Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/d9cc8d-95ac-4848-b097-9d63b0476e24/1/iutcQmpU7P6jbLWHEcLghwHPHA8.roa
File: iutcQmpU7P6jbLWHEcLghwHPHA8.roa (raw, json)
Hash identifier: 7ZJZ02pHHHJigZT8TR9v7p/e0kPScxmpcyfJmNzD/KA=
Subject key identifier: 8A:EB:5C:42:6A:54:EC:FE:A3:6C:B5:87:11:C2:E0:87:01:CF:1C:0F
Certificate issuer: /CN=712ff11dd0c66ce67fe0f1d749c0909ef3418d29
Certificate serial: 0185530D58ED71D11C222C8D992040227E26
Authority key identifier: 71:2F:F1:1D:D0:C6:6C:E6:7F:E0:F1:D7:49:C0:90:9E:F3:41:8D:29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cS_xHdDGbOZ_4PHXScCQnvNBjSk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/d9cc8d-95ac-4848-b097-9d63b0476e24/1/iutcQmpU7P6jbLWHEcLghwHPHA8.roa
Signing time: Tue 27 Dec 2022 10:07:41 +0000
ROA not before: Tue 27 Dec 2022 10:07:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201500
IP address blocks: 45.147.130.0/24 maxlen: 24
45.147.131.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:53:0d:58:ed:71:d1:1c:22:2c:8d:99:20:40:22:7e:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=712ff11dd0c66ce67fe0f1d749c0909ef3418d29
Validity
Not Before: Dec 27 10:07:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aeb5c426a54ecfea36cb58711c2e08701cf1c0f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:1d:c3:d4:12:3f:e5:ab:4c:b5:1d:ca:85:eb:
c0:a5:7d:83:5f:4b:45:5c:ac:9a:77:68:5f:6f:5f:
49:98:13:09:a0:c7:ca:42:29:25:19:f9:f7:82:3f:
38:20:a5:76:08:e2:b6:f9:3f:a8:36:09:c3:e4:72:
94:df:a4:f5:8e:75:c5:6c:b1:fa:8c:83:0e:13:63:
9e:bc:f5:5b:ab:0d:86:ac:0a:2f:50:ce:89:f8:53:
52:fc:9e:2d:e0:49:3a:69:a8:a7:c7:92:6f:6a:00:
82:88:29:7e:df:37:f1:88:90:43:4f:12:35:08:41:
ee:fa:48:e8:5e:33:e0:1c:8a:23:52:3f:cd:c1:ae:
20:0c:ac:fe:f9:b7:59:24:97:76:1b:58:29:66:20:
c7:48:cd:91:8e:a6:6b:00:fd:ce:1e:18:cd:67:ff:
d4:cb:97:6b:87:94:14:8f:9a:e9:90:bc:7e:56:88:
e4:44:51:f4:46:ea:51:53:a3:80:58:80:aa:4d:49:
8f:38:68:65:d2:0e:51:8c:e4:29:1c:32:4a:7b:68:
46:57:f5:78:f4:28:f3:89:41:82:1d:67:42:20:18:
3f:3b:a6:4d:8b:f3:99:06:ec:44:c8:35:f0:2e:37:
69:08:17:53:87:d3:e3:52:de:e9:1e:e6:e0:cf:6d:
0f:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EB:5C:42:6A:54:EC:FE:A3:6C:B5:87:11:C2:E0:87:01:CF:1C:0F
X509v3 Authority Key Identifier:
keyid:71:2F:F1:1D:D0:C6:6C:E6:7F:E0:F1:D7:49:C0:90:9E:F3:41:8D:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cS_xHdDGbOZ_4PHXScCQnvNBjSk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/d9cc8d-95ac-4848-b097-9d63b0476e24/1/iutcQmpU7P6jbLWHEcLghwHPHA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/d9cc8d-95ac-4848-b097-9d63b0476e24/1/cS_xHdDGbOZ_4PHXScCQnvNBjSk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.130.0/23
Signature Algorithm: sha256WithRSAEncryption
40:55:f7:c0:f7:9d:5f:77:bd:08:e7:e4:da:28:10:e9:7c:68:
b6:11:d0:a8:3c:47:f9:b1:98:e8:90:9d:45:a4:e9:8c:f5:73:
65:ae:44:6d:a2:36:4d:85:4f:43:4d:26:4a:15:b5:4e:03:66:
22:e0:f4:0d:0a:65:e4:3c:af:58:a1:9d:88:9e:15:a8:55:cf:
99:24:28:d5:05:28:7d:c7:2c:97:bc:17:a9:f0:93:6d:20:4d:
2d:c5:60:35:3e:d1:ec:57:fd:4b:61:63:f2:a2:0f:77:80:e7:
c6:a9:80:97:93:17:8f:da:ce:5a:0a:47:67:40:4d:8a:5e:fa:
77:0e:2f:8b:8d:9a:08:e4:c3:47:38:c4:fc:45:5f:84:9b:93:
36:c6:35:8a:ea:9e:95:9a:68:0c:d8:db:85:2c:3b:2c:34:ed:
c5:7f:19:97:47:f8:ff:06:73:39:59:87:07:3e:cc:44:48:18:
56:c3:25:0d:6c:3a:c5:f5:87:88:03:b1:82:a0:77:d7:39:34:
e0:26:79:08:4b:3c:fb:e1:e7:b1:d1:c2:56:78:b0:d1:66:29:
b4:a4:b7:70:4a:b0:41:1f:8a:9f:c8:c5:50:4a:d8:40:26:f3:
c3:a2:bf:36:b7:1e:8d:06:53:7f:82:7f:e1:36:d8:55:23:02:
82:3b:45:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:37 2024 by rpki-client on console-fra.rpki-client.org