Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/OT3p0o7gExCPtfiRPFZh73ysvU8.roa
File: OT3p0o7gExCPtfiRPFZh73ysvU8.roa (raw, json)
Hash identifier: zvTu6NwOIYox0ra8wFOKWXomF/K/aEpFfMW847RlrQM=
Subject key identifier: 39:3D:E9:D2:8E:E0:13:10:8F:B5:F8:91:3C:56:61:EF:7C:AC:BD:4F
Certificate issuer: /CN=2864bb34fb5d16ca9d1fa3f9794cb48d4bed8473
Certificate serial: 0181F307D72F056BB7A804599BECA45262AC
Authority key identifier: 28:64:BB:34:FB:5D:16:CA:9D:1F:A3:F9:79:4C:B4:8D:4B:ED:84:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGS7NPtdFsqdH6P5eUy0jUvthHM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/OT3p0o7gExCPtfiRPFZh73ysvU8.roa
Signing time: Tue 12 Jul 2022 15:29:46 +0000
ROA not before: Tue 12 Jul 2022 15:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397423
IP address blocks: 45.150.96.0/22 maxlen: 22
45.137.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:f3:07:d7:2f:05:6b:b7:a8:04:59:9b:ec:a4:52:62:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2864bb34fb5d16ca9d1fa3f9794cb48d4bed8473
Validity
Not Before: Jul 12 15:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=393de9d28ee013108fb5f8913c5661ef7cacbd4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:54:e3:8e:85:62:2b:a7:9e:a3:f6:48:c8:21:
11:38:7c:d9:90:97:47:73:6d:5a:21:87:b3:53:b1:
41:29:42:30:cb:4b:08:10:1a:1e:7f:62:62:a3:4b:
19:4e:bb:a7:63:00:30:e6:ed:4e:07:45:3a:25:f8:
f7:82:9b:f5:df:54:b2:e6:8b:19:8e:f0:0b:03:cd:
c8:70:01:82:b8:25:30:f9:50:1c:66:cd:98:95:42:
78:ea:41:a3:96:3d:81:66:c3:af:e7:0d:86:3a:ef:
a5:23:f7:73:9e:72:22:ef:03:f5:81:49:8b:cf:7e:
01:84:02:2e:3e:e5:0d:9e:5c:89:c2:8b:b4:3e:cc:
7a:4b:ca:41:7e:cd:4b:76:bc:4f:cb:c0:60:d2:90:
72:98:64:9e:73:3b:1f:6f:74:5b:8e:f7:d7:44:5b:
5e:72:47:cc:d5:e8:b5:9a:68:e7:75:dc:e9:e9:e4:
0d:f7:23:de:71:d4:64:bd:0a:84:e8:e9:c6:5c:74:
f5:8c:7c:0b:3e:ee:7c:af:f0:aa:45:d4:75:6b:65:
5d:20:70:66:52:f9:c9:ec:ae:f9:e9:e6:bd:45:9d:
08:40:7b:3f:65:23:20:b9:ef:a6:e5:31:9f:9d:25:
d8:c0:ea:c7:a1:44:51:7b:c9:6f:ce:17:ed:a8:ef:
20:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:3D:E9:D2:8E:E0:13:10:8F:B5:F8:91:3C:56:61:EF:7C:AC:BD:4F
X509v3 Authority Key Identifier:
keyid:28:64:BB:34:FB:5D:16:CA:9D:1F:A3:F9:79:4C:B4:8D:4B:ED:84:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGS7NPtdFsqdH6P5eUy0jUvthHM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/OT3p0o7gExCPtfiRPFZh73ysvU8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/47f445-5ea9-437d-a59a-5900a5947b8d/1/KGS7NPtdFsqdH6P5eUy0jUvthHM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.4.0/22
45.150.96.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:27:45:74:79:8a:e6:5e:1b:cf:87:f1:a3:24:d8:5c:16:fd:
e1:db:4a:aa:3f:42:20:de:a5:d8:cf:fa:8b:b6:b8:03:68:22:
51:5d:cd:8f:b8:dc:55:b3:b2:0a:2d:04:eb:ca:1f:a5:6d:f0:
2b:be:f0:58:aa:e6:f4:0a:01:de:41:c1:6b:a3:74:c0:b8:f6:
2c:8a:dd:cf:7e:b5:64:db:34:63:7a:76:2f:dc:05:74:5a:80:
11:bb:9b:70:fa:ea:7e:10:f7:37:c6:07:e6:e5:ec:c5:f6:72:
3e:03:63:f8:ae:96:19:e1:ad:61:7b:7a:c8:60:bf:07:f8:f5:
ec:36:1c:53:ce:8b:b9:83:41:b7:9b:f3:29:d4:97:d3:d3:79:
2e:10:57:d3:94:e9:2a:33:70:62:91:e0:75:94:c1:73:8a:68:
94:e3:14:ad:c3:cc:ac:fc:f8:86:c1:5c:26:5c:07:82:3d:7a:
76:70:67:63:49:b7:ad:7d:a1:54:9b:56:66:d7:c3:9a:0c:1a:
9d:8e:54:14:0f:4c:24:81:42:3c:89:3c:a1:88:05:73:0e:02:
12:92:6b:26:54:bc:75:a6:87:45:2a:3d:73:f5:e3:05:b2:a1:
9c:80:83:e7:c0:6f:47:73:fd:44:fe:a7:59:b9:4b:b6:8e:b8:
e3:fd:b6:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:17 2023 by rpki-client on console-fra.rpki-client.org