Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4a7d7f-886d-4bdf-83d6-f66138066358/1/x8wwaoTPE7zrWkQla9onOLA5BQg.roa
File: x8wwaoTPE7zrWkQla9onOLA5BQg.roa (raw, json)
Hash identifier: QK7tC9y+uH8CnljP5jUe6MGAUiXrQonu2v4eyWbIICQ=
Subject key identifier: C7:CC:30:6A:84:CF:13:BC:EB:5A:44:25:6B:DA:27:38:B0:39:05:08
Certificate issuer: /CN=03cbdb0595fc48902938a78f42c1eaf0a159bf46
Certificate serial: 01849B1466311D2448E46502A069A551DD77
Authority key identifier: 03:CB:DB:05:95:FC:48:90:29:38:A7:8F:42:C1:EA:F0:A1:59:BF:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A8vbBZX8SJApOKePQsHq8KFZv0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4a7d7f-886d-4bdf-83d6-f66138066358/1/x8wwaoTPE7zrWkQla9onOLA5BQg.roa
Signing time: Mon 21 Nov 2022 16:45:16 +0000
ROA not before: Mon 21 Nov 2022 16:45:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201619
IP address blocks: 45.148.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9b:14:66:31:1d:24:48:e4:65:02:a0:69:a5:51:dd:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=03cbdb0595fc48902938a78f42c1eaf0a159bf46
Validity
Not Before: Nov 21 16:45:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7cc306a84cf13bceb5a44256bda2738b0390508
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:76:e2:d4:a3:11:c8:a8:4e:a4:6c:f7:5f:d6:
91:ea:7c:ba:be:e2:69:a0:06:66:08:34:0c:50:51:
af:73:7e:fd:37:0b:59:2a:b4:a0:60:0d:61:6d:6c:
8e:f7:13:e6:45:b6:ae:23:7f:ac:0b:13:49:b7:57:
fb:a8:8b:13:10:fc:f3:8b:a7:b5:30:fc:72:55:5f:
51:43:ce:08:87:8e:78:22:06:91:f5:03:73:39:4c:
83:49:39:e8:6e:42:d4:5d:a9:f8:cb:c6:9a:87:51:
bb:a5:06:9f:45:ba:e9:49:c0:1c:a4:1e:66:6c:26:
75:75:7f:80:fe:91:56:fe:1a:14:a4:61:d7:5e:e1:
9f:e4:fc:a0:cd:33:0c:28:17:6d:05:c7:59:a4:e7:
82:77:6b:e9:98:c6:ef:87:59:74:17:a8:93:5d:ab:
d7:64:3a:63:ed:c8:69:bb:93:12:cf:34:b3:48:c0:
7a:1c:1a:5e:91:eb:55:34:55:2b:e7:15:82:ea:95:
8d:49:72:fa:0e:0f:a7:5e:4b:fd:15:3f:6b:bc:7e:
6f:69:9a:d1:0f:29:bb:63:8c:19:fc:cc:f0:1b:b0:
41:21:e7:77:ab:b5:27:8e:67:f7:69:b4:84:cd:7c:
23:ed:9e:47:b4:65:ef:bf:6c:3b:d1:2b:44:25:07:
b6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:CC:30:6A:84:CF:13:BC:EB:5A:44:25:6B:DA:27:38:B0:39:05:08
X509v3 Authority Key Identifier:
keyid:03:CB:DB:05:95:FC:48:90:29:38:A7:8F:42:C1:EA:F0:A1:59:BF:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A8vbBZX8SJApOKePQsHq8KFZv0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4a7d7f-886d-4bdf-83d6-f66138066358/1/x8wwaoTPE7zrWkQla9onOLA5BQg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4a7d7f-886d-4bdf-83d6-f66138066358/1/A8vbBZX8SJApOKePQsHq8KFZv0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.75.0/24
Signature Algorithm: sha256WithRSAEncryption
a9:49:97:31:7b:19:b9:02:5c:3d:d4:bb:cd:4f:01:68:0e:b6:
b9:0e:5c:2e:e1:c5:fb:2e:5f:ec:c2:d3:75:a2:e3:63:79:4e:
ce:26:3d:60:4e:38:ec:9e:de:45:3a:d4:4e:89:34:89:69:20:
a8:8b:43:53:e6:79:e2:b6:ef:56:9d:be:13:4e:f8:f5:ee:97:
9e:3e:a9:97:55:cb:d5:9f:0a:38:9d:e0:62:e7:19:57:29:6c:
42:7c:f3:25:fd:71:53:3b:6c:f7:88:77:70:5e:77:9a:ba:09:
a9:e9:5d:7c:bd:6e:b8:fe:1f:b8:28:cd:a0:02:d4:fc:6d:0e:
22:fb:dd:ff:7a:9d:d8:f4:87:dd:51:b2:a0:69:51:d0:3d:27:
02:2d:0b:1a:42:d0:64:0b:3d:c1:76:0d:78:af:d5:21:f7:b3:
47:97:d3:5d:84:45:6f:b5:4f:ff:2d:68:22:bf:a2:cc:af:43:
3a:47:2d:9f:c5:85:8d:dc:77:c3:9d:bf:0a:3a:e7:fd:36:c0:
c5:a5:12:da:7a:d7:e1:ff:77:86:26:27:71:3c:64:fa:26:f3:
44:8b:c2:31:bf:1e:f0:a4:12:70:f7:20:89:1a:9c:62:0a:5f:
62:e6:cc:0a:ab:a2:31:76:ec:37:1b:9d:44:d2:1a:c3:26:30:
15:20:73:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:12 2024 by rpki-client on console-fra.rpki-client.org