Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/7o4-Wr2hE_pfVLb8GadKlz6_UGw.roa
File: 7o4-Wr2hE_pfVLb8GadKlz6_UGw.roa (raw, json)
Hash identifier: VFaVo3u6RBC8veJlaEW2uPOjT07bjK6PpUlskOS36SQ=
Subject key identifier: EE:8E:3E:5A:BD:A1:13:FA:5F:54:B6:FC:19:A7:4A:97:3E:BF:50:6C
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 01855108FC7B7201CFFD22923788022B18F4
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/7o4-Wr2hE_pfVLb8GadKlz6_UGw.roa
Signing time: Tue 27 Dec 2022 00:43:41 +0000
ROA not before: Tue 27 Dec 2022 00:43:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44222
IP address blocks: 5.182.39.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:51:08:fc:7b:72:01:cf:fd:22:92:37:88:02:2b:18:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Dec 27 00:43:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee8e3e5abda113fa5f54b6fc19a74a973ebf506c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:35:69:c2:e2:bc:25:20:65:17:3e:4e:e9:4d:
6b:fc:b5:28:97:d1:d2:53:02:1d:54:09:df:27:d2:
71:33:3f:71:17:5e:18:a6:ef:9c:3f:31:ad:8d:3f:
55:dc:ba:24:4e:e7:19:a5:f4:6d:5f:a3:35:c5:8d:
d3:a1:6f:15:f0:5b:b5:e4:b5:47:32:4b:a3:f9:02:
cc:64:61:98:39:46:6b:ae:93:a2:eb:88:5d:3e:89:
e0:d5:97:86:ed:c7:72:12:98:f0:8b:00:87:cf:8c:
d0:95:46:04:18:5d:c2:0c:15:cd:a6:b5:35:11:50:
5d:c5:05:a6:5d:25:0f:b8:17:f1:8f:cc:57:ba:b7:
97:fd:da:14:6f:a3:d5:20:9c:b7:db:1b:72:9b:5d:
2d:58:b1:93:32:6b:b8:84:ce:55:98:07:95:fe:db:
11:d7:72:e6:f7:9d:c2:b0:68:bf:6d:3c:14:c3:d4:
6b:9d:7a:a9:f6:c3:90:7d:50:14:11:b2:8d:bb:d3:
0a:87:73:9c:fd:b4:e0:53:c4:0c:f1:50:e8:b6:51:
de:cd:5e:bc:9b:30:f2:52:77:16:3e:a9:29:49:a5:
f9:87:e5:a4:7a:be:7a:9c:b1:d7:cc:8c:c3:7b:c8:
08:44:0e:7f:00:9c:92:25:cf:0d:4c:bf:02:57:e1:
0f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:8E:3E:5A:BD:A1:13:FA:5F:54:B6:FC:19:A7:4A:97:3E:BF:50:6C
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/7o4-Wr2hE_pfVLb8GadKlz6_UGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.39.0/24
45.159.251.0/24
Signature Algorithm: sha256WithRSAEncryption
46:47:ff:80:40:6c:f8:17:12:dc:e9:68:e3:bd:a8:a4:0d:db:
be:28:6e:ea:f8:35:e5:4f:8a:9f:0a:24:f4:0a:7b:10:c8:10:
93:22:e0:21:4a:cf:8c:4b:91:90:8a:61:ad:9a:16:e4:55:b1:
5f:22:44:95:61:2e:bd:91:f7:8e:1a:fe:18:62:68:ec:05:71:
30:5e:fe:a8:6a:91:7e:36:2d:9f:b3:7c:3a:71:dd:79:22:d8:
fd:da:08:87:32:19:62:a0:d5:a8:03:75:4f:7c:a2:60:2f:74:
ce:ba:4c:18:50:e6:a1:06:33:f4:9b:df:2f:3f:2a:ce:58:ea:
80:dd:06:cc:12:25:70:11:f9:ed:f5:6f:9d:54:21:d0:e1:04:
ef:6a:7b:06:4e:16:4e:d2:ed:07:94:50:d7:99:13:62:ac:80:
71:be:ac:f7:65:e7:d3:30:98:d0:e0:bc:d9:57:e0:30:e1:e9:
dd:25:f5:69:54:d0:db:c3:ba:a9:78:61:99:35:6a:19:3f:1b:
d1:31:3f:03:a0:39:c4:88:8d:d7:34:1c:5a:d8:25:9f:db:af:
d1:0b:cc:1b:95:91:81:f0:45:b2:31:38:8a:1f:72:5e:bc:51:
38:ca:8e:b4:49:f8:b9:e4:6f:45:fe:28:73:7f:11:38:c7:e4:
99:d2:c6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org