Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/DFDHlS0kE6oaa3HYdkijw6MFfpQ.roa
File: DFDHlS0kE6oaa3HYdkijw6MFfpQ.roa (raw, json)
Hash identifier: uolTzxiz+yfTvdgSdA9oC4n/FsYREFAnaKoopNSAaps=
Subject key identifier: 0C:50:C7:95:2D:24:13:AA:1A:6B:71:D8:76:48:A3:C3:A3:05:7E:94
Certificate issuer: /CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Certificate serial: 059F08C0
Authority key identifier: 23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/DFDHlS0kE6oaa3HYdkijw6MFfpQ.roa
Signing time: Wed 22 Jun 2022 06:17:58 +0000
ROA not before: Wed 22 Jun 2022 06:17:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.153.238.0/24 maxlen: 24
45.153.236.0/24 maxlen: 24
45.153.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94308544 (0x59f08c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=23446da7a70bce773ec2bc1655aae30c3c18412c
Validity
Not Before: Jun 22 06:17:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0c50c7952d2413aa1a6b71d87648a3c3a3057e94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:33:b7:0f:0e:b1:7f:45:b0:6c:e2:18:ac:09:
11:f6:0a:e7:ae:9e:c8:e2:f8:2b:c2:a9:51:64:c3:
85:58:a5:45:89:b7:42:21:b8:2b:bf:cb:0a:55:f4:
e9:91:5c:5e:5b:02:65:af:fc:76:4e:bc:35:18:3e:
91:65:a7:ca:da:52:42:1d:bf:91:64:e7:71:a6:11:
d3:38:b6:fc:99:d4:91:f4:63:b9:94:17:68:bf:28:
69:fa:a4:9e:b8:14:d4:39:a3:e4:ab:72:c4:b3:8e:
7a:24:dc:a3:ae:3a:95:67:2d:e6:f5:f1:17:e0:59:
d1:81:43:16:9c:0d:39:ad:3f:99:ca:6c:32:5a:b3:
db:77:50:c4:17:ae:5a:b2:3a:00:75:58:97:96:24:
0a:f5:6f:88:ca:cc:aa:14:03:bc:1d:02:10:25:10:
e4:2b:dd:9d:ac:08:d6:56:fa:5c:7e:c6:7f:8e:39:
16:d1:61:d7:9b:f3:ac:aa:8f:6b:61:cd:83:0d:c6:
d5:31:4f:e7:71:e5:9b:de:2a:e0:48:90:f2:6e:4f:
7a:08:ff:b4:6e:8f:a6:83:83:fd:2b:c0:99:a6:24:
3a:ec:95:af:ae:86:6c:82:c6:f6:b3:fc:1e:30:5c:
b4:6b:1d:53:fc:06:e1:64:f7:57:27:5b:12:a9:e0:
90:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:50:C7:95:2D:24:13:AA:1A:6B:71:D8:76:48:A3:C3:A3:05:7E:94
X509v3 Authority Key Identifier:
keyid:23:44:6D:A7:A7:0B:CE:77:3E:C2:BC:16:55:AA:E3:0C:3C:18:41:2C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/I0Rtp6cLznc-wrwWVarjDDwYQSw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/DFDHlS0kE6oaa3HYdkijw6MFfpQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/f3549f-18f7-48b0-901d-25cc9d6cfbb9/1/I0Rtp6cLznc-wrwWVarjDDwYQSw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.236.0-45.153.238.255
Signature Algorithm: sha256WithRSAEncryption
8c:6f:09:dd:9b:dd:16:9f:b8:db:7b:36:bf:81:65:a5:21:68:
63:99:a8:84:9d:67:a5:f9:f6:9e:d9:e2:b5:72:2c:f2:51:3d:
50:75:3b:9b:fb:dd:90:44:ce:e1:bc:ec:fb:2b:6b:64:2f:3d:
18:ec:1c:c2:41:12:6e:f6:53:9a:4c:f7:6c:59:11:7c:72:a8:
92:e7:9a:b0:ab:1b:65:33:b2:76:c6:23:8b:27:2f:48:31:66:
8f:52:72:21:a0:80:ee:37:11:fd:6b:e7:0e:39:9a:15:a1:7a:
e9:44:d1:8c:aa:c6:2a:50:61:d0:3b:f5:ba:d9:e1:63:be:44:
20:a2:3e:dc:2a:19:a8:bc:56:b0:61:45:a5:55:55:12:74:9d:
e8:b0:54:6c:19:30:f3:73:d5:14:50:08:24:77:c6:17:33:97:
f1:4b:82:5c:86:78:84:3a:50:c7:05:af:50:87:e6:87:b3:a2:
5a:be:ba:66:11:ee:4e:79:16:a9:e8:6f:ab:53:24:67:3f:ce:
04:af:03:9a:fb:77:a2:10:df:9e:a3:81:3b:6d:6a:b8:e6:e3:
63:e7:4e:18:42:2c:47:71:cf:8f:47:ec:87:b6:87:14:8f:e5:
a4:b8:bc:ff:94:cb:35:be:9e:11:d8:b9:f7:b0:48:cb:82:cb:
11:53:d8:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:07 2023 by rpki-client on console-fra.rpki-client.org