Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/1-eMB1m-fvFZ6dKgRIVekGrJFPGU.roa
File: 1-eMB1m-fvFZ6dKgRIVekGrJFPGU.roa (raw, json)
Hash identifier: X4bCFKe7CzeOUqHo5T4dDPT+lUdGM9ja+1v+cjtNsng=
Subject key identifier: F9:E3:01:D6:6F:9F:BC:56:7A:74:A8:11:21:57:A4:1A:B2:45:3C:65
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 155F7A73
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/1-eMB1m-fvFZ6dKgRIVekGrJFPGU.roa
Signing time: Sat 01 Jan 2022 11:55:36 +0000
ROA not before: Sat 01 Jan 2022 11:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.146.202.0/24 maxlen: 24
45.146.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358578803 (0x155f7a73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f9e301d66f9fbc567a74a8112157a41ab2453c65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:3e:e9:58:2b:58:e9:87:7e:eb:1f:79:51:ac:
5f:f2:32:c0:90:68:9c:d9:aa:21:01:2b:b7:6e:15:
49:60:11:3a:0f:cd:a2:ed:4c:6f:e7:23:04:08:e9:
70:43:aa:44:82:c0:11:d0:58:e3:2b:48:66:55:de:
08:a6:61:82:ac:b1:4e:bb:95:fe:ad:b6:61:5b:08:
78:78:3b:fc:93:bd:f7:51:69:70:a7:72:0d:74:53:
f7:34:55:65:01:f6:8e:12:72:5c:3d:e5:77:02:1d:
30:51:81:96:4b:29:e7:90:7d:de:33:ee:d0:6a:7f:
1b:22:e9:6d:43:9c:77:66:7b:17:c6:e4:39:00:0d:
da:9b:b4:48:35:65:6b:a2:59:64:05:ef:b9:e5:aa:
3d:73:1a:85:75:f3:38:a7:ab:25:02:bb:3d:40:35:
2e:4d:91:4c:9e:f5:02:dc:52:be:fa:df:2e:ed:b2:
13:1a:81:4e:7d:cb:e9:0d:11:cb:df:8b:36:92:c6:
f0:11:da:d2:0c:9c:ae:39:85:fc:25:57:da:91:2b:
f0:47:80:93:21:fa:80:e7:8f:fd:50:b7:c4:5c:10:
38:8d:80:50:fe:b5:bd:5e:da:ef:58:08:10:0c:11:
4b:cf:b3:b4:95:da:fc:ed:cc:f5:43:75:6d:79:88:
10:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:E3:01:D6:6F:9F:BC:56:7A:74:A8:11:21:57:A4:1A:B2:45:3C:65
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/1-eMB1m-fvFZ6dKgRIVekGrJFPGU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/23
Signature Algorithm: sha256WithRSAEncryption
b1:0b:b8:d1:ee:49:7a:23:17:f9:c1:be:20:7f:25:3e:5b:81:
5b:0c:9d:8e:96:d5:54:a2:f7:0d:0a:57:b5:98:e2:49:ed:83:
70:96:9a:98:50:fd:4e:83:07:8a:d5:13:e6:71:67:7e:1e:b1:
a4:62:33:72:b8:4a:6a:d2:db:42:f3:5c:e9:1f:07:a1:39:8b:
e7:3d:ed:eb:22:f7:b3:2f:a5:24:d8:74:6b:9a:16:84:e8:23:
2f:55:07:e7:69:34:5a:51:b4:f8:29:9d:0c:b5:7c:0a:6a:35:
a6:33:a2:a2:05:cb:4e:cd:49:f7:7e:0f:f8:ff:0e:1a:6a:16:
7f:8e:a1:3b:34:31:c6:5d:53:29:d1:b5:eb:52:df:f0:d2:32:
88:11:24:7d:02:14:50:fa:40:56:37:8a:ef:1b:52:45:0e:8b:
8b:91:23:41:13:37:0e:d0:1e:b0:69:68:a5:2d:84:69:b3:c0:
77:a4:5e:e0:e4:0a:90:35:ba:c7:31:03:1b:9e:30:8f:1e:86:
87:66:2b:0c:11:ea:38:60:d0:fb:dc:0e:78:cf:67:00:b2:38:
a4:de:76:64:c2:4b:19:c9:48:52:72:4d:2b:bd:13:13:3e:53:
e9:38:1f:e7:40:6c:d4:7d:a5:df:fb:c5:81:bc:fe:55:5c:29:
45:58:df:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org