Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/cFTBGrv0_2hRAembL5nA_KLepUM.roa
File: cFTBGrv0_2hRAembL5nA_KLepUM.roa (raw, json)
Hash identifier: mIQPP+GZIAIFNywXNCOB2tkK7Q8P432jsEsJBqCCnn0=
Subject key identifier: 70:54:C1:1A:BB:F4:FF:68:51:01:E9:9B:2F:99:C0:FC:A2:DE:A5:43
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 018475BA7A5BA80AAF4D4C3A65880479A2EC
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/cFTBGrv0_2hRAembL5nA_KLepUM.roa
Signing time: Mon 14 Nov 2022 10:41:06 +0000
ROA not before: Mon 14 Nov 2022 10:41:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 45.149.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:75:ba:7a:5b:a8:0a:af:4d:4c:3a:65:88:04:79:a2:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Nov 14 10:41:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7054c11abbf4ff685101e99b2f99c0fca2dea543
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:b5:69:32:c5:09:07:75:59:6d:c3:bc:9a:44:
c0:ca:66:2d:ab:0e:28:62:2e:bc:f4:c4:12:7b:b9:
12:01:83:2a:64:44:73:c4:09:e2:d7:00:5f:ef:4d:
21:e7:34:9a:36:77:bc:0d:c8:01:15:1f:36:2c:2e:
45:5b:74:db:a3:a2:98:b6:5d:83:c5:58:6d:76:28:
12:77:49:7c:4a:a6:08:68:f9:41:79:8e:a5:b2:32:
90:fb:8b:53:e0:cb:42:e1:6b:31:17:b6:3e:40:7f:
b1:17:30:9e:19:49:eb:6f:01:3a:f1:c3:b0:59:62:
dd:62:c7:be:d1:ef:7a:dd:38:c3:e5:d4:29:7d:f4:
0c:86:3e:aa:25:09:ea:41:f1:ee:63:fa:28:f7:73:
d9:e3:09:db:25:a2:ba:7d:7e:f7:64:ed:5b:51:06:
8e:a5:ab:fa:bb:a5:72:2d:7b:c6:2c:ee:07:65:ef:
f7:e6:b4:a5:b3:6d:91:fe:e6:50:c0:29:67:cc:5c:
74:c6:d9:9f:34:9f:ac:18:ce:c4:a2:88:03:2f:61:
5d:d3:97:ec:e9:b5:45:af:3f:06:12:68:16:52:4c:
ef:50:1a:51:75:56:d1:3b:86:82:ce:56:82:65:98:
5f:23:3d:6e:1e:10:7f:4b:ef:ac:c4:aa:4e:c8:09:
12:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:54:C1:1A:BB:F4:FF:68:51:01:E9:9B:2F:99:C0:FC:A2:DE:A5:43
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/cFTBGrv0_2hRAembL5nA_KLepUM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.167.0/24
Signature Algorithm: sha256WithRSAEncryption
1e:e4:6f:9c:a4:1c:11:32:68:e3:02:ec:45:e1:fd:de:6e:1d:
d3:31:89:13:5a:4c:df:19:00:2c:d4:bf:77:cb:cf:2b:1f:69:
77:e0:93:e2:3a:df:c0:ce:06:b7:e8:04:74:3c:8b:02:0c:17:
79:d3:e5:72:4e:cc:17:30:04:8d:07:0b:93:37:8a:74:24:6a:
a6:27:8d:65:2d:87:b8:8f:a8:de:33:81:79:f4:78:40:97:0f:
81:8f:98:9f:7b:7a:e4:ae:89:c9:be:f1:a4:27:87:d9:22:61:
c2:22:bb:de:70:67:79:db:02:32:b4:08:37:55:38:24:b0:a0:
90:d2:49:3a:21:8f:65:42:82:25:12:b0:db:82:36:57:ce:bd:
d6:84:23:9f:3b:bd:1b:4a:43:97:a6:f4:cc:32:ad:9e:b7:87:
1e:d7:b9:9e:29:36:ae:ef:1f:e8:ae:89:52:82:92:95:d5:e0:
69:f4:9f:3b:8a:0b:11:36:df:9c:d3:92:8a:89:f1:6c:b6:92:
92:94:fd:d2:22:fb:7e:92:25:c2:d4:07:d6:e5:d2:e8:c0:74:
fa:e8:29:43:b2:a6:f7:01:cf:7b:1f:3f:00:dc:0c:a6:d3:54:
e2:a9:2d:84:4e:7b:85:bb:90:04:6a:92:a5:cc:e8:c1:23:76:
26:c1:fd:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org