Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/eba226-6766-4c56-9e3e-7b44e0a15ba0/1/PUwUeHefOEA9uAC8WFWNUIwC1cU.roa
File: PUwUeHefOEA9uAC8WFWNUIwC1cU.roa (raw, json)
Hash identifier: L6wcxY9Pxl+DBu3SSfT00q8w5AnJyDX3R/81n9pIjKE=
Subject key identifier: 3D:4C:14:78:77:9F:38:40:3D:B8:00:BC:58:55:8D:50:8C:02:D5:C5
Certificate issuer: /CN=49eb8ab4e3d79de27dd1fd692196e2e39e1a3ba3
Certificate serial: 03AB81A8
Authority key identifier: 49:EB:8A:B4:E3:D7:9D:E2:7D:D1:FD:69:21:96:E2:E3:9E:1A:3B:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SeuKtOPXneJ90f1pIZbi454aO6M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/eba226-6766-4c56-9e3e-7b44e0a15ba0/1/PUwUeHefOEA9uAC8WFWNUIwC1cU.roa
Signing time: Sat 01 Jan 2022 14:01:06 +0000
ROA not before: Sat 01 Jan 2022 14:01:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50064
IP address blocks: 45.146.236.0/22 maxlen: 22
45.146.239.0/24 maxlen: 24
45.146.238.0/24 maxlen: 24
45.146.237.0/24 maxlen: 24
2a0f:4800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61571496 (0x3ab81a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49eb8ab4e3d79de27dd1fd692196e2e39e1a3ba3
Validity
Not Before: Jan 1 14:01:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3d4c1478779f38403db800bc58558d508c02d5c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:70:99:de:a2:5e:c3:be:19:2c:d3:64:d1:00:
36:e8:be:6d:ca:78:3b:f3:d9:e2:83:f2:e3:4e:e4:
8a:4d:7c:fa:4a:fb:b8:c9:81:fe:0c:1b:fe:bb:6c:
01:8b:33:1b:95:b4:c9:29:ee:ef:0c:6b:60:a6:c2:
a4:36:81:fb:f0:11:b1:40:76:07:ad:c7:e0:55:16:
35:a2:51:97:ae:c4:c0:bf:a1:76:69:7b:74:ef:21:
37:83:97:48:f8:c1:32:8c:84:e3:18:8b:ab:fe:21:
2c:25:85:1a:50:ba:6a:59:d3:7d:2b:e6:ca:f1:e4:
86:1c:62:56:99:c6:24:aa:eb:c9:31:2d:6f:11:0d:
98:1d:a0:35:5b:be:36:a7:32:6b:e4:95:a4:cf:96:
1b:7a:a5:0f:2b:77:22:08:91:1b:c4:ae:36:94:4f:
1d:67:20:7f:7e:b6:f9:b5:44:99:54:4a:73:6b:14:
34:1c:7f:5b:bb:74:42:26:90:21:ab:7d:27:75:4f:
a2:73:af:64:5d:5f:a8:ec:c1:7e:c1:b1:d7:55:2f:
ae:f3:d6:07:d4:34:a7:c2:1e:77:68:dc:da:8a:22:
82:6f:46:ff:34:2f:93:4b:9e:fd:6b:e9:88:e7:c7:
f9:f9:1e:4c:b8:18:4b:07:ad:22:61:9e:35:e6:7b:
c9:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:4C:14:78:77:9F:38:40:3D:B8:00:BC:58:55:8D:50:8C:02:D5:C5
X509v3 Authority Key Identifier:
keyid:49:EB:8A:B4:E3:D7:9D:E2:7D:D1:FD:69:21:96:E2:E3:9E:1A:3B:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SeuKtOPXneJ90f1pIZbi454aO6M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/eba226-6766-4c56-9e3e-7b44e0a15ba0/1/PUwUeHefOEA9uAC8WFWNUIwC1cU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/eba226-6766-4c56-9e3e-7b44e0a15ba0/1/SeuKtOPXneJ90f1pIZbi454aO6M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.236.0/22
IPv6:
2a0f:4800::/29
Signature Algorithm: sha256WithRSAEncryption
a2:a2:7e:db:b8:f9:52:89:f8:e5:14:97:06:3a:60:12:45:fc:
1d:50:48:88:6b:14:7b:e4:b3:78:27:30:d2:45:19:4b:de:8c:
3e:07:45:ad:c5:11:5e:5e:6c:34:5f:04:dc:69:15:b7:c3:ff:
3c:af:f4:75:98:e9:99:e8:77:2c:bf:58:df:07:13:18:5a:c5:
b6:d1:1a:ae:cc:f8:82:67:b1:1e:08:f8:9c:87:f6:4c:80:cb:
9c:30:bb:2a:06:38:e1:ef:ef:d9:be:94:0a:68:a6:25:42:0a:
af:c1:86:29:a3:7b:bd:97:52:7c:de:a9:6f:52:ff:d9:d5:f1:
60:e7:69:d0:11:be:fc:d1:c1:d8:af:b3:a5:c2:59:8b:22:7f:
60:c3:a4:b9:48:da:fa:51:da:2e:30:59:62:a0:2e:01:79:83:
d6:c2:21:d4:71:06:38:4c:eb:36:1a:91:05:40:00:4d:48:94:
35:90:b7:51:3a:6a:2d:65:32:8d:86:af:f6:53:b3:94:a4:ed:
a6:17:cb:07:36:7c:c3:c3:89:14:de:f8:52:50:c1:b2:77:bf:
66:2b:64:87:4a:32:10:c3:fc:c1:38:3f:d2:a9:81:98:00:6e:
89:39:83:c1:d2:f9:13:17:da:b5:a0:20:2c:18:d2:58:6f:d1:
6f:08:96:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:11 2024 by rpki-client on console-fra.rpki-client.org