Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3p-4VwFxJdooTu2ljILM9sArZHs.roa
File: 3p-4VwFxJdooTu2ljILM9sArZHs.roa (raw, json)
Hash identifier: 53CbX5+CcKpwlMe29vpQ65vgXE54hr0u1l+RuXFLNXI=
Subject key identifier: DE:9F:B8:57:01:71:25:DA:28:4E:ED:A5:8C:82:CC:F6:C0:2B:64:7B
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 18E7F527
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3p-4VwFxJdooTu2ljILM9sArZHs.roa
Signing time: Sun 27 Feb 2022 15:56:02 +0000
ROA not before: Sun 27 Feb 2022 15:56:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 53850
IP address blocks: 45.13.244.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 417854759 (0x18e7f527)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Feb 27 15:56:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de9fb857017125da284eeda58c82ccf6c02b647b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:0e:3c:49:68:f8:ac:fe:34:22:70:d3:6c:d9:
02:d5:93:4b:ab:ab:41:a8:27:2c:b7:29:62:cc:e7:
39:72:39:58:4f:dd:b0:96:ec:3e:16:f5:1c:65:be:
61:92:24:82:0a:6a:ba:75:0b:65:05:2c:1f:f7:ad:
4f:10:cb:2e:91:1f:40:1e:c1:b6:c2:e2:69:74:58:
cf:a0:76:ed:a2:54:69:58:22:74:4b:b3:51:45:98:
ca:d8:e8:a4:90:98:db:23:f5:a5:a7:75:cb:d4:e0:
9c:8d:1c:1d:f5:cb:5a:f8:f2:04:cb:1c:fd:02:98:
16:c1:07:c0:af:db:10:8c:d9:61:b0:4c:5e:6b:64:
96:31:61:28:03:3c:e7:c8:60:7f:96:f1:9c:fa:4e:
28:d7:55:16:77:05:83:0d:01:c1:c0:cc:b0:0a:a3:
7f:fb:1d:a7:47:3b:63:73:5d:59:7b:65:5c:23:9e:
ff:c2:c1:2c:2b:a4:6f:97:54:55:1b:b9:d9:37:bb:
9c:60:a4:76:96:51:a9:d2:6a:6d:07:31:ee:6c:44:
6d:ac:5e:6a:a6:e6:45:31:04:c2:76:a0:1e:c0:77:
84:38:4a:8f:1b:4a:59:3d:11:4f:db:17:1a:6a:9b:
e0:d1:87:5b:3c:69:d4:25:27:7f:65:bb:ca:36:82:
1d:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:9F:B8:57:01:71:25:DA:28:4E:ED:A5:8C:82:CC:F6:C0:2B:64:7B
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/3p-4VwFxJdooTu2ljILM9sArZHs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.244.0/23
Signature Algorithm: sha256WithRSAEncryption
07:e8:22:69:52:40:2e:4e:b5:61:5c:de:f4:c8:7b:1f:9a:9b:
49:3b:84:fe:84:65:52:cb:42:fb:d9:ad:56:9d:27:8b:86:65:
dd:19:82:75:94:e3:e2:c1:36:dd:15:fc:ab:1a:84:b7:50:52:
e1:34:7c:37:dc:8c:15:b7:6b:dd:d4:30:1e:c3:e9:1c:82:0a:
32:5b:37:51:91:b3:38:19:7d:7e:ba:a5:aa:90:19:d2:62:5c:
e7:c4:bd:c6:e6:99:d9:31:27:a4:f0:d7:a2:07:21:fe:33:8f:
7f:8c:d3:a2:23:30:92:db:29:0b:77:d8:3e:80:0f:5e:2f:cc:
b0:e0:90:08:26:53:d1:d1:23:5b:c9:26:dd:34:83:11:3a:63:
e7:17:d6:05:4f:73:25:02:2c:34:8e:d0:f8:63:32:e4:a8:e0:
02:70:42:bf:41:1b:59:02:b6:d2:dc:5b:c7:fb:ea:f5:bc:ec:
e5:61:e2:96:d8:cf:b1:5f:93:ea:e0:b5:bb:49:ab:67:10:fe:
c7:8a:2e:89:dc:55:b4:57:b4:4d:ea:69:ad:97:58:2c:74:bb:
bf:68:89:cc:5b:4a:8e:3e:a5:ec:49:ab:39:64:09:a5:80:11:
29:fe:e1:f5:d1:48:90:38:ab:5e:5b:d1:f7:78:19:be:82:15:
81:8e:87:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:32 2024 by rpki-client on console-ams.rpki-client.org