Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/RP3FCaTB3KCZOPi0W7X6s_smHrw.roa
File: RP3FCaTB3KCZOPi0W7X6s_smHrw.roa (raw, json)
Hash identifier: xGO+2R5Meu72oM+3Rww69/aKm32JJC4/wMNMCmDLGic=
Subject key identifier: 44:FD:C5:09:A4:C1:DC:A0:99:38:F8:B4:5B:B5:FA:B3:FB:26:1E:BC
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 072BA5EE
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/RP3FCaTB3KCZOPi0W7X6s_smHrw.roa
Signing time: Sat 01 Jan 2022 14:01:17 +0000
ROA not before: Sat 01 Jan 2022 14:01:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34427
IP address blocks: 45.157.132.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120301038 (0x72ba5ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: Jan 1 14:01:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44fdc509a4c1dca09938f8b45bb5fab3fb261ebc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8b:2e:36:3a:af:d4:3b:a1:77:f6:7d:37:4e:
5a:c8:f5:cc:06:2c:6c:d9:a9:75:5b:4d:e0:07:9d:
3b:ae:95:74:92:9c:42:b6:42:b1:56:39:85:98:a8:
ff:3a:e3:d2:43:fd:60:17:74:1a:eb:b5:84:2f:09:
5f:50:44:e1:18:6a:df:0f:2b:fd:45:75:c9:6b:f8:
1a:5e:30:88:aa:a2:02:20:27:bb:28:a2:28:05:3c:
4c:02:e3:6e:a2:c6:2c:90:07:7a:76:15:9d:fd:d1:
a8:de:31:46:d2:ee:9f:ff:0b:5f:c0:85:4d:57:96:
7e:f1:a4:4e:de:4d:47:35:7a:67:92:ef:a9:1c:b2:
0d:a0:2b:e6:66:41:9a:0b:d9:77:9f:d3:16:f3:10:
ca:22:5f:c7:66:da:b7:6e:2f:6f:43:26:d0:b6:7f:
d6:a6:09:23:1d:91:36:ac:64:b3:b0:d3:13:84:3e:
50:40:a5:35:51:24:08:c6:c4:56:22:9a:02:0a:b4:
0a:3a:16:53:74:8d:9f:50:e1:d1:75:94:73:83:c4:
0d:cd:00:8a:49:0e:d2:53:79:a3:07:91:b5:fc:8b:
05:bb:64:a2:18:72:8e:d9:a9:f8:d5:7e:55:c8:97:
a0:02:1d:0e:97:68:99:30:17:e1:0b:40:5c:c1:d7:
eb:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:FD:C5:09:A4:C1:DC:A0:99:38:F8:B4:5B:B5:FA:B3:FB:26:1E:BC
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/RP3FCaTB3KCZOPi0W7X6s_smHrw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
Signature Algorithm: sha256WithRSAEncryption
68:8c:70:ea:3e:a0:22:fc:7c:62:f3:ce:77:25:81:7f:27:f6:
c2:54:bd:70:20:cb:08:0d:f1:9c:7e:8b:87:ba:fd:ac:a2:2b:
26:53:10:10:e1:82:ed:09:c6:ce:4f:84:84:ca:f9:aa:82:5a:
23:41:6f:fd:f4:76:d5:93:a0:a2:40:fc:4b:2b:26:74:d2:3c:
b0:f8:3b:2f:11:2f:8e:84:ad:a5:ad:87:51:69:b7:7e:f4:ba:
f5:9a:ae:76:75:9e:89:fd:d7:62:fc:41:7f:20:ad:24:a2:bf:
97:ae:c1:d0:70:95:c3:84:4e:2c:a1:49:d8:37:6b:ec:a9:c4:
9d:ef:99:76:34:c0:17:8f:51:b2:b2:f2:b2:72:aa:73:33:ac:
18:31:58:d1:72:11:45:2a:a6:06:34:e2:4b:3b:67:ee:43:37:
97:f3:58:e9:e5:48:12:4d:af:1e:26:d3:61:f2:c7:20:fc:98:
60:15:14:a2:85:68:c5:b8:f4:e8:2d:15:6e:3c:99:24:36:16:
ab:0f:b3:6a:29:06:86:4e:5f:af:c4:a5:78:08:67:85:6e:44:
01:d2:ff:9f:e2:16:4b:90:4b:23:1d:57:b4:f9:81:a7:94:a7:
c7:bc:a6:c4:a8:ae:3a:db:fe:90:28:bf:28:8a:1f:a3:bf:24:
f6:97:6b:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:32 2025 by rpki-client