Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/PpnbQSQO7eyZoUE3WzL7FVUhElg.roa
File: PpnbQSQO7eyZoUE3WzL7FVUhElg.roa (raw, json)
Hash identifier: jYDmyLoIA5uz/YLDCgHP67RDUbGWB/6qsDP7Wy4K+fs=
Subject key identifier: 3E:99:DB:41:24:0E:ED:EC:99:A1:41:37:5B:32:FB:15:55:21:12:58
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 01850AD9A4FC3AB688E30F73289A09F972A8
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/PpnbQSQO7eyZoUE3WzL7FVUhElg.roa
Signing time: Tue 13 Dec 2022 09:38:33 +0000
ROA not before: Tue 13 Dec 2022 09:38:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 141759
IP address blocks: 45.134.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0a:d9:a4:fc:3a:b6:88:e3:0f:73:28:9a:09:f9:72:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Dec 13 09:38:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3e99db41240eedec99a141375b32fb1555211258
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f7:0c:fe:6c:fd:64:55:85:a9:90:01:3d:09:
cb:6e:0e:5a:84:92:b8:99:9c:df:05:61:02:35:0c:
be:d0:b4:d9:27:8f:3b:fb:48:7a:df:3d:0d:49:a9:
41:08:df:52:0f:51:4a:4e:c0:53:18:23:92:8a:3b:
5e:fe:3a:13:81:68:a4:d5:c8:0a:6e:3c:3d:19:0f:
7d:e6:af:09:55:2a:d9:b3:4a:25:cb:d0:e3:ed:67:
48:4d:38:e9:18:66:4a:57:f4:84:14:a4:98:33:62:
1a:05:bd:76:c6:ab:ac:6b:39:13:16:02:72:11:4d:
a6:b3:a1:23:4b:24:7c:98:5e:87:0c:1c:d8:db:87:
51:d0:56:d4:98:0f:6d:c2:9d:09:e8:ea:f2:d5:4f:
3a:ce:0d:1b:c9:63:37:ea:22:c1:83:02:68:70:21:
4e:25:9e:d6:d6:82:6f:bc:70:b8:5d:17:75:dc:c2:
95:d8:ce:46:27:03:83:c9:72:77:23:e5:dd:e3:da:
67:89:c3:c5:e1:a3:6c:de:e2:44:2c:d8:2a:12:e0:
5c:da:25:cc:e7:e4:1b:b2:6d:07:e8:b6:e5:4b:63:
b1:8e:04:c7:93:55:79:3a:97:04:e4:fc:b2:21:e1:
f9:69:8e:30:2e:47:c9:2a:e2:47:f9:9e:09:6a:86:
08:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:99:DB:41:24:0E:ED:EC:99:A1:41:37:5B:32:FB:15:55:21:12:58
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/PpnbQSQO7eyZoUE3WzL7FVUhElg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.145.0/24
Signature Algorithm: sha256WithRSAEncryption
a2:c7:bb:84:73:af:52:e2:d1:00:90:7a:5b:3a:53:83:f1:53:
0d:f7:60:b2:e2:d9:f5:82:1c:14:03:60:d7:17:96:2b:26:39:
b5:4c:a3:c9:1e:a6:35:8e:e5:28:fa:cc:9c:7d:7b:69:3f:b3:
0e:9e:55:02:6a:60:bb:d6:16:bd:94:0d:c3:a1:6f:fd:87:57:
8f:14:0e:47:ac:8d:38:96:a0:c3:69:30:c2:22:83:d1:b9:52:
f7:6d:24:81:5d:c2:74:15:3c:64:80:44:78:90:dc:9d:91:19:
95:a5:5d:b0:48:d0:09:6e:48:29:37:d3:ce:7a:e5:23:0b:01:
38:42:bd:17:a5:85:62:c1:db:0a:61:7d:08:88:3f:9f:02:bc:
d5:53:30:38:d0:6e:e0:31:62:89:ed:65:94:94:19:d5:e1:8e:
02:e9:a9:72:63:ed:3a:09:80:2a:29:60:5f:d9:70:c4:eb:1b:
8a:52:3a:d1:23:30:35:54:bf:56:ee:f5:42:e1:dd:e4:c2:45:
b4:66:34:8d:de:71:d3:f2:52:1c:63:4d:73:17:21:2b:65:b9:
c2:8c:b6:d8:b9:17:68:74:ff:41:d3:ac:c5:c1:c6:3c:2f:69:
28:ee:07:5a:40:1d:65:b7:f7:47:84:29:b5:5d:55:34:e3:e3:
92:68:7e:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:50 2024 by rpki-client on console-fra.rpki-client.org