Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/MFcIFCT5PrxvOk3KGdJau_lxzIs.roa
File: MFcIFCT5PrxvOk3KGdJau_lxzIs.roa (raw, json)
Hash identifier: vi3J3D0II4id1lUGXoNosZTJ1eyI3Rql8IMczh+Puz8=
Subject key identifier: 30:57:08:14:24:F9:3E:BC:6F:3A:4D:CA:19:D2:5A:BB:F9:71:CC:8B
Certificate issuer: /CN=53b1a8ebc3ecf7f5db7f6cacd00e920af85ae8b4
Certificate serial: 07694E24
Authority key identifier: 53:B1:A8:EB:C3:EC:F7:F5:DB:7F:6C:AC:D0:0E:92:0A:F8:5A:E8:B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/MFcIFCT5PrxvOk3KGdJau_lxzIs.roa
Signing time: Sat 01 Jan 2022 09:03:12 +0000
ROA not before: Sat 01 Jan 2022 09:03:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50575
IP address blocks: 45.147.220.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124341796 (0x7694e24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53b1a8ebc3ecf7f5db7f6cacd00e920af85ae8b4
Validity
Not Before: Jan 1 09:03:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3057081424f93ebc6f3a4dca19d25abbf971cc8b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:73:25:32:1a:8f:35:c6:64:4a:a2:23:68:42:
57:e2:e3:04:b6:bb:4a:d6:b9:f9:5b:09:2e:90:53:
fb:71:56:84:f3:4a:40:b6:ae:75:7c:22:63:81:f3:
0e:3c:d5:e3:87:16:a5:99:27:bb:f5:b4:08:ca:e2:
4e:cd:2b:ae:7f:c7:0f:9c:06:eb:90:a9:51:d1:90:
e4:17:30:82:7b:5c:61:df:85:cc:11:3c:2a:cf:e5:
65:f3:fb:b6:d5:e2:42:35:0d:3b:88:5c:34:69:6f:
bd:95:4f:24:36:14:22:e2:dc:0f:40:c4:b8:cc:89:
8f:e3:54:24:10:45:f1:26:42:f0:73:1c:d8:b9:4b:
bc:61:66:78:04:7f:f2:f3:56:18:28:8c:16:9b:53:
7e:07:13:e6:e3:d5:b8:bb:b4:d9:6e:2d:17:95:64:
d0:0f:42:3d:07:79:15:b4:bb:1e:bf:0d:08:ea:28:
28:97:2f:b0:06:e8:54:e2:4e:57:4e:71:e8:3c:31:
7d:1e:cb:4d:b5:d4:7f:72:1b:08:64:85:4b:6d:6a:
b7:e1:cd:23:1e:6d:a5:ed:f8:6f:36:8a:a4:77:79:
d2:76:47:7e:8c:01:ad:52:55:ba:82:b9:a6:ba:d1:
00:dc:80:b2:a6:e1:12:fd:99:49:7a:ac:ca:cf:05:
6b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:57:08:14:24:F9:3E:BC:6F:3A:4D:CA:19:D2:5A:BB:F9:71:CC:8B
X509v3 Authority Key Identifier:
keyid:53:B1:A8:EB:C3:EC:F7:F5:DB:7F:6C:AC:D0:0E:92:0A:F8:5A:E8:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/MFcIFCT5PrxvOk3KGdJau_lxzIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/070630-5234-49c4-84fe-15bda6b867cb/1/U7Go68Ps9_Xbf2ys0A6SCvha6LQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.220.0/22
Signature Algorithm: sha256WithRSAEncryption
70:92:c4:b3:a5:0b:84:f4:19:9e:bd:53:68:f8:9f:e8:bf:a4:
a0:bf:08:76:43:ea:a7:61:49:4d:f6:c5:fe:bd:07:d8:b2:f1:
6f:ef:17:f8:84:59:c3:6a:dc:4f:a2:b1:aa:81:d4:2a:9e:8b:
55:46:75:cd:99:61:c6:17:7a:63:a4:49:aa:32:17:c3:6c:bb:
6f:f4:6c:c8:ac:b4:b1:ee:ec:f0:70:ed:63:81:5c:90:71:1f:
15:d5:ef:7e:e2:48:70:6e:1d:44:9f:38:18:d7:21:00:c1:af:
67:95:03:15:0d:3d:e6:1a:8d:6c:5c:9c:11:f2:0a:f6:64:41:
a8:fc:e9:01:24:c4:a7:e6:bf:f3:a2:1d:14:0a:fd:7f:da:a3:
aa:54:7d:86:6a:4b:20:73:69:ca:95:ac:0c:cf:8b:ac:64:bc:
58:4f:91:81:27:4c:3f:f6:51:48:95:35:7c:58:7c:15:52:1a:
5b:df:bc:bb:af:09:f5:37:91:82:4c:55:8d:79:47:51:8f:13:
67:6b:92:14:90:b4:69:33:ef:1d:12:91:79:63:ab:4b:94:1e:
f8:04:ea:56:b6:07:95:e5:28:cf:8f:a8:31:15:49:ea:9d:67:
1c:d3:0f:79:cf:50:07:d0:76:4a:63:fb:88:db:6f:35:5d:c7:
15:28:71:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:42:28 2024 by rpki-client on console-ams.rpki-client.org