Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1c4Ef7DPOBSwpwDet4iqu4Wj5qc.roa
File: 1c4Ef7DPOBSwpwDet4iqu4Wj5qc.roa (raw, json)
Hash identifier: 8xALIts7hSs9+hkI5rrF6GaHHN1uHv3vgPJUqsVD+vA=
Subject key identifier: D5:CE:04:7F:B0:CF:38:14:B0:A7:00:DE:B7:88:AA:BB:85:A3:E6:A7
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 1492621D
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1c4Ef7DPOBSwpwDet4iqu4Wj5qc.roa
Signing time: Thu 12 May 2022 13:11:26 +0000
ROA not before: Thu 12 May 2022 13:11:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50589
IP address blocks: 45.131.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345137693 (0x1492621d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: May 12 13:11:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5ce047fb0cf3814b0a700deb788aabb85a3e6a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:9d:fc:25:86:ac:a1:ce:86:ae:97:df:38:96:
83:c1:7c:d3:0c:01:f2:23:97:a4:de:8a:5f:af:82:
5e:47:51:54:ba:0c:7b:2c:f7:4e:2a:9c:c8:a2:54:
e2:db:c1:6f:40:d4:52:74:d4:c7:a8:ee:be:14:ce:
ce:e5:d4:7b:09:c1:78:92:96:34:67:25:d9:d3:30:
08:ed:8f:0e:c6:75:00:02:ed:1a:b4:65:14:2e:20:
12:a8:42:47:9f:29:dc:93:37:a7:ba:d7:3a:b1:62:
1f:c1:90:a6:5e:2c:3d:03:21:ae:1b:18:f3:fe:73:
58:00:fe:4a:54:54:b5:d8:70:66:ca:3e:84:76:94:
2c:a1:36:06:9b:82:00:c5:93:12:21:03:65:bd:3e:
c2:ba:9e:f5:f3:07:3f:47:41:37:c4:84:1d:d8:74:
19:a9:b9:bd:a9:94:ab:83:b4:67:6b:77:61:ea:89:
e7:94:5e:b3:5b:3b:d7:65:c9:13:b6:0e:d5:07:35:
31:66:a2:f5:7e:95:ce:1f:49:f7:ad:9c:52:a4:df:
49:5d:d7:0d:21:98:19:f2:92:11:4f:43:e3:d0:4f:
b4:cb:2a:df:c4:4e:3a:c8:c7:e2:ae:11:9f:8e:f1:
6a:19:78:ba:78:ca:8f:2f:86:f6:d4:53:2d:d6:9f:
44:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:CE:04:7F:B0:CF:38:14:B0:A7:00:DE:B7:88:AA:BB:85:A3:E6:A7
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/1c4Ef7DPOBSwpwDet4iqu4Wj5qc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.186.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:1c:76:4f:11:13:07:ad:a6:69:b4:97:f2:72:4f:4b:0a:40:
c0:80:6a:b8:b9:e3:ce:0b:81:df:b5:30:0c:1d:83:b2:82:17:
71:f6:a8:6a:78:95:4d:77:ad:22:14:73:0b:ea:c4:a9:2e:f3:
6f:4d:cb:44:bf:2a:25:81:f3:e2:19:fe:ba:14:87:60:02:02:
ae:d1:96:dc:6e:12:f3:1c:9a:6a:8d:a1:29:b9:fd:7c:3b:6d:
e3:b0:45:7e:35:f3:7b:3b:a7:20:b4:22:91:0f:22:ae:a7:1a:
f9:10:63:d6:bb:c9:77:ac:35:01:71:5c:3d:55:b1:1e:cb:4b:
78:e5:6c:af:66:ea:64:4c:99:2d:1a:4b:ef:5c:37:74:89:0d:
67:44:85:fc:a6:48:b4:e2:50:e6:eb:d1:31:0e:a2:9d:cf:fc:
ed:f5:b1:ec:e9:37:64:20:1d:f4:dc:21:c7:6f:23:dd:10:25:
b7:bc:04:36:9c:76:e7:75:6e:bf:4f:95:2c:48:94:64:36:2a:
61:b9:f4:55:6f:b5:ae:d3:22:bf:3f:72:62:e4:9a:ba:2f:0c:
10:eb:75:3f:b8:66:d8:df:48:7e:a4:39:be:ec:79:ab:b9:bf:
10:68:62:5f:01:a2:79:df:19:c5:c5:da:72:bc:6a:7b:b3:74:
09:2d:8f:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:12 2023 by rpki-client on console-fra.rpki-client.org