Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/F1YUN5Ayc_Hbzr1aW1b0JmhzyC0.roa
File: F1YUN5Ayc_Hbzr1aW1b0JmhzyC0.roa (raw, json)
Hash identifier: Um+2vUIiDnis9vUWPhcJ+jKQ50ICFX2fig7L7jYZCgU=
Subject key identifier: 17:56:14:37:90:32:73:F1:DB:CE:BD:5A:5B:56:F4:26:68:73:C8:2D
Certificate issuer: /CN=1ab5c22bf53b705c7a2bb273ba73e3f0c0595b7b
Certificate serial: 08B5E044
Authority key identifier: 1A:B5:C2:2B:F5:3B:70:5C:7A:2B:B2:73:BA:73:E3:F0:C0:59:5B:7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GrXCK_U7cFx6K7JzunPj8MBZW3s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/F1YUN5Ayc_Hbzr1aW1b0JmhzyC0.roa
Signing time: Thu 21 Apr 2022 10:23:04 +0000
ROA not before: Thu 21 Apr 2022 10:23:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50019
IP address blocks: 45.131.197.0/24 maxlen: 24
45.131.198.0/24 maxlen: 24
45.131.199.0/24 maxlen: 24
45.131.196.0/24 maxlen: 24
185.128.113.0/24 maxlen: 24
185.128.114.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146137156 (0x8b5e044)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ab5c22bf53b705c7a2bb273ba73e3f0c0595b7b
Validity
Not Before: Apr 21 10:23:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17561437903273f1dbcebd5a5b56f4266873c82d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:9f:40:ca:3e:5c:0c:1b:d1:21:3d:10:d4:32:
36:40:bc:89:bc:9f:8a:cc:60:b1:9e:b3:9d:b5:75:
5f:78:4b:1e:ee:89:ac:ec:be:8a:95:e5:e9:d2:e9:
ba:40:55:65:6d:f3:22:e7:cd:53:65:ee:0a:a9:6c:
2b:eb:57:16:ff:4e:ae:0b:a6:f2:79:f8:4b:7d:23:
8a:4a:36:07:fe:df:5d:e8:53:d1:11:bc:03:30:67:
6a:fa:3d:c0:69:31:00:72:8c:8e:49:4f:74:b6:0e:
1f:80:c9:bd:af:0b:a5:d3:53:e4:b6:bd:3f:67:cf:
92:57:2d:15:93:31:1e:33:74:2f:43:f6:56:50:76:
f9:1f:33:f8:13:75:c4:b7:cc:0e:31:d4:cd:3a:7f:
e5:a4:ff:0f:41:83:3b:f2:3c:eb:c5:e6:31:18:8d:
6e:ac:73:85:54:64:07:64:2c:14:03:12:88:09:f0:
05:a0:a7:54:9c:15:84:92:87:3a:41:74:b5:b2:9c:
e2:38:22:0a:df:22:d1:7f:14:74:74:2b:45:42:5a:
70:6c:2c:1a:53:5a:3a:04:58:a8:dc:7d:53:d4:76:
26:c6:10:5f:45:9d:33:b2:df:b4:f6:ef:79:98:09:
ca:e3:0f:e0:69:42:0a:a7:cc:c4:1e:8f:db:15:8d:
f5:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:56:14:37:90:32:73:F1:DB:CE:BD:5A:5B:56:F4:26:68:73:C8:2D
X509v3 Authority Key Identifier:
keyid:1A:B5:C2:2B:F5:3B:70:5C:7A:2B:B2:73:BA:73:E3:F0:C0:59:5B:7B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GrXCK_U7cFx6K7JzunPj8MBZW3s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/F1YUN5Ayc_Hbzr1aW1b0JmhzyC0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/7c8bf4-6ab6-4199-b3a7-b4b1f6f98a90/1/GrXCK_U7cFx6K7JzunPj8MBZW3s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.196.0/22
185.128.113.0-185.128.114.255
Signature Algorithm: sha256WithRSAEncryption
43:60:a3:49:3e:ad:af:ee:a1:e9:b3:85:d6:88:ed:08:86:7d:
d8:05:26:51:4e:69:36:19:9e:2b:61:eb:03:68:9b:81:60:f3:
37:24:dd:7e:bc:5c:85:84:aa:e5:33:37:c8:9d:16:08:e3:00:
0c:5a:0b:e9:7e:1d:dc:eb:85:f0:81:df:26:29:f9:b9:6e:83:
07:92:82:24:4a:49:87:14:ac:ed:96:d4:db:2f:30:9e:45:cd:
bb:34:23:d4:fd:d8:d6:cb:71:0d:95:51:26:bd:43:72:cb:a8:
92:8b:c5:87:67:83:2b:bd:96:87:41:7d:c0:36:f5:cc:4e:2f:
2d:c8:47:e0:f3:42:39:e0:50:99:d9:e5:81:4f:17:d4:29:45:
0c:61:ea:fb:1f:81:0a:8a:0c:0a:e3:34:1e:af:00:bc:63:d2:
f9:38:e8:b1:e0:9e:0e:19:33:3e:64:40:e1:ca:70:5b:50:7a:
ac:a4:79:70:e5:f0:22:91:55:98:a5:08:2c:f1:03:d1:53:db:
88:8c:02:3e:42:e0:6c:60:bc:ac:60:70:b1:f4:ac:6d:ca:68:
61:a2:e5:2d:a3:20:60:8b:48:f6:93:d1:0a:d0:2b:70:de:f3:
43:46:48:62:0c:a0:56:26:df:a1:a7:f5:bd:d3:e8:97:6a:59:
40:d4:65:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:04:03 2024 by rpki-client on console-ams.rpki-client.org