Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SRi-WemEFH5EvPQZwmWUq-R4wx0.roa
File: SRi-WemEFH5EvPQZwmWUq-R4wx0.roa (raw, json)
Hash identifier: YhdvJzJ+yXczqcS550Dm/Cy0tKv6XXLNdW4Z8JN80kw=
Subject key identifier: 49:18:BE:59:E9:84:14:7E:44:BC:F4:19:C2:65:94:AB:E4:78:C3:1D
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19E8091F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SRi-WemEFH5EvPQZwmWUq-R4wx0.roa
Signing time: Sat 01 Jan 2022 15:56:50 +0000
ROA not before: Sat 01 Jan 2022 15:56:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133752
IP address blocks: 45.146.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434637087 (0x19e8091f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4918be59e984147e44bcf419c26594abe478c31d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d8:e4:9f:c3:bb:cc:6f:10:22:06:71:41:b7:
90:62:31:3c:89:72:1a:f0:cf:76:32:3a:31:0f:db:
73:89:6c:6c:a8:4c:d2:01:6c:09:ee:b8:33:49:18:
c5:b5:ac:99:8f:df:b5:9c:0f:81:19:3a:a6:b9:36:
8e:5f:12:38:0f:f8:b6:dc:19:04:a4:16:90:93:c1:
35:41:cc:fa:bc:1b:3a:0a:50:6a:d9:56:51:8b:37:
92:21:52:b5:e1:2c:64:0f:21:1a:87:40:11:d9:1c:
b9:5b:92:f0:ec:45:bb:4e:be:f4:f5:66:c8:1f:b2:
03:9d:84:96:87:ab:00:0f:5b:17:c5:02:8b:c2:e9:
c3:19:68:7f:9c:3e:6e:5f:63:72:d6:c2:96:7c:5a:
c1:6f:cc:80:84:17:f9:cb:22:1e:73:af:1c:6e:32:
04:f5:86:0f:af:8c:f1:91:26:e9:9a:03:96:8b:50:
e2:4b:d5:88:42:c1:63:53:87:42:ef:07:df:50:9d:
41:ae:50:45:f3:94:bc:f9:9a:2e:78:c0:79:1c:70:
f4:d1:c6:06:6a:ea:ea:dc:af:dc:db:a5:9d:76:42:
23:77:6f:51:77:77:49:c1:50:a8:82:5c:d9:16:f2:
aa:b9:d1:18:c9:61:09:5b:d6:62:28:59:e8:27:be:
20:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:18:BE:59:E9:84:14:7E:44:BC:F4:19:C2:65:94:AB:E4:78:C3:1D
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/SRi-WemEFH5EvPQZwmWUq-R4wx0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.54.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:2a:c2:2b:35:ee:54:77:63:10:c3:9b:89:12:aa:3f:87:12:
85:e0:56:ea:59:5c:69:01:3a:4b:c6:73:7c:ab:8f:bd:c8:01:
28:91:20:ba:3d:f8:d3:7a:f7:ab:34:05:6c:c2:be:75:40:7a:
0b:8c:6b:33:d5:1a:9d:00:19:82:5d:66:0d:23:e0:96:71:ea:
6b:65:9c:2e:f4:58:81:8c:8d:e0:1f:6a:53:2c:2f:33:f2:9f:
c0:06:50:67:0d:bf:83:14:9a:58:3b:bc:ac:3c:7c:36:ca:81:
fe:de:aa:e0:60:89:c3:5a:b4:00:e3:f7:30:45:1d:29:15:8b:
4b:f5:20:f5:76:93:32:91:c4:c1:aa:31:4f:96:b3:e5:ee:7c:
80:49:0f:f1:25:c4:0c:44:6c:ec:61:6d:b6:19:79:9c:7e:3d:
47:1d:77:8a:80:5b:39:99:83:11:38:4a:ab:ab:58:7b:f8:33:
27:d0:cc:17:0f:0b:7c:8c:1a:ef:55:9a:04:e6:98:d5:39:4c:
90:a6:5b:f2:5e:86:d8:bd:43:40:5a:69:6d:38:7b:c9:6e:1a:
a5:44:4e:5d:19:aa:af:80:a2:a6:63:53:f8:2a:32:58:87:f2:
78:a9:d7:2e:fd:42:f9:be:eb:73:ae:16:ee:40:95:30:82:d9:
79:3e:05:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org