Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/_lY9bmqYROqxzU3Hd1tbcwtQauo.roa
File: _lY9bmqYROqxzU3Hd1tbcwtQauo.roa (raw, json)
Hash identifier: UC1a2KOtr6RbSzgAr9n/rTk6H/4L4F3oM9pQtHYZvKI=
Subject key identifier: FE:56:3D:6E:6A:98:44:EA:B1:CD:4D:C7:77:5B:5B:73:0B:50:6A:EA
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0803ACF9
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/_lY9bmqYROqxzU3Hd1tbcwtQauo.roa
Signing time: Thu 10 Feb 2022 18:46:41 +0000
ROA not before: Thu 10 Feb 2022 18:46:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 45.145.130.0/23 maxlen: 23
45.140.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134458617 (0x803acf9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Feb 10 18:46:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe563d6e6a9844eab1cd4dc7775b5b730b506aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:57:f7:ec:30:bd:e1:40:e0:21:6c:e3:f1:53:
14:f4:56:f3:43:f0:4a:25:ac:43:72:02:00:24:69:
3a:43:3e:ab:39:56:63:30:a6:85:30:eb:1b:81:57:
cb:20:9d:8e:ae:23:4a:41:40:c3:5d:15:08:6c:5d:
3d:90:ac:6b:14:5d:ce:a1:d7:97:56:f6:d6:a6:ea:
cb:d2:24:30:f7:8d:0a:d5:ea:6f:c2:ae:32:2b:5c:
81:ce:c6:c1:15:f1:f6:9b:34:56:25:5c:46:81:80:
d9:8f:b1:05:13:ba:c9:84:a2:9c:9f:2f:76:dd:86:
d8:eb:0f:06:54:7c:c0:36:47:6c:ba:a4:d3:af:6d:
25:04:88:85:51:cd:ce:e1:b6:76:5b:b3:ad:96:e2:
1d:65:f7:d2:89:3f:0c:08:ab:68:c5:de:70:4e:39:
56:c4:84:9b:ef:df:d6:a2:bb:c3:0b:84:ba:9c:5c:
1a:b8:83:54:8a:85:90:26:51:ff:7f:4b:26:9b:db:
e0:a5:50:e3:ff:e0:c4:38:93:51:1f:13:92:c0:84:
37:32:2b:f1:5f:ee:23:3b:30:cf:2b:cf:a3:7d:18:
42:c6:1b:60:19:b5:d4:18:18:de:da:b2:63:90:5c:
26:96:af:8f:5a:03:5c:64:19:30:c0:ef:a8:b9:17:
3b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:56:3D:6E:6A:98:44:EA:B1:CD:4D:C7:77:5B:5B:73:0B:50:6A:EA
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/_lY9bmqYROqxzU3Hd1tbcwtQauo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.206.0/23
45.145.130.0/23
Signature Algorithm: sha256WithRSAEncryption
58:97:37:c4:5d:dc:1f:49:24:da:d4:82:4e:39:93:8b:6d:4d:
50:fb:06:08:d0:65:96:be:14:15:73:42:51:cb:e7:a8:b9:eb:
a7:a5:67:85:06:e1:ee:1f:ed:f9:ba:a4:e6:f8:5e:11:75:0e:
cc:62:15:ca:a4:94:35:1a:e0:27:df:ed:7a:b9:2b:dd:e2:08:
2b:90:6b:82:a4:e7:81:46:3e:c3:4b:1e:62:38:24:19:8f:8b:
6a:3d:52:c0:cd:36:53:fb:bb:aa:1d:20:01:49:55:a3:51:01:
87:a0:93:21:96:00:02:bc:0c:9f:54:ad:47:32:87:2d:15:20:
c6:3c:0c:21:a7:97:b9:aa:da:0a:e7:1c:37:01:76:0a:60:5c:
68:c4:e8:7a:b6:5b:15:39:b7:d1:88:eb:d4:79:56:1c:18:29:
92:6a:a1:7c:a9:7c:af:cb:4e:b7:16:5f:03:01:a1:5f:96:a7:
26:fd:8b:a8:8b:3f:e3:4c:5c:d9:10:a2:d3:67:8d:a8:a4:01:
00:8a:1a:ef:a7:f3:80:1c:7d:0f:5f:60:20:3b:77:7a:ff:01:
1b:4f:fe:71:ad:1d:f5:db:57:b5:88:01:24:90:1d:f5:0a:82:
d2:8e:97:4f:9e:96:f7:04:8b:3d:31:79:bd:50:24:c5:32:c1:
45:ad:15:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org