Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/FCHXLLPxGES8GS44rtPLYWuwxT8.roa
File: FCHXLLPxGES8GS44rtPLYWuwxT8.roa (raw, json)
Hash identifier: Fd5PKG7qedLapU6xJ/4c7DEkHXDVZteB199G/xJv0rU=
Subject key identifier: 14:21:D7:2C:B3:F1:18:44:BC:19:2E:38:AE:D3:CB:61:6B:B0:C5:3F
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 01843D8977D845F2F7DD5EF4F5A633AF97A9
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/FCHXLLPxGES8GS44rtPLYWuwxT8.roa
Signing time: Thu 03 Nov 2022 12:48:50 +0000
ROA not before: Thu 03 Nov 2022 12:48:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.146.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:3d:89:77:d8:45:f2:f7:dd:5e:f4:f5:a6:33:af:97:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Nov 3 12:48:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1421d72cb3f11844bc192e38aed3cb616bb0c53f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:4a:4c:2d:a0:bd:cc:4f:35:4d:77:00:42:af:
0f:fc:1f:49:83:ec:f5:29:9f:6e:f3:f1:a8:01:ae:
67:a7:73:93:6f:2b:86:1e:6e:90:a3:ef:d0:52:b8:
8b:1c:e9:6b:ba:35:87:a4:4f:d2:d3:f6:0d:f4:c5:
66:c2:f9:b1:07:58:5a:90:11:de:2b:5d:28:ae:35:
ab:c4:3a:59:9f:74:4f:8b:78:8b:d2:51:83:16:38:
38:44:3e:76:06:cb:75:fc:1a:21:7e:11:26:b5:95:
b1:b6:d4:a0:32:40:06:a4:ee:97:a5:cb:90:79:5d:
3b:3a:62:45:6a:e1:13:7d:7d:4f:50:97:c2:3e:0b:
06:99:2f:81:4f:da:3f:d0:4c:19:ce:85:34:da:2e:
69:df:d0:34:5a:1d:f9:96:1c:5b:16:1b:aa:bb:9e:
34:d1:02:0b:56:86:f4:0c:26:47:d5:f2:68:1c:cb:
cb:46:73:7d:c9:b9:a1:c3:2c:10:0a:9d:f8:33:ba:
38:37:4d:d3:e3:d7:9b:c7:25:ce:01:48:16:76:0a:
a3:ee:30:2d:19:5c:cf:10:03:0d:52:d0:2f:de:05:
80:62:2f:98:af:51:17:18:91:33:71:59:42:26:b0:
a2:c7:b7:f7:62:7d:4d:54:96:f4:36:83:42:bb:c2:
e5:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:21:D7:2C:B3:F1:18:44:BC:19:2E:38:AE:D3:CB:61:6B:B0:C5:3F
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/FCHXLLPxGES8GS44rtPLYWuwxT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/24
Signature Algorithm: sha256WithRSAEncryption
05:5b:0a:6a:97:fe:7a:1e:63:49:9d:74:ef:9a:62:9c:19:5f:
96:43:98:d0:e7:80:d3:82:2f:3f:63:e3:08:c7:de:58:ae:b9:
be:c4:b3:f8:ec:1e:95:9d:39:37:92:df:37:7f:8e:e0:f2:77:
1b:40:0b:9d:73:d4:3c:6b:f4:65:05:43:e0:aa:51:bb:8b:9f:
3a:78:97:32:93:62:3f:ec:63:db:fa:6e:f1:98:97:d8:5a:de:
f3:19:d4:88:df:d0:bb:55:78:f4:14:7c:98:36:a4:3d:b5:5f:
1f:5b:9a:c8:e2:5b:6f:5a:77:fb:f8:2e:e1:d8:0e:1b:df:f2:
92:87:9d:63:e0:84:5c:b5:a0:32:a5:0b:fa:f4:ab:9e:07:02:
9e:17:72:0c:a9:34:00:6a:ed:90:7c:04:e0:f0:45:4c:17:f3:
6b:ce:4c:9a:55:8d:df:01:c5:5a:7c:30:6b:ac:f3:8d:ce:74:
6f:5c:7e:43:bb:f8:5c:04:05:94:9f:6a:a7:83:50:53:42:97:
f7:bf:8a:8f:af:c5:62:80:19:51:83:3b:c1:d2:44:d4:14:48:
bd:c7:b8:2a:4b:09:08:18:5e:30:3a:6a:0d:90:06:c5:31:86:
50:95:0c:c6:48:08:91:93:4d:a6:f7:09:b1:8d:f1:73:79:73:
40:2b:81:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:49 2024 by rpki-client on console-ams.rpki-client.org