Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/uX4pQDOVQ6WoL87x83g49BSLSY4.roa
File: uX4pQDOVQ6WoL87x83g49BSLSY4.roa (raw, json)
Hash identifier: 3zdO5o3kdou/wQzo6W8+GWJBnNMyiGb1MzjEe+a51qY=
Subject key identifier: B9:7E:29:40:33:95:43:A5:A8:2F:CE:F1:F3:78:38:F4:14:8B:49:8E
Certificate issuer: /CN=a2de4a072a5bcb74d20e92ddbbd7f6477c3c8fce
Certificate serial: 0725D62B
Authority key identifier: A2:DE:4A:07:2A:5B:CB:74:D2:0E:92:DD:BB:D7:F6:47:7C:3C:8F:CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ot5KBypby3TSDpLdu9f2R3w8j84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/uX4pQDOVQ6WoL87x83g49BSLSY4.roa
Signing time: Sat 01 Jan 2022 07:58:09 +0000
ROA not before: Sat 01 Jan 2022 07:58:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208313
IP address blocks: 45.146.148.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119920171 (0x725d62b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a2de4a072a5bcb74d20e92ddbbd7f6477c3c8fce
Validity
Not Before: Jan 1 07:58:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b97e2940339543a5a82fcef1f37838f4148b498e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1c:dc:25:59:a3:a1:2f:99:f7:0b:35:f0:3a:
a3:4f:29:c9:de:c3:8a:b6:04:1b:aa:1d:47:77:4f:
62:9a:c6:d3:b8:2b:75:c7:1f:28:0b:d4:29:e2:f4:
31:33:50:b3:9b:8a:ed:83:16:28:f8:2e:63:bc:7b:
81:86:78:7a:45:98:bf:7b:a6:b1:9e:bb:af:09:6c:
36:2d:0b:f7:0a:ac:89:8d:97:e2:46:06:16:a0:10:
8f:03:18:6d:21:35:49:7d:fd:6a:f9:a6:cb:c4:5e:
3c:ca:91:39:0f:3a:cc:0e:95:4e:9d:18:4d:fc:88:
4e:8f:b7:7a:55:a0:c1:17:4c:7f:bf:13:2b:d5:97:
86:4d:10:e3:36:f0:43:82:a9:23:8a:3a:4c:8a:a2:
b0:79:1b:54:f3:fa:02:97:91:73:43:92:e7:04:0a:
88:cc:e2:e5:af:6d:1a:fc:f7:81:ba:bf:ce:2f:31:
49:25:33:c8:23:33:08:fb:59:d7:fb:ec:8e:c3:d7:
0a:85:9e:6e:d3:49:f0:a2:8e:38:76:ab:70:f1:1c:
24:e5:a7:a8:50:17:3a:86:b9:66:83:b9:20:4e:a7:
16:67:7c:71:d4:6c:8a:fa:71:b5:16:09:5e:51:da:
f6:a0:c9:2b:81:fc:31:6d:93:60:c2:8a:74:7b:43:
9c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:7E:29:40:33:95:43:A5:A8:2F:CE:F1:F3:78:38:F4:14:8B:49:8E
X509v3 Authority Key Identifier:
keyid:A2:DE:4A:07:2A:5B:CB:74:D2:0E:92:DD:BB:D7:F6:47:7C:3C:8F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ot5KBypby3TSDpLdu9f2R3w8j84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/uX4pQDOVQ6WoL87x83g49BSLSY4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/e05a3a-1307-41cb-b4c1-64a56046bca7/1/ot5KBypby3TSDpLdu9f2R3w8j84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.148.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:ed:9f:2e:4e:87:dd:e6:3d:cd:0a:be:06:e1:f0:3d:2a:0c:
4f:f4:ff:7d:94:b2:9b:86:27:4c:92:d2:fd:6e:21:6a:36:16:
4e:d9:99:b3:f2:ff:4b:56:58:68:e8:a4:2c:a7:57:90:2f:3f:
b5:fa:47:a1:e5:85:24:a4:bb:c4:73:bc:bb:6c:04:cc:78:e9:
5a:81:ca:90:69:34:46:ba:f8:11:fd:d7:b0:ed:a5:82:ba:56:
9f:94:bc:6c:4c:ba:a5:2d:3e:f7:4b:76:3c:69:be:0f:40:91:
e3:06:de:a1:0b:29:40:78:2a:0a:46:e9:6b:8b:dd:e2:05:f7:
28:75:60:ac:fe:96:f7:84:db:b4:57:98:01:bb:e9:6a:f0:15:
fc:d3:b1:f1:66:2a:9a:49:55:34:f2:b7:77:87:17:8f:f2:1d:
cc:fc:64:b4:f4:c6:5b:99:9d:fc:2c:57:fd:0d:4e:c0:f9:53:
25:f2:2d:3f:46:10:ae:d4:2e:ae:61:51:24:84:b0:b8:a3:42:
01:22:8f:6d:b1:fb:38:bf:c2:67:e5:9d:c9:bd:14:03:82:99:
02:ae:16:ec:62:72:59:e3:dd:5c:51:a2:8b:f3:15:28:19:fd:
1d:af:06:7c:d3:9b:59:f2:e4:30:b6:d5:9c:af:c0:e8:a6:c6:
0f:75:78:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:10:34 2024 by rpki-client on console-ams.rpki-client.org