Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/_gic_45IYgzjli6sDfYNSkVV-fc.roa
File: _gic_45IYgzjli6sDfYNSkVV-fc.roa (raw, json)
Hash identifier: r8xmntFZ6IZCoXQHGQs6iflAuXZsM23L1zYkrjFKiOE=
Subject key identifier: FE:08:9C:FF:8E:48:62:0C:E3:96:2E:AC:0D:F6:0D:4A:45:55:F9:F7
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 146FFAF7
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/_gic_45IYgzjli6sDfYNSkVV-fc.roa
Signing time: Thu 24 Mar 2022 19:33:05 +0000
ROA not before: Thu 24 Mar 2022 19:33:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204872
IP address blocks: 45.150.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 342883063 (0x146ffaf7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 24 19:33:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe089cff8e48620ce3962eac0df60d4a4555f9f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:92:b1:1f:73:04:70:9c:6c:bf:ca:da:94:5b:
0e:91:25:85:3b:92:6d:9c:6c:aa:b7:83:16:1c:fc:
98:15:7f:fb:52:e4:e3:0b:d2:cb:82:2c:f1:5c:24:
3b:86:e1:89:74:ab:fe:13:4c:f6:ca:5b:62:c7:ab:
ce:13:dc:2c:6f:ee:2e:26:47:1a:e7:aa:ec:0f:1d:
b3:28:8c:ff:1a:ca:a2:68:84:d5:8c:52:ef:c2:cf:
8b:59:6b:94:a8:e9:62:73:41:ec:a5:75:fb:d9:d8:
af:52:0f:af:71:72:6f:1b:ca:49:0e:e5:bf:8e:8b:
dc:1c:45:13:9a:28:db:97:eb:5a:41:71:4f:c2:8f:
5a:ac:c5:c7:0d:7d:d3:c9:9d:b3:dd:54:af:f3:82:
28:b7:b9:7c:e6:09:ed:b7:1f:6f:96:51:58:b9:b6:
52:6e:cf:1f:d0:f5:76:44:40:fd:f0:77:12:1e:3e:
e2:f7:d7:a5:cf:aa:72:bf:a4:d2:cc:eb:1f:ec:02:
46:21:24:f9:90:87:9f:d9:5a:e7:f1:1b:ff:5a:03:
4f:04:45:b6:29:b6:9c:22:89:77:92:81:6b:23:fc:
9c:f0:23:e8:fd:e8:0a:49:01:b0:41:cb:7e:bf:fc:
70:72:9b:a8:dc:8f:ec:d6:8a:2c:59:45:b5:e6:f7:
a0:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:08:9C:FF:8E:48:62:0C:E3:96:2E:AC:0D:F6:0D:4A:45:55:F9:F7
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/_gic_45IYgzjli6sDfYNSkVV-fc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.180.0/22
Signature Algorithm: sha256WithRSAEncryption
50:b8:e2:f1:f9:8e:32:09:3a:60:89:7a:15:6a:d7:a8:91:1f:
c0:00:5c:ec:10:36:9c:27:80:cf:aa:d3:98:a6:3b:be:80:0c:
26:0f:00:45:fc:17:2f:4d:97:ec:a1:4c:bb:e9:67:55:ab:d9:
d9:6b:61:0d:83:55:79:1d:09:09:30:b0:39:95:73:82:3a:20:
79:72:ce:1e:b9:72:10:b5:ea:7f:b7:d2:37:81:ed:81:af:6d:
af:c1:85:95:81:34:44:8a:9a:82:7b:aa:c6:92:b6:78:bb:c2:
5d:6e:ab:11:ed:f2:9e:87:a3:d1:8b:96:8e:78:3a:63:1c:59:
07:93:e0:96:79:97:51:d4:e5:ab:57:87:0b:66:f6:72:c3:17:
d4:f0:7f:56:d2:83:9d:96:c5:ed:6d:98:75:40:b8:5d:4e:46:
9c:6c:34:f2:5b:2d:6a:ad:01:9d:c6:73:6d:eb:ff:77:cf:96:
b5:b4:c4:76:88:de:38:dd:55:f3:c8:2b:4b:dd:e2:c6:cd:6d:
d4:73:1b:bb:30:a2:62:a3:2c:e3:71:6a:ac:5b:ac:70:5c:5e:
d8:6f:c3:d4:1d:1a:ac:fa:ff:cc:11:c7:bb:ec:08:85:b2:08:
fc:03:14:90:19:65:f0:42:01:41:5b:04:43:46:ef:95:36:0c:
02:0d:4d:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-fra.rpki-client.org