Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/CnqJWUnccgEU-2xnILFIMH3CBv8.roa
File: CnqJWUnccgEU-2xnILFIMH3CBv8.roa (raw, json)
Hash identifier: momlWFBCmtKGtyEJWmpXgEw+2AtcjUpkCpmcJ52ZQuQ=
Subject key identifier: 0A:7A:89:59:49:DC:72:01:14:FB:6C:67:20:B1:48:30:7D:C2:06:FF
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 0336C838
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/CnqJWUnccgEU-2xnILFIMH3CBv8.roa
Signing time: Tue 11 Jan 2022 17:53:49 +0000
ROA not before: Tue 11 Jan 2022 17:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134835
IP address blocks: 45.153.11.0/24 maxlen: 24
45.153.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53921848 (0x336c838)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 11 17:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a7a895949dc720114fb6c6720b148307dc206ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:38:b6:ff:ff:48:07:7e:4b:9c:84:f4:98:1a:
eb:85:03:d3:4d:03:e2:07:9a:a1:5c:0a:ef:57:8c:
2b:67:29:dd:bb:de:22:ac:6f:5e:32:00:36:59:22:
76:29:cc:ea:89:cd:b8:a7:17:c1:3f:96:f8:d2:f6:
d0:d3:39:05:a4:cf:7d:60:09:ac:81:45:c9:4f:24:
6c:c1:2d:61:00:99:f8:36:4a:47:bf:26:8c:ef:7c:
07:9d:2b:2c:16:27:12:48:43:bd:a5:a7:6e:c7:44:
80:25:28:8f:35:8e:f0:84:5a:83:65:c2:92:a0:b6:
21:78:88:be:36:fb:c4:77:e4:11:04:44:23:83:71:
e2:c5:46:c7:1e:20:e9:4e:58:82:97:59:2a:c1:ba:
c3:dd:90:f9:72:1d:4c:94:d7:36:ba:06:6f:82:b2:
5c:db:29:56:ee:d5:d7:4c:17:21:8c:f7:eb:eb:91:
45:ac:81:56:d6:b1:83:9f:50:17:61:01:59:c7:d9:
dc:ac:43:12:19:15:fc:fd:73:53:83:4a:97:31:83:
dc:d7:5d:3b:56:2c:9e:ea:af:cb:14:2a:5c:3a:5a:
a1:d9:79:43:90:c0:b1:0c:95:85:8b:8d:72:b0:94:
82:98:7b:88:81:96:32:98:42:d5:e9:51:dc:ba:75:
33:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:7A:89:59:49:DC:72:01:14:FB:6C:67:20:B1:48:30:7D:C2:06:FF
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/CnqJWUnccgEU-2xnILFIMH3CBv8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.10.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:62:bd:ae:c7:4d:da:fc:80:f6:50:f4:0a:f8:f4:37:b8:c7:
ee:93:6d:a7:13:85:e9:59:bc:eb:8d:b1:75:91:f0:39:c2:e4:
b1:d2:6c:54:60:a5:3e:85:90:e2:8b:ee:a4:e5:a5:af:08:be:
82:b1:17:d3:ec:6f:27:e5:c1:a5:3c:5c:c5:8a:b5:c0:3b:2e:
7d:28:ba:46:05:6f:fc:13:b4:ca:e5:be:74:86:89:13:e4:c6:
4f:62:1c:ea:06:a3:4f:22:0c:45:93:c6:d8:74:ac:9d:93:d4:
46:9c:18:19:87:b5:f3:fe:23:17:12:c9:7e:3e:c8:65:12:08:
db:20:bb:3d:b6:2c:7d:de:87:94:c7:72:ae:c1:21:ad:0d:8e:
e5:b3:d7:ed:b9:0b:b4:ea:e3:db:ad:b6:45:c4:00:48:17:84:
05:5c:eb:01:5c:45:d6:b8:3e:1c:91:51:6a:ef:ab:1b:53:2a:
cb:f5:85:b2:ba:62:fa:01:7a:16:d7:13:56:c1:70:5b:0e:33:
65:49:ac:4d:12:8a:c1:60:a9:b2:2c:88:9f:96:04:cf:0e:55:
01:de:d2:3a:55:c5:35:5c:a5:87:1d:05:83:f8:40:83:aa:2b:
51:fe:ff:9a:d3:21:25:23:c3:1e:4d:8c:31:10:3d:49:18:72:
03:c2:cc:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org