Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/civrmIJoqUnlUb4sj53XyXRDaHI.roa
File: civrmIJoqUnlUb4sj53XyXRDaHI.roa (raw, json)
Hash identifier: qi1iVw9i8yAh6IQVP3z3dUHODTizuvnEiHXFqCxRn1E=
Subject key identifier: 72:2B:EB:98:82:68:A9:49:E5:51:BE:2C:8F:9D:D7:C9:74:43:68:72
Certificate issuer: /CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b
Certificate serial: 04D8D65B
Authority key identifier: B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/civrmIJoqUnlUb4sj53XyXRDaHI.roa
Signing time: Sat 01 Jan 2022 14:05:17 +0000
ROA not before: Sat 01 Jan 2022 14:05:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49028
IP address blocks: 45.145.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81319515 (0x4d8d65b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b817162877da9f4030bbcb9fe8ac143e6ab2871b
Validity
Not Before: Jan 1 14:05:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=722beb988268a949e551be2c8f9dd7c974436872
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:32:b4:d2:ff:64:54:8a:01:12:6d:74:93:6a:
b3:c8:43:9d:82:c5:c4:8a:98:6e:34:f9:68:46:a4:
00:9b:7b:37:39:de:d1:fa:ed:78:79:26:6a:5e:3e:
c8:b7:a2:08:22:f7:96:8d:6a:12:dc:fd:47:f8:e3:
57:01:2f:d8:c3:da:83:2c:75:71:fa:d9:a7:b2:c3:
11:fb:1e:2b:56:4e:e5:1d:bf:9d:65:f9:01:10:89:
e3:1b:50:f9:4c:a5:bd:1a:d6:21:9e:62:38:4a:68:
bf:24:ad:22:05:5e:28:56:99:7d:75:ce:5c:e7:82:
38:f2:50:0a:fa:26:39:86:ee:70:3a:e2:46:cb:04:
97:f4:9c:64:37:d5:bc:0c:f7:7c:d9:e6:f9:f2:1f:
34:75:0d:5d:8c:ca:7a:18:7f:9d:f6:b3:f9:cc:0e:
06:87:4a:49:37:36:a9:4e:4b:62:bb:1e:b8:8c:45:
5a:73:36:85:8a:d6:22:f5:46:7b:74:77:d6:2a:62:
9d:95:2d:38:e0:04:c2:21:5e:6f:2e:3d:3b:3c:26:
d9:08:da:41:bc:07:df:e6:0e:2f:75:13:91:dd:a0:
52:e9:b0:9c:93:34:09:0f:87:be:8c:fe:06:ae:1b:
49:f7:24:dd:70:27:a1:dd:be:6b:34:96:ff:c2:c8:
45:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:2B:EB:98:82:68:A9:49:E5:51:BE:2C:8F:9D:D7:C9:74:43:68:72
X509v3 Authority Key Identifier:
keyid:B8:17:16:28:77:DA:9F:40:30:BB:CB:9F:E8:AC:14:3E:6A:B2:87:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uBcWKHfan0Awu8uf6KwUPmqyhxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/civrmIJoqUnlUb4sj53XyXRDaHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/16b7b4-bb21-4b3e-aeb4-b27ca291bd77/1/uBcWKHfan0Awu8uf6KwUPmqyhxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.165.0/24
Signature Algorithm: sha256WithRSAEncryption
10:30:67:e5:d4:2b:7f:f7:ad:d9:dc:38:92:09:eb:ee:3d:54:
dd:28:aa:28:4e:75:fd:e7:64:68:33:07:03:e3:6d:3a:4b:44:
ce:ac:c2:00:6d:95:09:de:e1:dc:36:56:f8:83:a2:fa:c0:83:
11:9c:bf:11:a0:29:3a:5d:10:f5:05:7c:75:65:4e:f3:b3:34:
f8:39:0f:79:ee:33:b5:15:d0:dd:b3:07:ff:d4:a2:fc:65:b3:
e4:ed:b2:19:4f:09:dd:c9:11:aa:4f:1e:3d:77:1a:15:47:66:
a7:a0:e1:4f:9b:bc:3c:a7:67:33:83:a1:52:4d:04:eb:93:fb:
62:00:3c:10:1d:69:f0:c4:a2:1d:5e:d7:58:6e:3a:17:21:f9:
2d:69:dd:d1:df:0a:09:c4:c2:bc:a4:60:3b:d9:b4:2d:c3:ae:
7c:93:a5:0d:87:1b:c4:6b:6d:73:66:27:c6:75:e7:c3:b6:b6:
62:96:43:b3:e8:1c:3e:fa:86:06:fb:99:92:b4:47:51:3c:b2:
93:e1:4c:00:48:53:02:bd:d7:e7:fa:8c:21:91:af:bf:8e:e6:
1a:93:f3:39:27:94:d1:fe:ce:32:36:e6:e0:86:f2:ad:60:67:
fa:ae:e0:5c:36:53:88:0d:92:34:45:7a:44:c8:a7:f6:24:3d:
d0:ee:f4:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:36 2023 by rpki-client on console-fra.rpki-client.org