Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/SNGGkBLG0Ez-4M218s_4lalVA7A.roa
File: SNGGkBLG0Ez-4M218s_4lalVA7A.roa (raw, json)
Hash identifier: 2lzYyKSca+ey42rHeQe9gLezKBSAQpd7tp6buOdnczU=
Subject key identifier: 48:D1:86:90:12:C6:D0:4C:FE:E0:CD:B5:F2:CF:F8:95:A9:55:03:B0
Certificate issuer: /CN=b660d78320860d5efe729e208b5eb4b2abebe078
Certificate serial: 01840E6EC7CD85554D30FD9BB681CEF59DEE
Authority key identifier: B6:60:D7:83:20:86:0D:5E:FE:72:9E:20:8B:5E:B4:B2:AB:EB:E0:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/SNGGkBLG0Ez-4M218s_4lalVA7A.roa
Signing time: Tue 25 Oct 2022 09:17:31 +0000
ROA not before: Tue 25 Oct 2022 09:17:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39704
IP address blocks: 45.132.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:6e:c7:cd:85:55:4d:30:fd:9b:b6:81:ce:f5:9d:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b660d78320860d5efe729e208b5eb4b2abebe078
Validity
Not Before: Oct 25 09:17:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=48d1869012c6d04cfee0cdb5f2cff895a95503b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:64:8d:32:0c:13:fb:e1:83:0b:5e:3b:cb:3d:
81:36:2f:19:ec:fe:37:b2:76:c5:09:fa:98:2e:15:
10:9f:5a:3a:0a:8c:60:71:27:cb:9f:54:33:96:b6:
75:a9:9e:99:9c:22:e2:f7:24:fa:2a:18:ca:36:84:
cb:24:df:10:5b:00:d0:e3:4e:e9:fe:df:bb:7d:7d:
c2:43:aa:4f:a7:8b:da:ca:88:83:5c:02:83:a7:27:
8c:81:3d:d7:07:8e:77:e8:f3:aa:a0:f7:85:da:be:
ec:7c:cd:0b:0a:33:0f:09:ef:9a:46:4a:df:97:c5:
49:67:05:e6:5b:8f:7f:52:97:b2:7e:14:a0:eb:36:
77:fd:c0:d3:22:bb:f8:ec:08:f0:4f:a0:66:22:48:
60:ce:dd:75:59:65:11:51:f1:51:b0:3d:73:63:74:
76:25:2f:da:a4:8f:63:fa:fd:e1:11:4c:7f:35:aa:
8f:6b:d6:c8:7b:c5:f8:55:37:54:4f:4f:c0:bf:6f:
60:dc:6d:b3:75:98:36:3b:91:69:63:33:99:b1:60:
99:b6:ed:50:10:6b:31:bf:ec:59:d6:11:d1:c7:ae:
91:e5:a5:a2:1e:a5:43:ff:cf:48:f7:33:64:fa:e6:
4d:1e:69:1b:91:e6:5d:94:c6:05:c7:fc:80:1d:8f:
c0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:D1:86:90:12:C6:D0:4C:FE:E0:CD:B5:F2:CF:F8:95:A9:55:03:B0
X509v3 Authority Key Identifier:
keyid:B6:60:D7:83:20:86:0D:5E:FE:72:9E:20:8B:5E:B4:B2:AB:EB:E0:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tmDXgyCGDV7-cp4gi160sqvr4Hg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/SNGGkBLG0Ez-4M218s_4lalVA7A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/daf212-f009-4bd4-874d-624c3e788cdf/1/tmDXgyCGDV7-cp4gi160sqvr4Hg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.8.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:7f:8c:75:ea:47:18:35:6b:98:07:e1:1a:d3:52:39:90:f0:
74:6f:45:91:43:bd:dd:9c:b1:14:37:4b:92:75:9c:2f:d3:64:
5c:ec:46:2e:4d:92:c6:db:15:23:4e:9b:47:c7:b9:45:d0:f2:
b3:92:fe:1b:a5:d5:2a:5f:37:ad:5f:da:44:27:9d:25:9a:ac:
cd:4d:95:af:2e:cf:97:5d:f0:b7:40:f1:11:df:f0:f7:c5:91:
89:bc:13:36:92:1f:91:0e:df:b3:c1:06:2a:f7:c4:13:d7:8b:
d8:5c:03:c7:b9:9b:d7:36:c7:b0:b4:02:2f:14:0d:f2:51:c8:
91:b0:4a:2e:7c:d2:af:1c:e0:d1:46:91:c7:27:71:03:a1:f2:
91:8c:4b:d3:e4:8e:1e:41:70:49:47:50:b6:40:64:1d:9c:75:
d0:c0:64:c8:1e:ba:a0:3d:96:13:3a:b8:47:11:89:3c:ea:04:
53:cb:62:4e:10:0b:80:42:ec:99:2c:86:08:10:73:e3:78:30:
c0:99:f3:21:3e:0f:0e:e0:07:e8:dd:5c:8c:2d:ec:9e:30:f1:
f6:ff:1a:fc:c7:18:83:50:07:2a:4c:e0:c6:fe:a3:30:76:6f:
fa:27:ce:3b:9e:e5:4f:64:ab:f2:94:80:46:f5:53:13:74:dc:
d4:83:ba:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:18 2024 by rpki-client on console-ams.rpki-client.org