Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/U7bzxD9SxsTQjYhCId0ZetTcH6c.roa
File: U7bzxD9SxsTQjYhCId0ZetTcH6c.roa (raw, json)
Hash identifier: faHjuAbbvRysTJhg7EP/6Cp+6DR6DsdjRNqdr3ZaDQ0=
Subject key identifier: 53:B6:F3:C4:3F:52:C6:C4:D0:8D:88:42:21:DD:19:7A:D4:DC:1F:A7
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 0182FDAFF257A8939932A00FECB0C393D4E1
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/U7bzxD9SxsTQjYhCId0ZetTcH6c.roa
Signing time: Fri 02 Sep 2022 10:12:22 +0000
ROA not before: Fri 02 Sep 2022 10:12:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133861
IP address blocks: 45.136.12.0/22 maxlen: 24
45.144.139.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:fd:af:f2:57:a8:93:99:32:a0:0f:ec:b0:c3:93:d4:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Sep 2 10:12:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53b6f3c43f52c6c4d08d884221dd197ad4dc1fa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b0:a3:fe:94:e3:42:c6:21:88:ae:41:d6:19:
a2:8e:37:30:26:b9:9f:93:d1:13:aa:31:a3:2c:77:
0b:de:90:51:95:f0:bf:92:eb:7d:12:10:27:d1:04:
67:2f:08:3d:05:08:9e:47:8b:62:1d:f1:48:36:66:
6d:b7:4a:e0:33:2f:9b:45:44:44:1c:08:38:18:0a:
32:9a:f0:65:75:71:61:50:9b:a8:8f:19:fb:1a:15:
74:b9:77:60:c8:63:82:ea:ce:45:f8:1f:37:4c:c3:
41:4f:66:11:05:39:ea:bb:f0:2b:9b:ab:55:1c:24:
44:1c:76:e3:fe:4b:6f:7a:cc:f6:69:97:50:50:63:
78:3c:1f:64:d8:5a:ef:8c:7d:78:61:c2:e0:6b:42:
e1:c1:f3:59:e9:68:1b:46:8a:5a:0d:a6:17:77:fc:
6f:d2:87:6d:4c:05:e5:ef:a7:8a:92:1e:58:33:0e:
37:6b:0f:1e:bd:0f:04:64:65:bf:41:ac:7b:2f:db:
e7:bc:87:61:9c:5c:09:f5:cf:68:52:ee:85:de:22:
61:0c:b4:6c:72:40:f9:0c:46:8b:76:56:d7:3d:10:
13:95:29:61:e4:ec:62:3a:88:ef:3a:94:8e:10:37:
f3:29:99:b1:2f:91:48:33:0c:3c:04:44:d6:08:d9:
4f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B6:F3:C4:3F:52:C6:C4:D0:8D:88:42:21:DD:19:7A:D4:DC:1F:A7
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/U7bzxD9SxsTQjYhCId0ZetTcH6c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.12.0/22
45.144.139.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:8f:aa:69:e9:e1:47:10:45:51:fa:6a:e2:c7:01:39:4b:86:
d8:7e:a1:5f:4e:91:78:72:b1:08:8d:ca:de:fe:92:59:c6:19:
8b:73:38:98:dc:89:76:a8:5b:30:eb:c3:ae:7b:5b:42:5b:84:
ed:ec:6f:15:76:06:96:09:2b:8a:53:a3:22:5c:61:7c:cb:d7:
7f:6c:a3:7c:48:e6:90:f6:4f:88:7d:c6:61:9e:18:07:a0:ad:
b2:6e:6d:1e:ce:ac:d8:24:b8:09:4a:68:d3:8c:fc:cc:7b:6a:
5c:98:db:9d:88:e7:d0:18:94:bc:6e:3a:4e:1d:0f:9b:a1:c2:
b0:e9:65:12:c4:26:ec:50:6b:6d:cb:cb:00:32:e9:19:b5:59:
3d:b2:73:9c:7f:06:d5:f1:7a:b0:11:79:e8:b8:32:05:be:f7:
b4:f0:31:96:30:f1:a1:97:4f:af:92:e0:5f:2c:3d:5b:4f:4f:
53:0b:16:12:cb:cd:16:87:9e:9d:8b:10:57:f5:c1:d7:10:a3:
20:c6:bc:e4:66:be:ee:f2:33:df:cd:af:1b:31:6c:ac:58:ca:
44:b8:e7:70:34:c0:87:7f:7a:b0:b3:91:28:f1:9a:ba:a4:ee:
84:99:6d:54:df:27:ad:94:3b:01:8c:b2:5d:2c:3e:97:cb:26:
2c:55:d0:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org