Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xfhkhapO_8h34n2fgehM8J13NGw.roa
File: xfhkhapO_8h34n2fgehM8J13NGw.roa (raw, json)
Hash identifier: fwSxPQJZdMd8OpDoqKNFuj94vHvSshR09aABj8lWX08=
Subject key identifier: C5:F8:64:85:AA:4E:FF:C8:77:E2:7D:9F:81:E8:4C:F0:9D:77:34:6C
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 018531B99FCCE8CB559225095F94F85F4757
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xfhkhapO_8h34n2fgehM8J13NGw.roa
Signing time: Tue 20 Dec 2022 22:48:46 +0000
ROA not before: Tue 20 Dec 2022 22:48:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56738
IP address blocks: 45.148.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:31:b9:9f:cc:e8:cb:55:92:25:09:5f:94:f8:5f:47:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 20 22:48:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5f86485aa4effc877e27d9f81e84cf09d77346c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:b8:a4:be:b9:2d:1f:5e:a6:df:3b:41:e3:e4:
7c:32:53:61:69:e4:a2:cf:05:a1:80:8c:50:e4:20:
8e:62:7b:95:dc:e5:1d:bf:0a:d5:74:e1:c7:06:9c:
1c:d0:fa:68:ac:59:30:06:94:e3:6a:41:49:3a:68:
4d:0a:b2:d5:c2:4f:18:36:88:f5:16:0a:d5:4b:f9:
50:47:40:53:22:85:1d:5e:d0:59:ee:c2:7c:b1:d1:
ce:91:c9:34:01:82:2c:1a:34:6f:14:bc:97:dd:46:
40:d4:34:39:6b:ac:6e:66:4c:4b:ea:7e:00:d0:d6:
79:0a:86:19:4e:ea:98:13:6b:a2:51:df:7e:0e:0e:
94:0d:cd:fe:3d:4a:a3:be:52:55:cf:72:a6:d1:26:
54:a7:6c:6e:e4:1a:7d:e4:f9:55:b5:64:68:00:6c:
af:3b:aa:2b:21:2e:04:70:b5:3f:39:57:63:d1:86:
1c:ea:f8:dc:8a:e8:6d:57:42:26:69:2e:fc:29:a9:
a4:16:6b:ac:0c:00:86:70:d8:61:a6:03:83:51:e6:
7a:10:32:aa:cb:0d:4d:2c:5f:7c:16:da:c5:45:4e:
83:2c:bf:7c:e3:08:5d:26:16:3d:46:b2:13:a2:09:
27:31:00:d9:89:61:02:b2:a1:5a:5d:52:a8:39:a6:
72:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F8:64:85:AA:4E:FF:C8:77:E2:7D:9F:81:E8:4C:F0:9D:77:34:6C
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/xfhkhapO_8h34n2fgehM8J13NGw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.117.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:c4:db:a9:d3:5d:1c:b0:e9:e6:37:e2:ed:74:96:99:22:bd:
cf:1f:16:ff:ad:1c:53:ad:b2:60:82:6f:65:99:55:80:42:0f:
c1:9f:06:ba:0e:ae:f9:1e:b8:84:4a:45:4c:16:2c:5c:af:6b:
f1:bf:a4:21:c3:9a:3c:79:54:b1:5d:2a:73:f1:72:ba:98:5a:
14:7d:ee:5e:f7:fd:46:1a:18:2a:1d:d7:94:15:b5:41:ff:c3:
a9:5c:63:0a:0a:ac:dd:07:20:1a:db:56:eb:c8:b9:c3:4c:e7:
86:8a:85:73:8e:ce:c4:8b:27:6c:a8:fb:54:88:08:17:0e:6a:
6a:c9:f8:91:53:db:34:39:76:5a:7a:27:6f:84:3a:77:15:6e:
fd:67:5c:31:77:4f:b9:95:9a:74:2d:a6:62:9f:c2:23:9f:33:
e1:81:a6:22:16:b2:9b:c6:7c:00:40:aa:8e:cd:d5:c6:50:9b:
50:93:34:44:8b:4c:ca:d1:8d:40:ad:5b:d9:32:45:1b:5e:05:
13:a7:40:d8:77:03:86:e6:6e:ce:32:d4:a2:1e:78:ba:5e:9b:
28:7d:35:fa:d5:33:5c:04:27:d9:ac:6d:a5:97:9d:d6:73:5b:
21:09:ee:b4:2a:c7:50:26:08:96:72:70:21:d7:54:f3:68:94:
21:79:89:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:21 2023 by rpki-client on console-fra.rpki-client.org