Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/EhihtKUhSdAXn_s5pW0P5lYOZA8.roa
File: EhihtKUhSdAXn_s5pW0P5lYOZA8.roa (raw, json)
Hash identifier: 9O8dFLPcg+tPWDz/8x0K674WteZzyjRuZ/zhlld1H/g=
Subject key identifier: 12:18:A1:B4:A5:21:49:D0:17:9F:FB:39:A5:6D:0F:E6:56:0E:64:0F
Certificate issuer: /CN=91f5fcedbdb84dd52fc6770d7ccfd3fc6684fa41
Certificate serial: 08F9805C
Authority key identifier: 91:F5:FC:ED:BD:B8:4D:D5:2F:C6:77:0D:7C:CF:D3:FC:66:84:FA:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfX87b24TdUvxncNfM_T_GaE-kE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/EhihtKUhSdAXn_s5pW0P5lYOZA8.roa
Signing time: Sun 06 Feb 2022 20:29:22 +0000
ROA not before: Sun 06 Feb 2022 20:29:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209733
IP address blocks: 45.82.62.0/24 maxlen: 24
45.82.61.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 150569052 (0x8f9805c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5fcedbdb84dd52fc6770d7ccfd3fc6684fa41
Validity
Not Before: Feb 6 20:29:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1218a1b4a52149d0179ffb39a56d0fe6560e640f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:33:50:5a:0c:1d:5d:53:73:08:6c:a9:10:36:
38:35:14:5f:c6:6f:4f:af:b3:61:65:6b:89:3a:fc:
42:da:5a:19:ca:97:72:75:fc:3f:e2:fd:39:2e:ec:
38:a5:6a:87:a9:f4:63:bf:9a:47:44:b2:47:64:c0:
0a:c0:4a:57:af:de:ed:fc:0c:97:47:47:85:c1:a9:
a6:c6:7a:8d:5b:7e:1b:6f:26:ca:8a:ba:97:06:78:
a9:8e:a4:d1:be:41:c7:3e:a2:75:10:8c:bc:10:9f:
67:96:e3:07:0e:ea:33:77:53:43:63:a5:5c:c7:ea:
05:9c:47:f3:ac:35:c4:cc:bc:94:2a:d7:d0:83:8f:
86:de:22:7b:c9:e0:17:d1:40:e8:ff:28:a7:c5:1f:
30:88:f8:f4:0b:62:8b:b8:c2:bc:37:6a:0c:c0:95:
fa:33:43:ef:f1:cd:9d:af:f2:a4:f9:f7:2c:a1:8f:
ea:8a:2d:4d:02:15:54:b8:1f:f6:94:e6:20:f7:12:
df:1a:85:2a:2b:6c:c2:cf:74:c5:8b:b2:4e:73:5d:
e6:d2:4e:62:0b:8d:d1:9f:09:3d:d5:7f:ea:95:50:
c2:89:01:f3:83:33:05:ca:25:70:ad:4a:be:d1:71:
2d:4e:b0:b0:85:7e:6f:d4:bc:9d:94:c8:bc:10:9a:
1b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:18:A1:B4:A5:21:49:D0:17:9F:FB:39:A5:6D:0F:E6:56:0E:64:0F
X509v3 Authority Key Identifier:
keyid:91:F5:FC:ED:BD:B8:4D:D5:2F:C6:77:0D:7C:CF:D3:FC:66:84:FA:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfX87b24TdUvxncNfM_T_GaE-kE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/EhihtKUhSdAXn_s5pW0P5lYOZA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/9a0981-0ad8-48a5-bfec-8cc9833611e6/1/kfX87b24TdUvxncNfM_T_GaE-kE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.61.0-45.82.62.255
Signature Algorithm: sha256WithRSAEncryption
ad:9b:91:4b:9b:76:5a:60:3e:d6:fb:e7:c4:2d:83:60:b0:f1:
9e:15:7c:1a:75:05:86:97:91:69:c7:79:af:79:05:5f:d4:97:
89:7e:6b:39:a7:52:a6:fb:6f:be:e0:18:8a:aa:49:85:29:ca:
81:f9:25:65:89:fb:a6:44:f4:67:94:85:02:6e:c1:8a:39:2a:
5c:7b:76:ee:05:d2:c9:a7:a2:6f:b9:e9:3a:48:74:f1:51:bd:
55:3f:c7:ca:d5:33:58:6d:d6:b6:78:39:ad:46:ad:89:0c:b7:
72:4c:a5:9c:ae:17:b4:5e:40:12:b5:6c:f6:aa:89:61:ea:4a:
5a:d9:f5:ca:30:c6:35:cc:84:7d:38:0c:1f:75:b0:94:9c:de:
98:8a:54:38:68:c7:c3:e5:29:12:0f:57:9d:ad:85:c5:66:cd:
a8:2f:a5:2f:0e:66:8b:7c:9a:27:36:04:3b:f2:f0:73:4d:4c:
b0:1d:1d:12:d7:32:85:b3:f3:9f:28:a0:83:8e:1f:ce:f5:73:
ca:b7:66:96:c5:c5:d9:99:e5:7b:9c:96:a6:2f:3b:7e:3f:56:
bf:40:ed:f8:a3:64:02:ac:4e:0e:27:f2:a8:a9:7a:d6:d6:5e:
31:a7:8b:cc:7e:24:4d:9b:03:7c:e3:af:a8:75:99:c1:d1:78:
7f:e2:30:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:08 2023 by rpki-client on console-fra.rpki-client.org