Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/6c32a6-6242-4cbb-918c-c97e5a6b0b56/1/Qmb2xo7Q_s4f3y-8lSgns7BTFpE.roa
File: Qmb2xo7Q_s4f3y-8lSgns7BTFpE.roa (raw, json)
Hash identifier: gHotgoKqXNZiI+n3TJN/GmItJdTTHeTd4BSr4gwH0OE=
Subject key identifier: 42:66:F6:C6:8E:D0:FE:CE:1F:DF:2F:BC:95:28:27:B3:B0:53:16:91
Certificate issuer: /CN=a30c4641cc9fc9d23a2b5588a4ef5ee3884cf1ca
Certificate serial: 01BEBE
Authority key identifier: A3:0C:46:41:CC:9F:C9:D2:3A:2B:55:88:A4:EF:5E:E3:88:4C:F1:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/owxGQcyfydI6K1WIpO9e44hM8co.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/6c32a6-6242-4cbb-918c-c97e5a6b0b56/1/Qmb2xo7Q_s4f3y-8lSgns7BTFpE.roa
Signing time: Thu 20 Jan 2022 10:38:14 +0000
ROA not before: Thu 20 Jan 2022 10:38:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51747
IP address blocks: 45.150.72.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114366 (0x1bebe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a30c4641cc9fc9d23a2b5588a4ef5ee3884cf1ca
Validity
Not Before: Jan 20 10:38:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4266f6c68ed0fece1fdf2fbc952827b3b0531691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:5c:b1:0d:58:f8:48:3c:2f:f5:fc:f7:4f:0a:
de:2f:97:d2:89:a8:5d:57:d7:fc:0f:72:a5:d0:a2:
77:8a:6e:f8:5a:3f:6b:d0:1a:c0:70:13:37:42:44:
05:05:f2:45:eb:fe:b8:a1:1b:c0:36:16:e8:a0:4d:
76:1f:b1:71:35:b1:fc:6f:1d:c3:2a:c8:9c:0d:2c:
66:77:2b:53:90:86:fc:e5:0e:32:de:a1:66:d1:dc:
2c:76:28:f5:16:af:b6:d4:54:06:74:be:fa:c4:20:
8f:2d:c3:d2:ac:f9:0f:16:91:78:2f:be:62:60:c6:
d9:bc:f6:22:69:b5:8e:88:a9:a2:28:d8:0a:08:e7:
7d:c9:af:76:a6:fb:85:80:82:7f:ae:d9:c2:9a:93:
9a:29:5f:a0:69:00:09:76:9d:46:14:4b:d6:de:4b:
1e:9e:89:6a:bd:ae:7e:00:3a:f6:1b:be:66:b7:99:
c0:62:db:f5:8b:14:9b:88:a0:7c:23:23:29:72:b1:
be:07:f3:92:ba:7f:74:f4:ec:46:ba:2d:8f:ce:b1:
40:00:a6:76:f8:7e:5f:b0:da:eb:f7:33:01:32:35:
ab:f9:87:fd:92:29:23:31:bd:9f:ce:57:18:da:ff:
00:54:64:8e:13:f4:32:49:74:80:72:40:c5:84:af:
0d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:66:F6:C6:8E:D0:FE:CE:1F:DF:2F:BC:95:28:27:B3:B0:53:16:91
X509v3 Authority Key Identifier:
keyid:A3:0C:46:41:CC:9F:C9:D2:3A:2B:55:88:A4:EF:5E:E3:88:4C:F1:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/owxGQcyfydI6K1WIpO9e44hM8co.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/6c32a6-6242-4cbb-918c-c97e5a6b0b56/1/Qmb2xo7Q_s4f3y-8lSgns7BTFpE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/6c32a6-6242-4cbb-918c-c97e5a6b0b56/1/owxGQcyfydI6K1WIpO9e44hM8co.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.72.0/22
Signature Algorithm: sha256WithRSAEncryption
5a:81:ab:f9:01:ab:ec:8a:f3:eb:ae:7e:55:32:e1:9a:8d:86:
99:0d:55:5a:0c:aa:8d:43:44:f2:2c:78:00:28:3b:2c:c4:e8:
57:bd:fd:0c:70:14:67:0e:10:0c:bc:9e:7e:3c:b1:01:2d:76:
88:34:b6:5e:bb:cb:cb:9a:dd:22:6f:de:3c:26:9c:bd:ae:e2:
5d:88:ca:c3:9e:89:a4:6a:35:56:66:24:0c:f0:9c:8d:af:0e:
a5:67:36:73:23:c2:3d:c8:9f:58:7a:00:54:c2:15:30:7a:d6:
99:87:45:67:d5:71:1c:56:02:f1:fd:d2:e9:0d:44:9e:0b:db:
05:fc:ad:cd:32:04:87:2d:ee:61:69:4d:06:9d:7b:68:e7:a8:
9b:64:4e:0e:8c:10:13:8c:04:b2:02:59:c9:e1:fa:1b:4b:2b:
1e:14:0a:6e:94:f9:ad:3d:e3:2a:6b:08:7e:37:c6:70:52:47:
3e:ec:4f:18:08:cf:0d:a7:4e:9e:b3:8b:d9:c4:d0:26:01:9d:
bf:a5:2c:a1:8e:0d:c2:e8:8f:9d:72:e5:12:5d:61:04:4b:47:
b4:a5:3c:2b:11:f2:a3:db:4a:f3:5c:8d:9e:b1:fa:a2:03:cc:
22:a0:49:0a:3c:38:74:ad:fb:62:97:f2:0b:60:fe:8e:14:32:
55:e3:70:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:45 2023 by rpki-client on console-fra.rpki-client.org