Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/I64i2H0cDrPcJGQpvp_pgCqp3GI.roa
File: I64i2H0cDrPcJGQpvp_pgCqp3GI.roa (raw, json)
Hash identifier: USWWfRhAKjMu8Dw78xOE0ZFVUsgg5w7kKYnCFv10dVs=
Subject key identifier: 23:AE:22:D8:7D:1C:0E:B3:DC:24:64:29:BE:9F:E9:80:2A:A9:DC:62
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 15637881
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/I64i2H0cDrPcJGQpvp_pgCqp3GI.roa
Signing time: Sat 01 Jan 2022 11:55:38 +0000
ROA not before: Sat 01 Jan 2022 11:55:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.146.200.0/22 maxlen: 22
45.95.32.0/23 maxlen: 23
45.95.32.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358840449 (0x15637881)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Jan 1 11:55:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23ae22d87d1c0eb3dc246429be9fe9802aa9dc62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5e:5f:67:d2:9b:1e:92:e3:d2:c0:46:18:b9:
a6:45:12:45:ed:0c:69:c7:b6:4b:70:94:bf:df:95:
1a:a5:44:11:e8:95:24:b4:8c:fc:6c:ca:14:f5:10:
25:7a:75:fa:d2:b5:e7:ca:d1:75:2c:c2:94:51:51:
42:4f:61:a1:91:c1:e1:7d:ac:2d:64:32:b1:ff:d1:
e8:57:09:8b:27:74:fb:0b:76:ae:f6:14:97:cc:b8:
fc:5c:86:53:c5:cd:95:e7:61:30:1f:2c:cb:98:a7:
df:87:0b:e4:89:10:2a:82:ae:84:e5:5b:e8:d1:7b:
1d:a9:9b:c0:69:14:75:cd:54:ed:ab:fd:ed:63:9b:
a4:37:a2:52:f6:e6:fd:e6:db:05:bf:13:c1:99:ed:
99:3b:67:ea:12:52:5c:31:3d:24:f0:b0:3e:6b:88:
9a:b7:3a:1f:69:2c:b7:80:ab:1c:c5:20:6f:5f:e8:
ec:a8:74:91:15:63:97:48:71:32:c3:0e:83:c8:a5:
e2:22:17:88:e6:18:17:4c:d7:3a:d6:6f:00:d2:67:
77:39:f1:2c:d4:d2:de:50:0b:91:31:eb:a9:0e:fe:
79:6d:af:7c:e7:be:04:e6:4a:ab:45:76:8f:b8:06:
60:e5:04:3d:5d:8a:29:76:bc:53:c8:9f:38:8f:6b:
c6:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:AE:22:D8:7D:1C:0E:B3:DC:24:64:29:BE:9F:E9:80:2A:A9:DC:62
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/I64i2H0cDrPcJGQpvp_pgCqp3GI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.32.0/22
45.146.200.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:9a:82:fd:23:3f:4a:da:85:24:e5:76:66:68:b8:bc:d7:d9:
6c:f7:b3:17:32:82:17:b1:0a:30:37:b7:24:6d:b0:22:32:14:
9b:4f:8d:c5:62:27:b6:78:29:7b:5b:0e:33:41:3b:a1:84:cd:
77:5d:6e:b1:f1:07:d4:ff:5a:26:de:78:5a:1f:ca:4f:43:70:
fc:fa:19:3d:b7:15:1e:2a:c4:97:f5:95:7c:23:6f:68:19:c1:
2c:a1:9a:b4:a2:28:b7:82:46:f6:1c:07:ad:f0:82:ee:8c:04:
56:2e:d5:0e:2a:6a:b3:11:92:38:19:b1:65:90:77:6c:5c:bf:
0f:6c:74:42:19:cd:80:a5:b3:4f:fb:3c:b9:55:5a:3b:98:11:
2c:76:7c:24:30:a4:24:66:4e:91:ef:8d:9d:7e:1f:68:9b:e1:
68:84:cc:62:ce:84:e1:e2:8f:f0:e7:6c:65:04:ac:8b:4e:e5:
e7:23:86:36:bc:b2:f9:ea:43:70:1a:3b:fa:e1:f9:37:13:24:
a1:0c:78:0a:9c:ff:11:42:f8:fb:23:36:8f:83:15:a0:01:11:
8b:45:e8:d3:6c:0e:ed:2a:4f:48:10:7a:32:f1:41:4e:9d:47:
37:1d:3e:4a:18:53:10:f8:d8:6e:32:d6:22:08:41:11:d2:ef:
4e:df:89:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:50 2024 by rpki-client on console-fra.rpki-client.org