Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/Hz5RziYQ6LlKRrdBP6wd5jPD8fU.roa
File: Hz5RziYQ6LlKRrdBP6wd5jPD8fU.roa (raw, json)
Hash identifier: zlBJ7ffLog0eBl10PfdMXQOq3/pc6QbhxcNjVOK3Tpo=
Subject key identifier: 1F:3E:51:CE:26:10:E8:B9:4A:46:B7:41:3F:AC:1D:E6:33:C3:F1:F5
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0647FFE1
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/Hz5RziYQ6LlKRrdBP6wd5jPD8fU.roa
Signing time: Fri 24 Jun 2022 16:47:15 +0000
ROA not before: Fri 24 Jun 2022 16:47:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 194.246.37.0/24 maxlen: 24
45.149.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105381857 (0x647ffe1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Jun 24 16:47:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1f3e51ce2610e8b94a46b7413fac1de633c3f1f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:15:a0:64:bb:90:1b:76:b5:5e:24:fc:c8:ae:
48:a3:67:76:c7:94:f6:3d:0f:76:94:7f:bf:4b:59:
7e:c7:f1:14:72:e4:40:bb:87:26:99:9a:47:63:bd:
89:86:32:3a:dd:ed:0d:20:92:9c:be:c5:02:3e:11:
a8:38:9a:ae:8d:b6:d2:5e:de:1a:14:04:27:01:16:
36:b6:35:13:83:4d:2b:55:9b:bc:40:d5:94:f9:81:
62:43:34:2d:ce:00:67:08:46:cc:1c:da:f8:53:92:
23:fe:1e:db:6b:86:09:c6:3b:12:4a:96:b4:c7:2a:
14:85:c1:96:0b:75:2a:93:c3:ec:0e:04:de:e1:12:
d0:c1:01:6f:38:33:12:60:a0:86:06:cb:e9:69:95:
55:4c:0f:49:5c:63:aa:2a:33:58:f0:07:40:8a:29:
7b:4f:4d:af:48:8e:a4:5a:73:6b:a3:79:a1:62:ca:
fe:71:7f:c8:5a:2e:3c:87:97:ed:ef:d0:5c:06:2b:
52:41:64:a1:04:b5:c9:1c:36:9a:d3:38:11:01:92:
8b:bb:f5:8f:83:57:66:02:ef:49:0b:41:9e:a6:7e:
b9:a1:87:e0:65:6e:2b:60:4e:ac:d4:bd:9c:1a:b6:
18:0c:79:e2:a7:bc:5e:f2:8b:d0:2c:34:2c:d8:c5:
c8:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:3E:51:CE:26:10:E8:B9:4A:46:B7:41:3F:AC:1D:E6:33:C3:F1:F5
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/Hz5RziYQ6LlKRrdBP6wd5jPD8fU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.165.0/24
194.246.37.0/24
Signature Algorithm: sha256WithRSAEncryption
25:ef:62:bc:d3:58:4d:ef:c8:c6:88:93:76:e9:35:b0:16:18:
fa:db:ea:2d:d3:59:09:42:73:66:14:02:2b:05:36:13:d0:1d:
5e:98:f9:33:83:44:80:13:db:94:99:ce:97:c3:13:7b:20:11:
18:0b:4f:b8:b4:d8:4e:6e:36:77:00:83:85:9f:ad:4e:6c:15:
a6:bd:f8:37:49:5c:23:12:2e:cb:8d:52:80:f5:3b:7d:22:4f:
0e:cf:74:1b:5c:50:fa:6b:ee:ba:06:e3:ac:e6:e7:d5:3d:c9:
39:94:4b:f9:b7:cf:8a:ae:5d:1f:ba:b9:65:c8:49:5e:68:73:
4f:c8:66:76:81:fb:17:29:c8:88:09:59:8e:2e:48:5a:55:fb:
f1:04:ec:86:94:b0:c0:6d:fd:f2:96:01:be:90:da:b5:95:bc:
fc:a2:de:13:a4:8f:e8:50:34:29:56:11:d5:02:22:5a:90:63:
e2:ba:4e:2b:12:80:28:45:1c:9c:c7:ed:0c:ab:71:b6:3a:8d:
b0:10:66:f7:90:3d:f3:b9:b0:07:12:85:0e:e1:ed:9e:e9:e1:
3a:60:b4:8f:ce:c6:3d:bf:88:f5:0c:8f:04:a2:e9:31:ae:67:
02:71:a0:a8:ba:07:86:9e:c9:51:a0:f0:97:fa:87:85:8c:4e:
21:be:28:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:46 2023 by rpki-client on console-ams.rpki-client.org