Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/aehORO267_H6FAe2jdULxtOM9WQ.roa
File: aehORO267_H6FAe2jdULxtOM9WQ.roa (raw, json)
Hash identifier: x5OZvEywuja0t9UY4w7Z9RfXo0rP/nXAIgSFB7VV6TQ=
Subject key identifier: 69:E8:4E:44:ED:BA:EF:F1:FA:14:07:B6:8D:D5:0B:C6:D3:8C:F5:64
Certificate issuer: /CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Certificate serial: 0189ECEC058E0A164BBBF17EE744A363257A
Authority key identifier: 17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/aehORO267_H6FAe2jdULxtOM9WQ.roa
Signing time: Sun 13 Aug 2023 03:23:58 +0000
ROA not before: Sun 13 Aug 2023 03:23:58 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 140683
IP address blocks: 45.135.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:89:ec:ec:05:8e:0a:16:4b:bb:f1:7e:e7:44:a3:63:25:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17d03f298180cc109f19d4b1992c7d71c56c8dcc
Validity
Not Before: Aug 13 03:23:58 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=69e84e44edbaeff1fa1407b68dd50bc6d38cf564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:a4:01:84:fd:47:f9:30:2a:6e:60:0f:ae:33:
af:38:4d:5c:a5:f0:f7:2f:bc:a9:c1:d0:83:53:6f:
ef:2c:0e:45:02:55:d0:8e:30:6c:e9:99:57:43:5a:
40:71:8b:69:fb:dd:dc:9f:b0:b6:72:5d:5a:ed:80:
06:29:b4:11:a1:d8:3c:c8:8e:9c:39:c0:74:fa:31:
d7:08:e6:e6:a1:24:9c:bd:13:1d:33:11:7a:03:40:
91:44:25:46:81:d8:a5:5e:47:75:c9:3e:31:19:f5:
d2:59:3d:54:8a:98:bb:1a:9e:73:3e:69:22:c3:83:
77:32:0f:61:cf:f5:2c:2a:b4:24:68:85:52:0e:aa:
27:68:24:5d:4e:55:7c:84:92:ca:f8:5b:c0:9b:6a:
12:07:a5:4c:a8:6a:58:19:e9:6e:9d:9b:49:e5:d1:
5e:8a:2f:d2:66:b5:86:82:8c:04:52:06:94:b5:53:
1e:1b:51:a6:52:1a:2c:99:a8:91:c9:74:f5:ca:33:
a7:a2:93:08:33:43:12:46:da:db:21:3e:9b:09:b8:
57:4a:42:32:dc:31:a5:e2:c8:71:38:00:eb:9e:0b:
72:6d:8a:3e:9e:1e:4b:50:38:1f:80:e3:4e:58:b2:
80:12:f8:ab:57:00:ab:8a:30:11:d4:76:bc:ea:54:
10:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:E8:4E:44:ED:BA:EF:F1:FA:14:07:B6:8D:D5:0B:C6:D3:8C:F5:64
X509v3 Authority Key Identifier:
keyid:17:D0:3F:29:81:80:CC:10:9F:19:D4:B1:99:2C:7D:71:C5:6C:8D:CC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F9A_KYGAzBCfGdSxmSx9ccVsjcw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/aehORO267_H6FAe2jdULxtOM9WQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/82e253-0177-4a20-befe-918ac6462679/1/F9A_KYGAzBCfGdSxmSx9ccVsjcw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.237.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:1e:77:28:3a:ed:67:c0:1b:cc:1e:a5:b4:e3:6a:07:25:e3:
01:1e:ce:1a:04:e8:42:a1:a2:02:53:f3:a7:98:65:b4:92:c3:
58:c2:65:7f:07:77:1a:6a:3c:cd:85:b4:59:b8:22:e2:eb:29:
c0:b0:69:d5:d7:7d:fd:03:57:5e:7a:eb:b6:46:f6:c2:38:10:
40:18:a9:15:3d:3c:38:ea:f5:b7:3d:cc:d1:10:49:4d:00:5d:
36:a9:a4:fd:a1:b5:94:0d:3b:d9:19:0b:23:65:11:19:37:7f:
2a:f5:60:5c:a6:8e:e2:38:a6:55:68:1e:84:5c:65:c9:5b:08:
0d:ca:52:45:5b:00:2e:22:a2:6f:4e:98:2a:b3:b5:32:dc:14:
b5:f6:66:a0:b3:94:a0:b5:cc:bb:dc:6e:23:e7:2b:1e:7f:05:
13:e1:06:4b:65:36:d4:2d:05:39:e7:cd:1b:c8:50:d4:3e:eb:
b3:4a:ae:69:aa:67:48:f6:a4:9f:df:4c:af:04:13:f1:91:56:
09:e6:83:c4:1f:7b:2f:9a:97:b3:02:4b:50:e3:4a:ae:ca:83:
97:8e:0d:3b:35:f8:1e:6a:22:1e:ef:c5:75:3b:c8:c1:30:6c:
e4:79:bf:7c:75:a5:13:54:b9:ec:0b:b4:30:ee:67:30:0a:ba:
ef:38:c7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:26 2025 by rpki-client