Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/gWDpGaKgSqVkA8FYgAM2XKTUh1k.roa
File: gWDpGaKgSqVkA8FYgAM2XKTUh1k.roa (raw, json)
Hash identifier: nMGTn9k6leVNocM0e8gdmjvi2XbB7dK+szJdPBjB4jI=
Subject key identifier: 81:60:E9:19:A2:A0:4A:A5:64:03:C1:58:80:03:36:5C:A4:D4:87:59
Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622
Certificate serial: 018439D152C84D41E6EFFA636721A7D9970F
Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/gWDpGaKgSqVkA8FYgAM2XKTUh1k.roa
Signing time: Wed 02 Nov 2022 19:28:50 +0000
ROA not before: Wed 02 Nov 2022 19:28:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198521
IP address blocks: 45.15.54.0/23 maxlen: 24
45.15.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:39:d1:52:c8:4d:41:e6:ef:fa:63:67:21:a7:d9:97:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622
Validity
Not Before: Nov 2 19:28:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8160e919a2a04aa56403c1588003365ca4d48759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:3e:3b:c6:e0:6d:ce:63:6d:d1:6d:17:95:f0:
e5:0a:4c:a8:92:be:f1:6c:4f:aa:66:4c:c2:f6:5e:
5d:f3:db:56:a2:e8:3a:24:56:85:df:59:c8:92:3d:
b1:24:67:2b:8a:5a:3f:73:93:29:f6:16:49:2c:36:
87:8a:0f:9d:c6:34:cf:ac:dc:7e:13:58:1f:44:63:
5d:90:db:1d:0b:5a:74:ae:1f:68:22:73:a7:cd:86:
c5:8c:cb:c8:06:5e:b3:76:11:7d:92:ac:42:a4:28:
3e:fb:28:d3:3e:80:4d:e2:75:fa:72:e2:e6:06:82:
c9:74:e5:d6:2a:34:70:c4:1b:91:0a:a0:2d:a7:7c:
d9:0b:65:5c:fc:1b:a2:3c:52:30:aa:ff:e6:1b:3f:
0d:14:10:c7:67:d5:8f:40:57:29:b7:dc:57:6f:25:
7e:d5:a1:3e:9d:78:3b:71:7c:b8:35:e6:39:ef:0f:
7b:a8:38:6c:0f:e5:2e:c1:fa:0e:13:d3:17:c1:60:
70:ce:f4:c0:c2:1f:bc:8a:01:31:0a:5e:c2:0f:31:
dc:98:a9:80:c1:31:ec:f4:a9:96:a3:8e:27:8a:57:
be:18:8f:12:b9:39:1a:ea:c8:29:c6:f7:ab:65:97:
b3:5e:8b:aa:2b:e5:9c:f1:c0:2d:0d:fe:d3:4e:cd:
5b:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:60:E9:19:A2:A0:4A:A5:64:03:C1:58:80:03:36:5C:A4:D4:87:59
X509v3 Authority Key Identifier:
keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/gWDpGaKgSqVkA8FYgAM2XKTUh1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.52.0/24
45.15.54.0/23
Signature Algorithm: sha256WithRSAEncryption
20:a3:ea:f9:c2:f8:56:cb:b0:49:40:7d:57:95:c4:5b:88:c3:
82:b2:9e:d4:40:4e:97:62:06:24:6b:fd:bc:09:4b:55:86:a8:
c0:49:57:6e:26:3e:7f:8d:ef:27:54:a7:40:48:50:8d:1b:51:
4f:3d:c4:fc:0f:09:dc:c6:70:55:ae:ed:0f:e6:86:da:b2:31:
d7:b8:44:89:74:8d:d1:93:8f:76:cc:e5:d4:70:e4:06:d6:86:
a2:e0:be:9f:63:b1:dc:63:b6:2b:c2:59:c1:6f:3e:0a:1b:4a:
a8:70:54:ba:9e:d7:65:0c:bf:9a:42:af:c0:31:d7:e5:e8:a0:
e2:b3:91:21:27:ae:1f:3d:8d:4c:18:d0:cd:f2:e8:a9:60:09:
79:ba:27:d4:1e:b8:56:6f:a9:d4:ae:3f:80:ed:eb:79:6a:b8:
68:3d:42:8c:dc:1f:dc:90:c2:16:a8:bb:81:b5:94:53:09:59:
a7:10:09:36:3d:9f:f3:46:55:96:51:d8:86:50:14:fd:d0:98:
95:0d:82:69:9f:43:44:38:85:4f:50:ee:62:0f:77:49:bf:82:
6f:73:ff:1c:88:c7:b0:31:a6:43:08:bb:77:57:9d:53:ad:53:
69:a3:f7:8b:72:ff:82:79:3c:82:4b:6c:7e:38:87:e3:05:47:
ea:92:b8:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:31 2024 by rpki-client on console-fra.rpki-client.org