:30:49:ca:b6:b9:87:3f:d9:24:30:94:27:f2:
21:db:5d:cd:c8:0b:6a:23:81:c1:d4:a5:88:84:d5:
0d:05:d4:5d:30:40:e6:71:3d:4c:8e:4d:67:c3:c1:
d6:45:b5:b5:b5:2d:a0:65:04:ce:bb:a2:cf:25:b3:
2e:42:a8:77:c0:4a:d2:bc:8a:37:9b:7a:a0:1b:40:
71:b7:e1:84:cb:f7:31:65:3e:3e:78:4c:60:c5:d5:
19:22:50:11:32:3d:02:66:4b:e1:97:44:b7:22:2b:
e1:f5:ab:cb:0e:06:8d:ef:3b:3f:02:41:6a:6c:34:
ad:5c:45:c3:33:10:07:32:a3:2e:49:07:c3:2f:5f:
96:8c:ec:22:77:dd:02:4c:c7:41:e9:9a:e3:7b:06:
51:b6:f0:7e:8f:8e:54:63:d0:84:4b:72:19:9f:95:
37:d4:90:7e:0a:08:ba:14:40:56:2e:17:8b:d0:20:
65:d1:f8:7a:50:97:16:4c:e2:a1:c8:77:40:7f:d2:
09:2c:9b:7d:1a:be:28:f9:07:2e:a7:d8:0b:b8:81:
16:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:4B:D7:C8:27:36:FA:2F:57:F5:D3:2F:8A:48:C9:6D:B3:9D:41:9D
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/fUvXyCc2-i9X9dMvikjJbbOdQZ0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.31.0/24
45.150.64.0/24
Signature Algorithm: sha256WithRSAEncryption
12:84:e5:54:0a:35:4e:4d:19:12:af:7f:0d:6f:65:b9:2d:87:
cd:d5:fb:b9:11:37:7b:d8:cb:07:40:33:97:17:c6:57:8b:0a:
dd:8a:88:b4:14:ba:7a:1e:ba:2c:ef:5e:22:db:b2:0e:90:62:
de:d4:8e:57:df:6b:9a:f6:34:4e:f0:13:e3:2b:c0:74:63:2b:
de:9a:be:33:60:9f:d2:25:e4:ad:f9:b9:71:8e:73:d4:94:93:
70:26:2a:63:ba:ef:47:3a:99:c9:0b:75:87:a9:95:6d:5c:36:
82:c3:3e:6c:ca:4f:24:ad:e7:e0:ac:8f:27:70:29:3a:f7:7e:
b4:3a:9e:e4:d8:23:46:10:ee:8c:e0:83:04:6b:9b:58:d9:4c:
f7:e8:31:31:79:68:f7:b8:20:71:2d:32:c6:28:c4:c8:73:6e:
d8:ca:08:08:86:47:04:01:1e:44:e2:38:57:e4:16:67:ac:6a:
1a:a0:b9:06:10:ae:31:eb:1a:33:62:99:49:3b:a7:48:a0:91:
80:eb:f6:21:04:a2:74:3b:0b:3b:85:73:53:77:62:83:95:bc:
48:00:c1:fe:f7:6b:53:a7:c6:23:23:dd:2c:82:0b:48:0d:0b:
a3:9f:9e:8d:4a:b2:bd:a2:04:e5:59:12:23:03:45:d8:d1:4f:
e5:1c:c4:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:31 2024 by rpki-client on console-ams.rpki-client.org