Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ESnZAr6mOZ8UOtOmoFud4XwMycg.roa
File: ESnZAr6mOZ8UOtOmoFud4XwMycg.roa (raw, json)
Hash identifier: DX4BPtS7kgQG3MZaGOSBkWpSYh39ymBldyPFp7FhhU4=
Subject key identifier: 11:29:D9:02:BE:A6:39:9F:14:3A:D3:A6:A0:5B:9D:E1:7C:0C:C9:C8
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 0183A6C49AF099A5350F15D514BDEA53F88A
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ESnZAr6mOZ8UOtOmoFud4XwMycg.roa
Signing time: Wed 05 Oct 2022 06:10:45 +0000
ROA not before: Wed 05 Oct 2022 06:10:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.146.203.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:c4:9a:f0:99:a5:35:0f:15:d5:14:bd:ea:53:f8:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Oct 5 06:10:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1129d902bea6399f143ad3a6a05b9de17c0cc9c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3d:cd:c3:95:f3:3a:c7:a2:13:2b:e2:b6:db:
35:be:c5:3f:85:2b:a4:3f:49:93:f6:0b:37:78:c9:
d3:8f:e5:f4:13:fe:9f:a1:51:38:0a:08:bf:36:ee:
0b:71:09:73:12:3e:6b:bc:f2:97:18:42:e0:5d:c9:
07:a9:16:2f:3d:86:53:17:21:24:14:d7:a0:6b:21:
e2:0f:27:9d:3f:1c:88:a4:fb:9a:e1:11:ba:ef:49:
75:10:2f:2f:c6:94:7e:35:62:83:5f:70:18:f9:8e:
9f:b4:50:54:29:b0:87:eb:1e:40:18:da:3a:6c:1f:
df:42:26:02:88:df:a1:67:ac:17:5b:32:90:cd:12:
2e:f6:b9:09:ed:5e:b5:1b:db:9c:b3:00:0e:81:1a:
ee:11:30:0a:9d:05:4a:8b:92:e2:7b:ce:99:0a:af:
08:bf:b3:32:a6:80:17:14:45:18:0f:1c:4f:53:79:
5b:51:dd:98:12:95:71:2a:c4:c2:34:6e:58:1f:d0:
c8:ed:10:fb:77:aa:40:40:3c:31:e6:75:a1:c2:b5:
c6:4f:df:e1:6b:8f:bf:97:be:67:42:b4:70:ac:78:
a1:2d:df:95:c4:c7:83:d2:d1:67:7c:55:fe:d3:2b:
64:1e:e2:08:3c:08:c4:c8:43:01:43:bd:80:1f:88:
a8:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:29:D9:02:BE:A6:39:9F:14:3A:D3:A6:A0:5B:9D:E1:7C:0C:C9:C8
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/ESnZAr6mOZ8UOtOmoFud4XwMycg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.203.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:c4:72:90:5a:6d:fe:69:58:b7:d9:46:e1:a8:4b:f9:f4:50:
72:e8:6a:b0:52:1a:37:f1:2c:40:1e:06:45:93:9c:86:c7:19:
f9:ee:fa:d6:d2:f7:f0:64:39:7f:21:24:bc:6a:01:6c:2d:97:
0d:6b:31:af:05:02:53:7d:a8:20:65:a0:4d:19:d1:47:d8:60:
0c:c7:c3:df:aa:c0:d7:de:74:2d:10:70:0f:f6:1d:29:bd:99:
34:96:f6:f0:67:8d:01:ca:9c:e3:ee:a2:5e:28:9b:50:9f:d9:
1b:5c:e7:be:dc:15:84:96:05:00:99:99:eb:cd:9f:db:02:63:
54:b9:d0:5e:c6:a1:03:a9:e6:ef:a3:9b:7e:21:b4:1d:b9:b7:
0c:12:c1:32:fe:30:3c:2e:78:72:b2:cb:b1:8d:93:3b:52:fa:
9b:1a:3f:50:48:fb:3e:16:38:b8:ef:3f:7a:ee:4d:47:c5:cf:
88:0c:a7:15:fc:aa:71:8d:c2:c8:b2:22:2d:9a:9c:55:29:6b:
30:41:84:c8:8b:cd:02:75:2a:9d:88:f6:a4:fb:a1:aa:e8:f4:
8b:bd:27:c6:d0:6d:36:bd:52:71:af:d5:73:b8:d4:b5:5d:80:
d8:10:a1:02:c6:24:38:97:b5:d1:47:9f:a7:f4:e4:0e:f2:d1:
64:15:04:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org