Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/oYp5CI2HNYFkTd_ApmRtDvwyNzk.roa
File: oYp5CI2HNYFkTd_ApmRtDvwyNzk.roa (raw, json)
Hash identifier: NW3llf7RYBiJkpuLTNFqD0ObTg5seXGnFF1ALqGf3T8=
Subject key identifier: A1:8A:79:08:8D:87:35:81:64:4D:DF:C0:A6:64:6D:0E:FC:32:37:39
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 0181DF1CEC510519D5F8A035964662BF39F1
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/oYp5CI2HNYFkTd_ApmRtDvwyNzk.roa
Signing time: Fri 08 Jul 2022 18:40:23 +0000
ROA not before: Fri 08 Jul 2022 18:40:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 45.150.196.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:df:1c:ec:51:05:19:d5:f8:a0:35:96:46:62:bf:39:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jul 8 18:40:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a18a79088d873581644ddfc0a6646d0efc323739
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:05:ea:c2:b4:2c:0c:25:01:47:64:19:f9:92:
74:33:87:78:0d:71:07:a0:5f:4c:af:90:e3:e9:45:
b4:4c:96:14:e1:27:f0:e7:66:26:3a:d3:df:cf:88:
c3:78:2f:1a:37:68:11:72:4b:87:96:63:b3:70:a1:
4c:0d:0c:4b:0d:d3:92:02:4d:0b:34:79:2b:8c:5a:
89:72:a5:9f:dc:b4:68:6c:eb:b5:8f:ba:cc:1a:3b:
12:25:27:ad:3c:22:fe:c7:26:29:bf:fd:ac:ea:04:
a8:b5:08:47:f7:e0:7e:bb:3d:9c:33:dd:e1:15:02:
c3:b9:99:ce:3e:2f:fa:0b:15:26:53:20:e4:f8:0a:
b5:6b:2c:4b:eb:b8:94:5a:f6:9a:b3:92:b8:59:ec:
ef:41:bf:e6:ae:d9:61:fb:45:cc:01:c0:99:4c:34:
e7:94:bb:48:8b:67:48:f3:76:9c:aa:21:ab:03:9d:
e1:c7:0d:0d:8c:46:a1:6d:01:ee:ac:f9:89:a5:93:
ac:f3:b2:76:42:16:09:7a:d9:d4:bb:4a:e8:82:6a:
32:26:8e:69:ba:0e:38:07:47:a5:97:80:2b:0e:f6:
5b:ef:53:b2:7b:d5:43:6c:22:86:8a:9d:98:7f:d7:
07:89:37:b2:99:06:b3:3b:99:30:e8:0f:01:9e:15:
30:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:8A:79:08:8D:87:35:81:64:4D:DF:C0:A6:64:6D:0E:FC:32:37:39
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/oYp5CI2HNYFkTd_ApmRtDvwyNzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.196.0/24
Signature Algorithm: sha256WithRSAEncryption
75:48:ca:bf:ae:25:6a:ca:c6:e0:d0:ba:da:41:05:6a:fd:c9:
cb:2c:ae:0f:80:15:2c:ba:7b:fb:7e:0d:8c:6c:44:16:82:d9:
1b:3e:e3:44:c3:c7:3d:6c:20:ee:57:4b:69:12:73:04:55:19:
12:e1:ff:7e:9e:eb:2f:eb:c4:cf:40:74:fb:79:c8:a8:01:b1:
ac:aa:88:5c:d9:f7:b4:2d:63:02:17:3a:65:02:06:e1:1e:ac:
7e:d1:6f:90:6b:58:2c:7a:88:99:d4:43:fc:1c:f3:4d:bb:9a:
63:fa:8b:e1:d7:fb:d8:ef:43:bc:bc:92:58:fe:2a:c3:59:e9:
ab:af:af:bf:c6:fa:4d:09:83:c0:88:90:2d:ce:d0:87:13:2a:
e9:65:b4:eb:09:6f:e8:c8:4f:40:82:49:ae:68:05:52:e9:0a:
d1:8f:d2:79:f8:bc:cf:a9:10:f8:9c:b2:88:8f:41:8e:5c:d7:
8b:f9:97:76:37:d6:ed:e4:b0:76:51:a6:46:3c:c7:2b:36:52:
25:f6:db:b3:9f:5d:23:f0:db:d3:01:7c:1b:da:e7:dd:d6:4a:
40:2a:0e:01:7b:a5:8d:47:54:9f:61:fa:9d:1a:94:06:14:99:
fe:9c:a3:f2:02:1f:75:b6:6e:b3:85:dd:ed:15:fb:02:54:8e:
29:2c:e8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:02 2023 by rpki-client on console-fra.rpki-client.org