Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/z79Mh_7JDOxnmNET0Haf_dRPuxg.roa
File: z79Mh_7JDOxnmNET0Haf_dRPuxg.roa (raw, json)
Hash identifier: X2vz86ld3tv09tFxY8wFkzhHku1oVRWkVfkN3AQZN20=
Subject key identifier: CF:BF:4C:87:FE:C9:0C:EC:67:98:D1:13:D0:76:9F:FD:D4:4F:BB:18
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0184B9F153703A38F02B2BD124075EBA54E0
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/z79Mh_7JDOxnmNET0Haf_dRPuxg.roa
Signing time: Sun 27 Nov 2022 16:35:11 +0000
ROA not before: Sun 27 Nov 2022 16:35:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.150.172.0/24 maxlen: 24
45.150.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b9:f1:53:70:3a:38:f0:2b:2b:d1:24:07:5e:ba:54:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Nov 27 16:35:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=cfbf4c87fec90cec6798d113d0769ffdd44fbb18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:6e:32:51:cc:f1:27:07:9d:d9:ed:5c:05:5a:
bf:8e:15:cd:85:9a:fe:e5:fa:d9:3c:af:ad:76:83:
95:9b:ab:9d:18:31:df:76:9c:cf:59:c7:ce:ba:3b:
4b:22:84:08:eb:1f:65:3a:bc:3b:d1:ce:77:93:68:
5a:06:20:6d:21:24:b8:b6:03:56:e8:f6:a6:86:aa:
ce:bf:36:2b:05:df:6d:97:8e:d9:af:49:7d:cd:56:
0b:9f:95:68:cd:51:b9:f0:ed:6a:3b:bc:c4:8a:c0:
59:18:ea:bd:fb:d2:d5:1f:78:13:c1:21:a4:c0:80:
42:d3:af:b0:be:d4:7b:3c:3a:e1:6f:fc:a2:a5:ec:
80:38:3a:d6:33:6c:c5:51:d9:d4:9d:f0:32:50:d9:
e1:f8:f9:2f:cb:b1:24:ff:34:46:78:ce:ac:b2:6b:
0d:c8:8a:db:0d:44:6b:91:de:50:42:c4:e0:00:a4:
33:44:4b:76:02:e0:fe:db:a8:29:e8:ab:37:f0:51:
0f:ad:5d:b5:cf:e9:47:16:e9:41:8b:e6:7f:25:85:
c8:1c:d1:a7:70:58:89:92:ec:ba:2c:91:89:e8:be:
bc:71:83:ae:d5:cb:b7:79:7f:0e:43:5e:e2:5b:30:
2d:9b:a2:3c:4e:28:7b:17:87:88:3f:9e:44:d7:6c:
f3:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:BF:4C:87:FE:C9:0C:EC:67:98:D1:13:D0:76:9F:FD:D4:4F:BB:18
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/z79Mh_7JDOxnmNET0Haf_dRPuxg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.172.0/24
45.150.174.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:f9:1a:96:0e:de:7f:8c:5d:ab:3d:1a:68:db:4f:52:9d:55:
a6:dc:28:b5:0b:7d:c1:ce:ea:56:05:af:8b:fe:bf:fa:4a:38:
7a:b0:5b:7b:de:1f:38:3d:b3:8b:fe:70:cb:e1:7b:35:33:15:
76:25:34:ce:6e:dd:f0:39:c1:09:b0:cb:d2:0b:39:06:f5:90:
0f:34:f0:6e:30:56:79:f0:dc:45:3a:7c:d4:f7:86:7a:e1:7a:
eb:92:cc:69:fd:22:48:14:4a:56:71:53:7d:e8:87:c4:f4:c6:
af:59:db:34:ab:8e:59:00:e8:d6:f4:07:ea:ec:5c:82:07:0c:
f2:46:71:23:01:93:b3:03:70:51:26:4a:4b:f7:41:d7:ab:23:
73:aa:b1:b5:64:df:0e:70:ce:43:57:75:a2:5c:af:3d:7b:a8:
d9:ab:a6:f7:0b:f8:97:82:df:e2:44:61:fe:42:61:58:e5:3b:
e0:5c:7a:83:b1:9f:2c:79:00:0e:ef:3d:dc:c1:d1:aa:da:31:
c8:00:79:ce:b1:43:6d:99:f6:63:4b:77:c6:13:cb:30:93:de:
4d:e1:f3:72:e5:38:5e:6a:7f:28:47:7f:93:24:67:c1:f8:f9:
75:55:80:bc:a1:79:59:14:b3:0d:f9:64:b7:ae:31:03:76:a4:
67:67:93:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:27 2023 by rpki-client on console-fra.rpki-client.org