Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/0ddca2-81b3-4b99-be02-aa03ec66290f/1/FeKYiODbxZQeivAtRsZTTEWNdlA.roa
File: FeKYiODbxZQeivAtRsZTTEWNdlA.roa (raw, json)
Hash identifier: 2kt77XLwkqIyXvI48zW4UT9NWuXYRLrHTI23ELeGXxo=
Subject key identifier: 15:E2:98:88:E0:DB:C5:94:1E:8A:F0:2D:46:C6:53:4C:45:8D:76:50
Certificate issuer: /CN=10d49b73cada01ee851812ec440b7a1ec98648b3
Certificate serial: 077CF9DB
Authority key identifier: 10:D4:9B:73:CA:DA:01:EE:85:18:12:EC:44:0B:7A:1E:C9:86:48:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ENSbc8raAe6FGBLsRAt6HsmGSLM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/0ddca2-81b3-4b99-be02-aa03ec66290f/1/FeKYiODbxZQeivAtRsZTTEWNdlA.roa
Signing time: Sat 01 Jan 2022 14:05:18 +0000
ROA not before: Sat 01 Jan 2022 14:05:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208495
IP address blocks: 45.132.132.0/22 maxlen: 22
45.132.132.0/24 maxlen: 24
45.132.134.0/24 maxlen: 24
45.132.133.0/24 maxlen: 24
45.132.135.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125630939 (0x77cf9db)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=10d49b73cada01ee851812ec440b7a1ec98648b3
Validity
Not Before: Jan 1 14:05:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15e29888e0dbc5941e8af02d46c6534c458d7650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:1c:d9:1d:e3:4e:59:4a:84:3b:62:f6:b6:f0:
cb:fe:5a:8c:b3:fd:f8:77:e5:12:3e:a8:54:11:ef:
bd:6c:f8:2b:74:81:2f:7f:b9:e3:86:b3:ce:7d:f1:
a0:d0:b9:3b:f0:c8:0c:02:2a:d3:c6:ee:33:fb:11:
e4:9c:e3:d9:28:4e:3b:78:80:73:37:f7:8b:d8:98:
00:94:60:e8:2c:3c:d8:f3:98:1f:4a:ba:f4:24:63:
ba:da:92:aa:0c:4a:c2:d5:00:8d:b7:0b:88:ec:a0:
b7:e2:90:38:54:5e:26:82:45:97:b8:e1:dd:20:dc:
d0:6a:c5:08:f2:b1:c5:ef:64:c9:6d:c4:de:51:ac:
21:df:7a:f8:53:61:01:cd:1d:bc:2c:99:b5:47:44:
78:73:ff:2b:f8:68:40:c6:8c:bf:ac:a4:24:ff:53:
fc:e3:13:af:f3:6a:2e:5a:56:83:2b:7a:a1:97:a9:
3a:d8:08:f9:6e:08:ae:9b:2f:77:55:44:76:f8:88:
5b:ee:39:6c:30:68:63:e9:f5:5c:c3:e8:5a:d9:66:
6e:4e:e5:e8:30:92:36:3a:70:47:68:8a:42:80:24:
66:28:a0:ce:37:fa:88:b5:f6:ae:db:14:e4:fc:96:
86:e1:e1:52:16:35:70:54:57:b3:1d:b0:97:7e:8e:
10:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:E2:98:88:E0:DB:C5:94:1E:8A:F0:2D:46:C6:53:4C:45:8D:76:50
X509v3 Authority Key Identifier:
keyid:10:D4:9B:73:CA:DA:01:EE:85:18:12:EC:44:0B:7A:1E:C9:86:48:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ENSbc8raAe6FGBLsRAt6HsmGSLM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/0ddca2-81b3-4b99-be02-aa03ec66290f/1/FeKYiODbxZQeivAtRsZTTEWNdlA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/0ddca2-81b3-4b99-be02-aa03ec66290f/1/ENSbc8raAe6FGBLsRAt6HsmGSLM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.132.0/22
Signature Algorithm: sha256WithRSAEncryption
73:7f:a7:15:5a:5f:94:ad:e1:6f:23:ca:16:1b:71:80:33:11:
eb:3f:fb:93:05:cb:f9:cc:81:97:95:92:d9:57:b4:14:e4:33:
e1:32:90:0b:de:bd:b5:63:9f:ea:e0:77:61:56:85:79:81:cb:
4a:a2:57:0b:f8:47:e6:1f:33:a6:71:d7:26:b1:ab:c2:c6:ae:
e9:aa:78:c7:c1:4c:4d:5f:1b:3d:f4:8c:a7:d2:ee:95:91:41:
df:6c:af:d0:64:bd:e1:66:54:7f:fe:46:46:3a:f5:b1:73:41:
b2:90:28:21:eb:a2:d4:78:f3:c5:0a:5a:b8:40:ee:e9:e0:c9:
3a:41:98:62:f2:ff:14:82:24:05:76:28:e5:58:57:7b:8c:43:
6d:bb:60:8a:53:54:9c:35:82:8e:b0:8e:b6:2d:cc:07:93:65:
fc:fb:10:3a:c4:c1:43:d3:e5:56:51:32:4d:9f:08:ca:8c:5e:
e3:cc:32:db:f2:27:c4:03:81:6e:0a:bf:0a:52:d2:26:db:4d:
09:f8:34:ea:2d:b2:74:51:82:44:2f:da:5f:f6:7a:8c:31:a0:
ab:bd:6c:9f:c1:6c:e4:b3:cc:c2:4c:06:58:da:9a:68:1f:11:
16:83:5c:cb:da:59:d3:99:1a:75:72:e3:7d:d2:5d:f8:d1:5a:
b6:fb:e5:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:17 2024 by rpki-client on console-fra.rpki-client.org