Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SDVXKgZvK1kFNcI_r2OpN24WixE.roa
File: SDVXKgZvK1kFNcI_r2OpN24WixE.roa (raw, json)
Hash identifier: Aja++zJ6z7b7jpPyYY7iYbG12AjsWjnXQ+CPbs872xk=
Subject key identifier: 48:35:57:2A:06:6F:2B:59:05:35:C2:3F:AF:63:A9:37:6E:16:8B:11
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080152EE
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SDVXKgZvK1kFNcI_r2OpN24WixE.roa
Signing time: Sat 01 Jan 2022 06:55:45 +0000
ROA not before: Sat 01 Jan 2022 06:55:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48646
IP address blocks: 45.152.124.0/24 maxlen: 24
2a0f:5707:aac0::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134304494 (0x80152ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4835572a066f2b590535c23faf63a9376e168b11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3f:33:27:da:b9:76:13:fe:cc:79:69:32:e0:
68:dd:61:75:2e:51:e0:fa:b0:70:0d:54:bc:d5:0a:
d1:56:03:d4:6b:9d:c2:70:eb:41:c4:28:be:ad:32:
0a:21:c7:1a:d3:5f:5f:4f:49:b3:8a:5e:1e:2e:0f:
98:41:e7:17:f2:50:0f:ce:30:88:95:c6:17:4a:30:
55:a2:80:bd:2f:ba:e3:37:46:f8:52:17:fc:be:2a:
41:08:23:fd:ef:8a:57:e7:20:97:18:f4:88:5a:ff:
ee:f8:06:2b:7c:c9:9c:aa:04:e7:43:ee:41:4c:52:
3d:b1:eb:ca:f9:fa:91:6b:78:74:61:01:3f:76:cb:
b7:a4:82:8f:c3:84:82:02:4f:92:c5:27:7a:db:35:
06:4f:8c:bb:5e:df:00:e8:fd:2d:8f:11:66:f7:22:
dc:70:98:3f:c6:95:bd:a6:42:07:6b:78:e7:be:04:
75:c7:a2:0e:ee:83:27:b4:1b:4e:93:53:bd:69:bb:
d8:3a:a6:9c:f2:20:d7:0c:a0:ba:c0:fc:c8:61:a8:
26:82:4e:7d:f2:9d:87:16:9a:5c:6b:62:76:3d:b7:
e9:ba:bc:c6:2d:61:ac:0c:3c:b5:3d:ea:24:1c:36:
15:1a:b0:e7:e7:e3:27:b2:52:50:6d:63:7c:f1:4a:
10:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:35:57:2A:06:6F:2B:59:05:35:C2:3F:AF:63:A9:37:6E:16:8B:11
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SDVXKgZvK1kFNcI_r2OpN24WixE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.124.0/24
IPv6:
2a0f:5707:aac0::/44
Signature Algorithm: sha256WithRSAEncryption
5c:01:8d:9a:66:b0:95:73:67:ef:9b:b0:0b:92:ef:0f:01:54:
36:91:a9:b1:fe:ff:3e:48:57:77:40:29:d2:ed:db:18:59:3b:
4f:51:20:83:00:f6:2c:32:02:96:73:e3:7e:34:4e:40:a1:0c:
34:cc:7d:b1:d0:03:aa:c0:13:b2:59:d3:a0:d4:03:34:f3:79:
dd:2a:89:7b:d8:46:f8:b7:8a:74:eb:3c:cf:95:a8:87:ba:7e:
b5:90:60:0f:0d:ee:2a:03:a3:37:9e:10:c1:1a:28:92:63:65:
79:80:a7:31:f0:3a:2b:bf:39:87:dd:d7:b8:dc:c2:d6:9f:2b:
13:57:d1:51:c9:90:2c:ec:76:8f:64:c8:92:d8:a0:3e:e3:3e:
0b:65:b8:39:ea:6d:33:79:9c:f7:82:d9:a6:a3:7d:74:f0:81:
85:a9:ba:b8:86:eb:b1:f3:eb:ce:6d:5c:35:18:db:91:2b:ec:
30:33:30:fa:f0:ec:fb:1c:25:7f:7b:73:4d:0c:87:37:84:6b:
10:cd:d5:22:e6:d8:9c:b3:ee:39:f8:ba:87:93:ca:1d:57:8e:
69:f1:d6:96:0d:49:32:f3:ab:e2:1e:79:26:00:31:e9:c6:1f:
c5:65:76:6c:81:54:43:fb:fe:09:47:9b:6d:03:c5:3c:b2:24:
e4:e2:91:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org