Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/g3SNnQlDHBTwFQUnBVcgJ7sBeH0.roa
File: g3SNnQlDHBTwFQUnBVcgJ7sBeH0.roa (raw, json)
Hash identifier: Yed80hSqTAi1F1+on7Op6iqoh4m2TE5N+FDDxQn+iNo=
Subject key identifier: 83:74:8D:9D:09:43:1C:14:F0:15:05:27:05:57:20:27:BB:01:78:7D
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 018A698042D404BC08EC5B183B9C3109A18C
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/g3SNnQlDHBTwFQUnBVcgJ7sBeH0.roa
Signing time: Wed 06 Sep 2023 07:58:47 +0000
ROA not before: Wed 06 Sep 2023 07:58:47 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 0
IP address blocks: 45.145.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:69:80:42:d4:04:bc:08:ec:5b:18:3b:9c:31:09:a1:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Sep 6 07:58:47 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=83748d9d09431c14f015052705572027bb01787d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1a:b4:5f:0c:8d:c1:bb:ce:b0:e4:95:db:ac:
23:0f:9a:a8:a5:d1:13:74:4c:1a:bb:b6:27:fc:18:
c7:88:3d:4b:7c:b5:e2:2e:d2:cb:c8:15:b1:d8:23:
45:b4:cb:ca:d6:c1:98:14:5a:ec:d7:65:71:06:92:
51:71:63:16:f5:bb:e3:25:7d:15:c9:4b:6b:32:c1:
e9:ea:dc:7f:fe:79:b7:cc:01:53:a2:d7:23:28:68:
a8:e3:bf:e8:90:e8:e3:38:78:60:ea:a6:e1:ef:da:
ea:dd:c9:e5:47:f2:7f:fb:87:45:71:63:c6:74:79:
20:18:1e:e6:e4:ea:1c:5c:63:ee:a3:81:94:6c:8e:
08:6c:ae:f7:0f:ef:e6:17:68:79:96:a8:dc:d4:50:
ce:f6:d0:f8:de:07:18:8d:4c:d6:db:27:61:47:d9:
94:f3:f3:84:44:43:53:e1:fc:72:d9:ab:4d:6a:eb:
d5:8e:b3:1d:8e:c4:f5:5f:6e:bd:6f:a3:31:da:75:
26:3f:96:4e:94:c9:68:01:68:de:39:e7:dc:30:6b:
27:3e:6b:67:88:5a:ad:d0:53:d3:6f:5e:6e:42:ea:
e1:ec:09:5a:6d:b3:99:1f:88:c8:de:83:85:62:d6:
04:0b:45:73:35:db:dc:3c:cf:27:94:a4:f4:8e:e3:
ac:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:74:8D:9D:09:43:1C:14:F0:15:05:27:05:57:20:27:BB:01:78:7D
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/g3SNnQlDHBTwFQUnBVcgJ7sBeH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.148.0/22
Signature Algorithm: sha256WithRSAEncryption
82:b1:b6:fc:fd:16:1d:8e:05:5c:64:95:58:f1:13:6e:b9:35:
de:d4:17:89:0f:1d:37:82:9d:9b:63:8b:31:ca:65:98:4f:dd:
79:30:f7:36:fc:e8:45:cb:6f:26:11:8d:60:2d:06:7f:40:2e:
5c:bf:26:bf:b0:2f:7a:68:45:c5:56:9b:2b:a8:46:a3:c3:48:
33:c7:a5:06:7f:81:3e:94:84:29:dd:c7:08:b8:14:f7:47:07:
e0:ef:e8:09:1d:77:78:90:02:dd:47:a6:17:4c:66:c5:67:6f:
3f:00:a0:c6:0d:ed:89:cc:ac:ea:ac:eb:8a:ad:e1:b9:61:00:
56:06:76:dd:7b:d6:6f:4b:c4:84:3e:68:ac:b6:67:50:50:44:
77:9e:8d:89:48:b6:bc:4a:71:7f:ef:5b:7e:89:5d:ee:06:69:
77:ee:7e:c0:3e:71:eb:35:19:07:bc:1f:d5:56:65:5c:a4:01:
3e:61:ef:b7:ac:c7:75:bb:fb:6d:6d:4c:c8:03:8f:6e:76:26:
90:56:db:12:d7:a1:09:d6:f3:16:04:54:da:eb:86:1c:06:f7:
46:93:25:29:82:6d:49:e5:b3:35:25:83:be:cf:c4:fe:68:d9:
05:f5:76:49:a7:37:d5:02:c1:ec:3f:52:e0:28:cd:a5:c3:d2:
a0:7e:61:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:26:05 2025 by rpki-client