Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WHPp0lWEkKfvjDNOhLs2AYQWbb0.roa
File: WHPp0lWEkKfvjDNOhLs2AYQWbb0.roa (raw, json)
Hash identifier: d1UrZi40QWNVC0PBbB9wROVUMd4srj9jmU7Ahrr9LzI=
Subject key identifier: 58:73:E9:D2:55:84:90:A7:EF:8C:33:4E:84:BB:36:01:84:16:6D:BD
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0183ABD607E9993C24AAD50C6A5D0E8548DD
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WHPp0lWEkKfvjDNOhLs2AYQWbb0.roa
Signing time: Thu 06 Oct 2022 05:47:54 +0000
ROA not before: Thu 06 Oct 2022 05:47:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396362
IP address blocks: 45.148.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ab:d6:07:e9:99:3c:24:aa:d5:0c:6a:5d:0e:85:48:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Oct 6 05:47:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5873e9d2558490a7ef8c334e84bb360184166dbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:a7:b0:58:c0:d5:44:2a:15:c2:1e:d6:ce:0b:
b3:9f:07:eb:c4:23:ad:f9:6f:9a:0d:50:7f:79:ff:
ca:aa:fd:df:97:3a:12:d8:fb:18:59:39:53:09:02:
94:59:50:f1:4f:ce:df:28:79:08:60:da:eb:93:2d:
01:ab:42:76:bf:1f:39:6c:a5:c5:83:52:a3:1f:11:
6c:32:23:44:bd:93:af:10:dc:a3:66:e4:d9:b9:39:
eb:be:c9:8f:02:52:65:a5:c8:84:2d:52:e1:1e:ac:
00:a2:4b:a6:f4:15:fb:10:e7:87:be:cd:ab:0f:25:
0a:9f:b0:14:26:b8:3a:72:36:b0:dd:cd:23:1e:6a:
fb:6f:a6:22:f0:0f:75:5c:e9:c6:60:21:58:be:b2:
70:53:22:fb:96:94:32:92:07:df:df:7a:cd:da:a5:
7d:5f:1e:51:73:5a:33:bf:7c:ae:63:0f:11:6e:28:
08:05:fd:0c:a3:45:9a:e2:19:1d:7e:f2:20:93:c6:
77:02:af:99:20:21:40:57:d4:63:6c:b0:23:9c:ec:
18:8e:61:54:c7:7b:60:aa:b8:eb:a2:0d:08:41:68:
ec:7d:a1:e9:3c:2f:84:df:3a:57:a6:12:4a:7c:3a:
5e:19:f1:45:69:a1:02:f7:1d:c1:26:c7:3b:e3:a7:
35:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:73:E9:D2:55:84:90:A7:EF:8C:33:4E:84:BB:36:01:84:16:6D:BD
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/WHPp0lWEkKfvjDNOhLs2AYQWbb0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.117.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:8b:da:6f:c2:56:5b:0e:35:e4:33:18:43:71:64:1b:64:d7:
40:ca:f5:c4:2b:68:82:8b:2d:30:2d:f0:4c:7b:56:1c:ca:41:
91:4e:c5:e4:b6:a3:4b:3d:13:ee:77:a7:59:ee:68:e0:c1:79:
56:4c:95:8e:f2:82:ac:39:6e:59:27:0c:d1:7c:bc:75:9b:ae:
4a:b3:6a:16:66:74:b7:91:59:44:17:8e:84:fc:a0:dd:71:4c:
c6:8b:03:82:2c:2d:69:40:9d:24:10:9c:b1:dc:22:3a:b3:f3:
a9:f7:a8:36:f0:94:7d:d9:d7:c6:11:48:f7:3c:26:d1:96:7f:
b6:8c:7a:a9:45:0f:47:c0:d5:ee:9f:d3:56:5e:8e:d3:33:a2:
22:4b:7f:7c:9d:fb:04:42:a4:dc:fb:19:99:86:21:36:6b:6e:
a6:09:c6:20:61:99:c0:be:1b:3f:c8:29:a6:82:63:38:ac:37:
4d:f1:f7:6c:78:4b:fa:84:71:22:a5:ca:88:74:7e:19:24:36:
0b:42:1b:00:f3:65:bf:a6:80:e3:ab:d3:ab:60:0c:f0:39:20:
45:39:22:a4:96:40:a7:27:48:8a:f4:b7:0f:4e:ec:5f:35:fd:
e8:0a:e9:d6:90:e2:06:74:90:5c:5d:d4:7e:8f:2c:60:74:cb:
b2:9f:9f:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:16 2023 by rpki-client on console-fra.rpki-client.org