Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/XNo0Z0eJSZE0_qWDmgnAc9PdnPA.roa
File: XNo0Z0eJSZE0_qWDmgnAc9PdnPA.roa (raw, json)
Hash identifier: 0P0EAnEI65Zdv94aH2PRWzUvEYOJgsjqA5FErKzxiWo=
Subject key identifier: 5C:DA:34:67:47:89:49:91:34:FE:A5:83:9A:09:C0:73:D3:DD:9C:F0
Certificate issuer: /CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546
Certificate serial: 07C17A95
Authority key identifier: B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/XNo0Z0eJSZE0_qWDmgnAc9PdnPA.roa
Signing time: Sat 01 Jan 2022 01:58:39 +0000
ROA not before: Sat 01 Jan 2022 01:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34919
IP address blocks: 45.136.240.0/22 maxlen: 24
2a0e:9dc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130120341 (0x7c17a95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5f19eb0dd48e1b24924908bb5b6848cc1678546
Validity
Not Before: Jan 1 01:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5cda34674789499134fea5839a09c073d3dd9cf0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ce:c8:43:ad:40:83:f1:88:fb:b7:d6:9b:08:
8e:5a:38:e0:7c:35:77:d3:f3:26:3f:1c:63:21:a9:
72:21:2d:ab:a7:ee:3d:bb:b4:21:16:b4:9e:4a:07:
52:58:ab:76:91:37:08:50:a6:16:0b:14:91:70:5a:
7d:ed:27:6c:dc:0c:46:ae:22:07:3d:c3:04:a3:26:
e7:a6:07:fd:d6:ee:93:a9:68:15:e4:9c:f4:14:88:
99:7e:d1:62:10:08:61:9b:0d:cd:33:39:a5:4b:c5:
30:2f:03:89:cf:16:ee:45:1d:02:74:c4:55:a5:ea:
14:6c:2b:04:68:b9:ef:b9:4d:52:96:8a:96:80:22:
74:a5:45:ef:d8:f7:a6:70:39:ec:9a:1c:a5:88:30:
5d:73:15:32:eb:c4:3e:cf:9b:3f:fb:a3:4a:4f:c7:
45:98:86:87:fa:b2:2f:f3:b3:62:8e:b2:f8:3f:6b:
51:c4:fb:18:71:ce:d5:71:b2:cb:e7:fe:94:23:b6:
87:d2:fe:f7:4b:c7:01:6e:b2:a5:a1:71:2a:65:b5:
54:62:93:9f:9b:2e:9d:3c:a0:f0:4d:e6:ca:33:9d:
f2:7d:03:a9:59:18:13:2f:9d:51:9c:f1:e1:af:0c:
af:eb:65:07:e8:d0:0a:72:8b:c4:9c:47:f9:ec:73:
8a:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:DA:34:67:47:89:49:91:34:FE:A5:83:9A:09:C0:73:D3:DD:9C:F0
X509v3 Authority Key Identifier:
keyid:B5:F1:9E:B0:DD:48:E1:B2:49:24:90:8B:B5:B6:84:8C:C1:67:85:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tfGesN1I4bJJJJCLtbaEjMFnhUY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/XNo0Z0eJSZE0_qWDmgnAc9PdnPA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/ce001b-a4d8-4f0e-831d-35c66d7c5260/1/tfGesN1I4bJJJJCLtbaEjMFnhUY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.240.0/22
IPv6:
2a0e:9dc0::/29
Signature Algorithm: sha256WithRSAEncryption
bb:58:7d:f6:d1:1c:ad:73:26:8b:01:e7:05:d1:e8:40:16:31:
39:6c:d0:fe:d1:ec:12:82:31:a8:49:3d:09:ba:f1:da:4c:cc:
b1:75:f4:ed:57:ea:8b:49:9a:4f:e1:df:fe:86:25:df:cb:9c:
ab:a2:e9:f9:ee:61:92:ba:12:33:c5:b9:e5:55:bb:28:be:3c:
25:58:2c:0a:f7:70:2e:ab:c3:4a:e6:a8:67:ca:f9:9f:cf:7c:
06:76:36:b1:35:d8:f5:d6:76:35:66:d5:84:97:cd:7f:04:a6:
53:3a:05:20:04:01:24:71:1b:a0:50:f3:a6:82:9f:1a:4a:da:
aa:cd:cb:82:7a:4d:01:a9:90:ae:e6:e2:d5:be:51:bd:bb:8b:
92:ab:e0:36:d7:f0:10:73:b5:eb:ef:dd:24:4a:c7:b3:f7:00:
92:e6:83:24:d8:a8:93:fd:8e:c8:60:a1:5e:e1:87:89:77:ed:
76:42:94:d0:f3:93:57:c6:2d:d1:ca:db:85:2a:97:80:ba:26:
ce:c0:f8:1c:29:db:d5:3b:7d:8e:eb:ac:ba:80:b1:92:ef:ee:
a0:b3:d6:a6:b0:d0:df:c3:48:85:86:80:9f:5f:03:b8:83:c5:
84:d6:55:0d:36:f8:3a:ac:a1:0e:cf:f7:bb:4e:ac:07:76:be:
7e:28:c5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:07 2024 by rpki-client on console-ams.rpki-client.org