Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/1QGVWw0ylGl2EUbf-MNW0ntiCwY.roa
File: 1QGVWw0ylGl2EUbf-MNW0ntiCwY.roa (raw, json)
Hash identifier: dlRZkHnp4pGFkThKdJel3D9SdcADtYB1PS5FIVErQyw=
Subject key identifier: D5:01:95:5B:0D:32:94:69:76:11:46:DF:F8:C3:56:D2:7B:62:0B:06
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 014F467F
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/1QGVWw0ylGl2EUbf-MNW0ntiCwY.roa
Signing time: Mon 11 Apr 2022 07:51:34 +0000
ROA not before: Mon 11 Apr 2022 07:51:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8038
IP address blocks: 45.152.148.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21972607 (0x14f467f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Apr 11 07:51:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d501955b0d329469761146dff8c356d27b620b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:16:8f:86:1c:57:e0:fd:4f:0f:a0:cf:d6:6d:
2e:5a:d9:02:ba:5c:26:a2:0f:52:78:1a:88:f2:c1:
2f:a0:3a:3c:de:19:3b:94:38:c7:58:05:35:c4:67:
d6:ac:ea:5a:3a:b6:5c:01:69:6e:18:46:f5:8e:f0:
ba:38:08:7c:23:51:cb:ce:bb:d8:a9:20:45:35:79:
0f:f2:4f:56:4d:87:ac:da:12:6b:c1:88:46:fa:d8:
2f:db:4e:cc:ce:61:b7:57:e6:7e:19:32:25:f4:ad:
fd:4f:bb:b0:31:83:db:c5:84:05:df:4b:d9:47:a5:
90:8f:2a:8e:c1:80:b0:a1:c9:b7:9e:42:a1:f1:b9:
ce:e9:d4:cb:cb:f4:d9:19:4f:c2:26:4f:e4:72:fc:
07:5f:3c:ef:3f:51:b3:f5:ce:20:28:1f:4b:71:92:
22:44:43:8e:9f:de:88:11:ba:a3:ba:c6:2b:3a:8e:
e7:0a:7d:9c:4d:92:1d:70:0b:a7:6a:2c:33:d5:70:
dd:78:64:ba:ce:10:19:90:37:01:cf:be:fb:24:f1:
a4:04:23:25:9c:ed:f1:13:43:d5:11:db:c1:4b:3a:
49:c8:c9:26:ea:91:a6:07:c3:f8:8f:e3:d1:32:fd:
94:d3:a0:ee:5a:50:30:66:1d:14:1c:19:31:f1:0e:
d9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:01:95:5B:0D:32:94:69:76:11:46:DF:F8:C3:56:D2:7B:62:0B:06
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/1QGVWw0ylGl2EUbf-MNW0ntiCwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.148.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:dd:94:dc:f2:fd:c5:fc:c9:a2:72:42:88:a6:f0:3b:6c:b2:
de:7f:8a:52:02:18:51:c8:30:57:f2:71:45:b4:ab:51:f0:f2:
e4:25:65:c9:96:96:82:0f:85:71:09:46:e5:89:b2:ef:dd:03:
f7:0f:ab:85:9f:2b:cc:c7:b4:cc:4e:63:d7:94:19:de:44:e1:
1c:1e:3d:82:78:17:06:a5:64:a4:eb:00:29:7f:67:3a:6e:40:
6c:78:d5:b4:92:e4:97:5a:6a:bf:0b:b5:4b:53:ac:70:83:6b:
b4:0e:a2:d1:d6:e8:a9:fc:c8:d1:7a:0d:45:50:5e:8d:d8:b1:
a7:00:f7:6c:40:b4:48:70:a2:2b:fc:a2:ef:82:9f:b5:70:25:
92:6d:9b:5d:e7:bd:e6:51:33:8a:10:24:04:86:f8:9d:75:9f:
a7:a0:59:dc:8a:dc:52:fc:c7:2c:03:c3:3e:be:5b:97:92:c0:
28:c9:e5:d3:6c:89:54:4d:80:7e:2e:bd:9d:fc:12:e8:43:76:
0f:64:6a:a4:f6:2d:42:d0:3d:9c:f7:4f:32:8d:20:c6:10:79:
ba:7b:1e:75:08:0c:be:78:a5:36:25:11:95:53:2a:1f:87:5d:
af:03:9c:65:96:8d:77:06:86:1b:70:ec:ce:cd:d8:70:0b:9e:
74:19:79:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:06 2023 by rpki-client on console-fra.rpki-client.org