Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/50abef-374c-4ea6-b7d4-ce500827ff7f/1/Hv5LH2GhJIAs8D60GWz6wZWUAqA.roa
File: Hv5LH2GhJIAs8D60GWz6wZWUAqA.roa (raw, json)
Hash identifier: OtIVXo42mTpici4ijBdsvfIlUpJB5H4W0q7nkwVlET8=
Subject key identifier: 1E:FE:4B:1F:61:A1:24:80:2C:F0:3E:B4:19:6C:FA:C1:95:94:02:A0
Certificate issuer: /CN=c7e9c7aa534b1300bf724fff0f0c1b0519d505bb
Certificate serial: 01070DB9
Authority key identifier: C7:E9:C7:AA:53:4B:13:00:BF:72:4F:FF:0F:0C:1B:05:19:D5:05:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x-nHqlNLEwC_ck__DwwbBRnVBbs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/50abef-374c-4ea6-b7d4-ce500827ff7f/1/Hv5LH2GhJIAs8D60GWz6wZWUAqA.roa
Signing time: Mon 14 Mar 2022 12:36:01 +0000
ROA not before: Mon 14 Mar 2022 12:36:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 32338
IP address blocks: 45.84.30.0/24 maxlen: 24
45.84.28.0/23 maxlen: 23
185.149.134.0/23 maxlen: 23
2a07:68c0::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17239481 (0x1070db9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7e9c7aa534b1300bf724fff0f0c1b0519d505bb
Validity
Not Before: Mar 14 12:36:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1efe4b1f61a124802cf03eb4196cfac1959402a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:89:1b:47:a9:62:3a:c7:20:4f:e6:02:f0:4a:
a8:84:07:f8:e5:c8:0c:fa:53:b3:ce:83:ee:09:71:
d0:cf:a8:e5:5a:03:40:1b:8d:11:86:ae:0b:f3:23:
bd:a0:5e:1a:83:eb:f0:87:ee:e9:23:d1:e8:2f:13:
3a:98:b2:7d:7e:56:9f:30:f4:45:b5:f4:5c:d0:0e:
29:ef:3a:d9:88:11:4e:d7:be:ea:a0:12:63:a7:d1:
98:54:f2:da:c0:04:75:c2:79:50:48:fa:95:46:ed:
6e:8c:6c:28:58:9e:f6:2c:43:e2:c4:00:26:71:61:
d6:ef:10:e4:d3:34:57:d4:dd:95:93:99:67:90:8d:
f8:fc:c2:fe:7f:0c:0d:00:ff:e1:8c:bf:f9:0c:97:
ec:a2:fd:b2:3d:30:e6:ea:a4:92:cf:f6:d2:f6:ca:
c5:57:25:16:b9:7e:f4:0d:04:17:90:94:f5:c1:5a:
e1:96:7f:f2:13:65:75:3c:55:27:e4:21:6a:ae:45:
0a:0c:ea:bf:fc:88:1e:dd:89:cd:a5:bf:52:6c:f3:
50:91:bd:dc:28:fe:6a:e4:4e:53:98:c0:c2:f6:6f:
0d:c7:2e:52:81:88:b5:48:e3:ac:90:bd:b7:b1:fd:
18:d7:29:59:6e:3d:80:90:e8:8b:b4:4e:d7:02:64:
55:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:FE:4B:1F:61:A1:24:80:2C:F0:3E:B4:19:6C:FA:C1:95:94:02:A0
X509v3 Authority Key Identifier:
keyid:C7:E9:C7:AA:53:4B:13:00:BF:72:4F:FF:0F:0C:1B:05:19:D5:05:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x-nHqlNLEwC_ck__DwwbBRnVBbs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/50abef-374c-4ea6-b7d4-ce500827ff7f/1/Hv5LH2GhJIAs8D60GWz6wZWUAqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/50abef-374c-4ea6-b7d4-ce500827ff7f/1/x-nHqlNLEwC_ck__DwwbBRnVBbs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.28.0-45.84.30.255
185.149.134.0/23
IPv6:
2a07:68c0::/32
Signature Algorithm: sha256WithRSAEncryption
b8:a5:58:92:7a:ec:99:e9:21:0a:da:2f:99:7b:83:6f:fb:eb:
df:80:fc:8f:15:ad:2e:3d:72:d7:d9:c6:b2:a3:ca:d3:93:cb:
4c:28:1e:5f:b3:67:1b:80:a2:69:10:e8:a5:a5:73:46:16:68:
a7:e3:4e:1a:9b:43:d5:f0:94:ac:d7:8b:b5:72:af:d9:a3:5a:
c4:e5:79:a6:6d:1a:c9:76:d8:2c:c4:29:e1:b1:b7:ca:7c:8f:
4a:34:c7:45:b8:13:c8:4e:b0:54:77:1c:61:9d:8b:23:93:7f:
3b:8f:cc:cc:c2:bf:3f:5f:72:b9:c4:0a:76:a3:44:03:1b:66:
d7:da:d2:22:1f:5e:db:f8:10:10:aa:ff:a3:dd:be:65:47:f2:
79:31:fe:58:cc:15:c2:04:ea:77:fb:57:46:96:a7:b9:ac:99:
34:51:07:c6:78:1d:18:ea:9d:78:30:5a:82:bf:da:bd:42:1c:
4c:d7:4f:17:f3:0b:a7:f8:4d:04:05:8b:77:c1:ea:6d:c3:50:
3c:a3:dd:0d:08:e6:ad:cc:82:18:78:a6:15:92:c6:da:41:57:
1a:04:48:13:22:51:37:96:eb:95:07:bb:58:dd:8b:e5:a2:82:
28:56:04:34:71:df:e9:01:59:84:e9:3c:7c:50:a0:1d:86:7b:
0a:d5:f0:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:04 2024 by rpki-client on console-ams.rpki-client.org