Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/icd15mhPX9BdEproz3lLTGdGQEc.roa
File: icd15mhPX9BdEproz3lLTGdGQEc.roa (raw, json)
Hash identifier: 1n9STkERiFOpncCo3gThP82O7t5Y8AUBtUnVa4xdoSA=
Subject key identifier: 89:C7:75:E6:68:4F:5F:D0:5D:12:9A:E8:CF:79:4B:4C:67:46:40:47
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018474DEB529DEA5B6ECF453F770C629A84D
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/icd15mhPX9BdEproz3lLTGdGQEc.roa
Signing time: Mon 14 Nov 2022 06:41:03 +0000
ROA not before: Mon 14 Nov 2022 06:41:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210439
IP address blocks: 45.158.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:74:de:b5:29:de:a5:b6:ec:f4:53:f7:70:c6:29:a8:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Nov 14 06:41:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89c775e6684f5fd05d129ae8cf794b4c67464047
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:9e:30:da:74:86:0e:51:a1:32:ea:15:26:6a:
42:6c:9d:20:d6:ab:6b:ca:6f:e9:75:04:b3:4a:d6:
56:af:cf:79:01:80:ec:e7:3b:2c:ba:a3:fe:ca:d6:
34:f4:67:cc:7a:80:86:25:fe:32:d4:ba:49:8b:5e:
b6:6f:e0:99:87:4a:9f:13:2b:5d:bd:9b:da:3c:b3:
11:bd:88:37:0a:48:10:d0:84:60:c6:ca:f3:f9:c1:
cb:10:ce:2f:70:43:7d:80:07:5b:01:db:eb:fd:69:
99:fd:02:8d:2f:77:ad:3b:eb:05:95:a2:03:ad:9d:
06:a3:74:68:ce:27:70:66:cf:52:c3:54:29:15:d2:
3f:e1:88:cd:c3:23:b8:33:67:f6:81:3f:57:f4:d7:
48:0f:b7:c8:d5:11:ec:b9:3e:cd:81:58:0b:f0:02:
09:30:18:7f:9d:c7:20:23:95:dc:51:c0:bd:04:55:
82:5f:dc:30:e3:a0:91:f1:68:b4:fa:ca:9c:79:27:
49:da:bc:f6:12:a4:3f:27:f2:6f:36:3e:d3:7e:bd:
a5:42:df:51:16:3e:f8:43:ed:97:b9:b2:4c:31:0b:
c0:ce:91:80:a1:b3:e9:69:cb:32:16:fb:5d:31:2f:
4f:c7:85:af:d2:43:7c:a0:fb:e7:95:a1:d4:71:ff:
b7:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:C7:75:E6:68:4F:5F:D0:5D:12:9A:E8:CF:79:4B:4C:67:46:40:47
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/icd15mhPX9BdEproz3lLTGdGQEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.126.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:5e:2f:c6:d1:87:ba:fb:e9:e7:02:ae:d5:f4:f0:3e:01:0f:
5a:65:07:42:f2:5d:75:72:69:ed:b6:fd:32:b0:29:2d:1b:47:
31:dc:f7:54:0b:12:50:33:26:11:8b:a7:52:57:9a:4a:16:a6:
69:7e:7e:bf:7a:28:b3:fb:13:f3:fd:29:ea:1f:5f:60:a6:f5:
71:81:b3:50:88:0d:e4:7e:eb:a8:3e:58:e5:96:f9:8c:2c:88:
9a:c4:81:82:e1:8d:c9:50:42:e8:fa:0f:33:89:04:d6:89:d6:
87:a1:c0:1e:3f:bd:a0:92:41:74:7f:a7:37:c6:ac:2e:6f:50:
f1:e4:47:6d:fc:eb:5b:a3:fd:43:78:2d:81:61:18:f2:18:f1:
b1:8d:47:d6:1a:8b:79:9b:34:e1:c7:b1:3d:8e:2c:89:92:00:
49:8d:01:f4:a1:73:19:28:2c:a1:78:72:e5:7c:16:7b:4a:7d:
5b:e5:c7:87:be:58:28:92:d7:b2:65:9f:9f:16:b6:bb:d0:cf:
70:aa:5e:04:c7:82:f3:1c:19:23:13:f1:18:3a:20:6b:2d:14:
62:59:26:72:d5:60:50:8d:9b:0e:fc:30:1e:47:db:9e:d3:66:
b1:d7:87:74:32:d1:01:73:b1:99:f6:bb:07:dc:75:20:9d:09:
f1:d2:a3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:45 2024 by rpki-client on console-fra.rpki-client.org