Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/P5VscP3KhHkhvx5e9bn3zd2-Yxs.roa
File: P5VscP3KhHkhvx5e9bn3zd2-Yxs.roa (raw, json)
Hash identifier: jwS1ZjQsXieC2ATECFybwYMZ7RnpXAu/17u+r49TRkc=
Subject key identifier: 3F:95:6C:70:FD:CA:84:79:21:BF:1E:5E:F5:B9:F7:CD:DD:BE:63:1B
Certificate issuer: /CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Certificate serial: 049B221D
Authority key identifier: D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/P5VscP3KhHkhvx5e9bn3zd2-Yxs.roa
Signing time: Sat 01 Jan 2022 08:56:48 +0000
ROA not before: Sat 01 Jan 2022 08:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199496
IP address blocks: 45.148.88.0/22 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77275677 (0x49b221d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Validity
Not Before: Jan 1 08:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3f956c70fdca847921bf1e5ef5b9f7cdddbe631b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:58:66:d5:db:91:e2:31:da:8d:47:f7:00:b8:
ba:45:28:be:e6:05:06:dc:90:ac:b9:86:e8:99:73:
65:5b:e4:f9:e3:01:48:70:d5:8a:46:1c:27:27:15:
1e:85:88:39:17:f6:28:ab:30:71:3e:3f:b8:7c:b4:
16:f5:1d:86:19:8a:4a:b5:bf:ad:ee:2d:61:d4:87:
cd:77:25:fd:c8:0e:c8:e2:99:81:47:95:0d:72:c2:
a3:27:2f:9d:2e:5e:bd:f7:b0:39:3a:b6:95:bf:a3:
78:40:dc:c0:2a:7e:35:0d:68:4f:2e:2e:ba:98:d2:
72:f2:e0:e2:14:29:0a:ec:0e:bc:2c:f6:83:7b:8b:
e4:fd:cf:35:06:eb:22:60:98:be:95:fa:f6:76:77:
58:bc:28:f7:3c:cb:7b:44:8e:5e:f4:6e:1e:1b:f6:
df:bb:a1:8f:ee:9d:70:50:95:93:f1:03:b9:d8:eb:
c0:11:74:a0:c3:62:00:76:11:0f:12:d6:50:ec:c1:
51:f8:58:03:9a:91:cf:28:08:28:a4:d0:77:d8:7c:
31:b4:93:43:d5:ee:ef:be:16:73:7d:7b:98:cc:9d:
94:19:cc:7c:6c:da:8a:4e:b1:7e:b8:0a:51:ac:f4:
0a:10:38:26:1a:46:eb:27:24:d0:44:ed:fc:6d:20:
fd:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:95:6C:70:FD:CA:84:79:21:BF:1E:5E:F5:B9:F7:CD:DD:BE:63:1B
X509v3 Authority Key Identifier:
keyid:D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/P5VscP3KhHkhvx5e9bn3zd2-Yxs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/06fDvga8RcPxK5CxhSeK1OyRl1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.88.0/22
Signature Algorithm: sha256WithRSAEncryption
61:c7:4d:5b:aa:54:32:3b:d2:1f:04:99:8a:14:4e:a5:01:ae:
f6:0c:25:f4:21:13:a2:1e:22:27:34:63:e4:a4:f2:2f:d1:40:
ed:b5:67:95:1d:f9:33:5d:89:43:ca:eb:f9:da:19:20:26:68:
a7:a1:fd:35:f0:7c:c5:cc:fe:5c:ce:21:c7:c6:51:29:a3:f0:
98:50:87:e3:55:0a:59:6b:4c:87:1e:8e:df:fd:f1:a0:7f:02:
f1:6b:55:76:da:0d:43:a8:f4:de:4b:b8:bf:14:d7:2f:72:ba:
a7:53:3a:fc:bc:5e:f7:18:7e:2d:ae:44:dd:ab:42:dd:41:62:
1a:1f:18:9a:e9:d1:63:e9:c5:c1:91:bf:69:bb:e8:63:19:9e:
8c:ef:db:af:e8:c5:35:8c:b8:66:73:a3:ee:f8:b8:d4:85:f0:
bc:b4:81:1c:84:4d:39:49:f3:e1:25:73:30:e5:e3:38:a3:a3:
e3:c2:31:ec:b4:f1:7f:1e:4d:96:67:d3:2d:40:bf:f8:ef:6d:
99:a1:29:6a:1d:5a:2a:ab:f6:17:eb:7a:f5:5a:b6:26:22:0f:
59:71:e7:76:9e:32:d5:92:2e:ed:9f:0c:11:f3:83:f3:e1:5a:
59:58:13:35:49:86:f8:69:8e:ab:ff:5f:86:7b:6a:08:b3:94:
a1:14:44:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:02 2025 by rpki-client