Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/XlvvIhlQxZ6dRPO6e9lO_kSf7ys.roa
File: XlvvIhlQxZ6dRPO6e9lO_kSf7ys.roa (raw, json)
Hash identifier: rBDNRfDAMDVwFsc0Tsb7rJ2S1rDx/8BfXMhcA+TGzoM=
Subject key identifier: 5E:5B:EF:22:19:50:C5:9E:9D:44:F3:BA:7B:D9:4E:FE:44:9F:EF:2B
Certificate issuer: /CN=4a644c1156851803f37adeec0876ccf989d5aef0
Certificate serial: 080727C1
Authority key identifier: 4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/XlvvIhlQxZ6dRPO6e9lO_kSf7ys.roa
Signing time: Sat 01 Jan 2022 06:55:49 +0000
ROA not before: Sat 01 Jan 2022 06:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205591
IP address blocks: 45.152.126.0/24 maxlen: 24
45.152.127.0/24 maxlen: 24
2a0f:5700::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134686657 (0x80727c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a644c1156851803f37adeec0876ccf989d5aef0
Validity
Not Before: Jan 1 06:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5e5bef221950c59e9d44f3ba7bd94efe449fef2b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:f5:1b:3f:70:37:a4:3e:81:98:e5:0d:f8:2c:
57:f2:d2:6d:71:c6:1c:e7:f5:b5:39:01:e2:96:8a:
0e:fa:90:89:a8:50:ea:ac:62:68:32:19:24:0f:50:
ca:18:8b:11:f7:4f:19:e8:2e:cb:8a:21:fd:f8:bd:
e2:24:ce:61:fc:1c:f0:b3:f3:d6:73:bb:d7:d0:ef:
42:13:e0:63:63:01:b1:dc:18:c6:45:7f:c2:64:de:
d9:e7:61:ce:2e:8b:1e:fe:f1:98:30:99:1f:06:02:
f6:f0:c5:12:bd:b1:d4:e6:7b:6f:c9:13:05:e1:3a:
69:a0:13:66:b5:a4:3d:19:b1:41:07:6d:9d:2d:92:
ca:b6:33:1d:75:22:60:17:89:df:2f:95:b6:71:e9:
fb:97:68:76:fd:f3:e2:94:92:e0:f2:42:0b:58:df:
02:41:3c:de:0e:5a:fe:0b:8b:7e:d9:92:81:a1:b9:
cc:60:93:74:46:71:ca:8b:a2:04:66:55:98:5e:8d:
c9:07:54:3c:1b:a0:e8:99:dc:4c:9b:d0:fa:9e:83:
36:ce:96:0e:8f:bb:f8:4c:5c:20:08:61:27:13:22:
6c:e7:b7:85:49:ea:c4:50:b7:fb:29:4c:ab:01:f9:
c7:ca:7f:29:46:8f:21:da:fb:5b:6c:de:23:bc:a8:
c0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:5B:EF:22:19:50:C5:9E:9D:44:F3:BA:7B:D9:4E:FE:44:9F:EF:2B
X509v3 Authority Key Identifier:
keyid:4A:64:4C:11:56:85:18:03:F3:7A:DE:EC:08:76:CC:F9:89:D5:AE:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SmRMEVaFGAPzet7sCHbM-YnVrvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/XlvvIhlQxZ6dRPO6e9lO_kSf7ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/6b0798-3d4f-40e6-b739-cc1c9b5f6640/1/SmRMEVaFGAPzet7sCHbM-YnVrvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.126.0/23
IPv6:
2a0f:5700::/32
Signature Algorithm: sha256WithRSAEncryption
8c:2b:9c:18:5d:0b:5b:07:7b:45:39:67:b6:ba:5e:04:5d:04:
10:11:af:50:77:9b:4b:78:18:9e:cd:58:f6:23:cf:8d:7a:7b:
65:21:be:38:8a:fc:2a:35:86:de:ae:ca:4d:11:2d:be:2f:01:
58:21:fa:90:d8:16:55:0e:b1:45:67:63:61:6e:aa:78:1d:42:
67:89:3f:c7:0c:60:cc:22:cd:9a:9f:6e:bd:8a:8e:83:e8:4d:
dc:93:40:e9:33:ed:a1:b4:00:17:15:e1:6b:e6:a8:85:e4:a2:
0b:56:f6:25:60:22:2f:15:76:ef:92:e4:8f:fb:fa:f9:35:8b:
99:a3:16:a0:89:f2:ca:62:08:ea:e3:a5:b1:4a:c0:c7:de:af:
19:4b:8c:ea:21:25:a6:44:c3:f0:4d:18:51:4e:cd:73:d3:db:
06:5a:d1:ca:1c:30:88:68:2f:3f:a0:cd:1b:1c:8b:04:fe:68:
f9:9d:b1:f9:65:8b:90:89:45:a0:f1:7e:13:dd:08:52:89:3e:
d4:af:75:d0:5e:6a:54:ba:22:5c:44:df:a3:97:3d:b0:71:e0:
72:b3:9e:fa:c9:1b:f5:e5:43:a2:67:4e:55:0b:2d:97:f9:4f:
22:19:88:cc:d2:24:fa:65:fb:c0:43:e9:1c:aa:60:54:6c:25:
a2:e6:0a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:22 2024 by rpki-client on console-ams.rpki-client.org