Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/I7oZCy4umOsS5gLMpRH05ABdFhI.roa
File: I7oZCy4umOsS5gLMpRH05ABdFhI.roa (raw, json)
Hash identifier: 05lFkkiYvZxeSfmQOXs2KVr1LaXpru1L2J2Q4eHX8e0=
Subject key identifier: 23:BA:19:0B:2E:2E:98:EB:12:E6:02:CC:A5:11:F4:E4:00:5D:16:12
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17A0F7CE
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/I7oZCy4umOsS5gLMpRH05ABdFhI.roa
Signing time: Sat 01 Jan 2022 04:54:02 +0000
ROA not before: Sat 01 Jan 2022 04:54:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35387
IP address blocks: 45.136.1.0/24 maxlen: 32
45.136.2.0/24 maxlen: 32
45.136.3.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396425166 (0x17a0f7ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23ba190b2e2e98eb12e602cca511f4e4005d1612
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5d:d4:cb:46:e8:c7:fd:a6:69:31:cd:88:b1:
65:3c:78:3a:7f:24:ee:0d:60:c4:f3:6b:e3:0d:b0:
5c:f0:44:5d:3e:0b:14:89:18:74:4e:8f:48:69:c7:
69:ec:64:4b:b9:61:79:3d:82:1b:23:d3:d6:80:6e:
dc:1d:e2:a8:45:e4:2d:31:98:fb:6f:02:f8:c1:4c:
45:82:f1:02:7f:06:86:70:a2:a1:76:2a:ee:3f:35:
d6:69:2a:67:ae:4e:16:3f:c4:42:0e:de:61:3f:50:
6f:51:0e:7e:e9:58:44:1d:36:86:5a:24:bf:7c:49:
cc:1b:37:3e:7e:30:47:17:f0:41:1e:8f:ed:57:db:
30:71:f8:93:a7:2d:79:c8:e3:3b:dd:7f:e7:af:f9:
c8:c6:8a:d7:d7:fc:7d:d1:99:74:37:13:f3:64:3e:
8e:52:29:81:a1:e3:e0:58:3a:59:a6:f3:54:5d:d7:
a6:e9:90:62:18:1d:0b:bc:43:33:5c:a3:31:37:ef:
d2:e0:43:e3:77:ed:5a:89:b4:74:ed:7a:9b:cc:2c:
e4:fb:d2:e9:b1:23:4b:04:ee:37:22:0a:fd:8a:2e:
03:ca:e0:79:7b:fe:63:43:3d:18:48:44:fc:eb:ea:
d1:a1:1f:79:74:d5:bb:e9:df:b0:cb:f4:41:38:dd:
40:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:BA:19:0B:2E:2E:98:EB:12:E6:02:CC:A5:11:F4:E4:00:5D:16:12
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/I7oZCy4umOsS5gLMpRH05ABdFhI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.1.0-45.136.3.255
Signature Algorithm: sha256WithRSAEncryption
80:1a:be:93:9f:6f:47:53:6f:27:9a:e4:3f:76:ea:72:83:e1:
b9:33:71:50:46:b5:c4:75:43:26:cc:78:eb:9c:06:e6:40:c0:
1d:59:ac:7d:9b:a5:b0:0e:79:be:52:8b:5e:91:7e:3b:86:60:
c5:b4:0d:48:d0:23:cb:77:75:2d:82:82:72:ea:c8:66:19:ce:
6e:78:d1:20:80:b3:77:93:6e:dd:8a:56:c1:c0:e1:ad:93:30:
e6:8c:08:0b:92:f0:e8:c1:25:3f:26:0c:e3:73:e0:25:bd:85:
21:43:70:6c:f0:13:4b:68:ac:b0:61:7e:4b:f2:0c:17:5e:0f:
93:71:06:e4:56:dc:06:64:78:fe:c1:63:a9:12:50:78:ba:cc:
c0:7e:4e:b8:70:dd:68:5c:d8:5d:cc:d2:08:e6:58:51:6c:de:
c6:ca:c8:b6:6b:27:3f:0f:b3:4d:04:ae:63:8c:2b:04:40:e3:
9d:d4:a5:3e:1f:79:f5:47:73:06:63:de:cb:94:8b:7c:6e:8f:
e6:63:5a:31:78:44:71:2b:e4:da:51:c3:d2:94:c0:4c:21:3b:
c5:4c:fc:9e:96:66:d9:6d:c5:db:2f:09:b5:b7:a0:85:97:86:
90:84:73:ae:af:66:95:14:cd:21:b8:a0:5f:3c:de:d6:e3:7e:
f1:0a:eb:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org