Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/lCwOx_iceGLsTOdXIn_wkVhEq60.roa
File: lCwOx_iceGLsTOdXIn_wkVhEq60.roa (raw, json)
Hash identifier: +S4WocqUfRXyLs4Jl+6pX4A0MMP8ijbudJBbeGtLaWM=
Subject key identifier: 94:2C:0E:C7:F8:9C:78:62:EC:4C:E7:57:22:7F:F0:91:58:44:AB:AD
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 031A2561
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/lCwOx_iceGLsTOdXIn_wkVhEq60.roa
Signing time: Sat 01 Jan 2022 13:59:20 +0000
ROA not before: Sat 01 Jan 2022 13:59:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139471
IP address blocks: 45.131.178.0/24 maxlen: 24
91.217.167.0/24 maxlen: 24
91.238.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52045153 (0x31a2561)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 13:59:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=942c0ec7f89c7862ec4ce757227ff0915844abad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:1f:1a:64:67:d5:ef:a5:43:59:73:12:02:aa:
b3:0b:f5:02:7a:f0:0b:77:8a:e3:0f:fb:1b:2f:86:
b1:d7:2e:03:cf:62:e9:66:9e:c5:5e:11:f8:06:d3:
9c:64:13:09:f4:48:01:f7:ca:ff:b5:71:c6:1e:69:
e0:4c:d6:1e:ea:6c:3f:c6:c8:34:73:46:c0:08:ce:
a4:18:5e:42:27:35:10:b5:d4:a1:8a:50:f4:96:aa:
4c:9b:d1:26:47:7c:b1:e9:00:e4:0c:76:8f:99:fb:
7a:27:d6:a5:cd:7b:0f:60:98:df:07:e3:5c:5c:8c:
ad:2b:92:a8:59:25:56:dd:2e:dd:ca:89:db:cd:ca:
db:34:2b:13:1c:68:17:0a:55:32:da:62:37:b9:d9:
8a:67:9c:73:70:f5:a0:a7:90:b9:97:72:83:34:e0:
46:4e:cc:fa:87:74:2c:5e:37:b2:ee:5e:21:40:2f:
f2:3c:dd:87:27:a0:34:cc:b7:4f:e9:61:81:de:60:
00:3f:ab:e1:23:59:3d:a5:0b:a6:b8:bb:b5:52:b0:
e3:9c:1e:69:93:6a:58:38:5a:65:b0:94:25:22:79:
32:91:52:0b:67:0d:ae:7b:d5:80:72:4d:63:08:21:
53:b1:82:d5:e3:97:6d:8e:3f:0e:1a:0d:8c:d5:f1:
09:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:2C:0E:C7:F8:9C:78:62:EC:4C:E7:57:22:7F:F0:91:58:44:AB:AD
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/lCwOx_iceGLsTOdXIn_wkVhEq60.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.178.0/24
91.217.167.0/24
91.238.114.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:05:3c:1f:9a:1a:53:ef:0a:b8:90:76:ef:23:5e:cd:9f:90:
85:65:a8:41:d2:5b:9a:98:b4:8e:53:96:54:2c:63:6f:2a:a7:
86:dc:93:34:6e:36:3e:33:35:64:d7:6d:00:78:ac:0b:36:62:
b5:a2:62:ed:b5:91:b2:ad:a2:b5:62:f2:85:b9:c5:c4:d2:c4:
6c:24:e7:22:29:33:87:cd:3a:29:67:01:50:a0:42:56:f8:fb:
38:2d:c5:a1:1b:3f:f8:bb:2c:42:c7:c0:09:f5:b8:41:d3:2f:
10:01:1e:b8:6b:9a:be:35:69:ba:67:36:30:14:d8:62:7d:3b:
59:63:cd:26:76:0f:f9:de:af:1a:47:02:bb:25:56:47:83:fa:
bb:cf:ff:c3:40:36:59:15:89:0e:0d:81:9c:ae:e1:dd:cf:95:
57:b2:34:4c:33:ce:15:bf:fd:34:80:0f:2d:9c:92:4c:29:e4:
6b:83:d3:f1:73:e0:d0:f8:82:23:31:27:62:a9:ce:ae:0b:15:
96:5f:a5:b5:22:0b:24:4e:6d:ca:56:43:83:01:25:4a:da:8e:
c2:da:b7:85:22:53:5e:b2:ed:de:1d:6b:27:5e:bc:c6:8e:cc:
71:ee:19:68:18:75:6f:1d:71:f0:f3:4a:16:be:f4:97:69:1f:
0a:e4:48:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:31 2023 by rpki-client on console-fra.rpki-client.org