Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/orHF7JKHgIkgCpbkx2TUH-uSeyU.roa
File: orHF7JKHgIkgCpbkx2TUH-uSeyU.roa (raw, json)
Hash identifier: GPENy3hqu65H4FV8VCs8vL+TmuRiwe/zmgDK9lOgsVs=
Subject key identifier: A2:B1:C5:EC:92:87:80:89:20:0A:96:E4:C7:64:D4:1F:EB:92:7B:25
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 07CE0F05
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/orHF7JKHgIkgCpbkx2TUH-uSeyU.roa
Signing time: Sat 01 Jan 2022 09:58:21 +0000
ROA not before: Sat 01 Jan 2022 09:58:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39679
IP address blocks: 45.67.156.0/24 maxlen: 24
45.67.159.0/24 maxlen: 24
45.67.158.0/24 maxlen: 24
2a09:7ac0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130944773 (0x7ce0f05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Jan 1 09:58:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a2b1c5ec92878089200a96e4c764d41feb927b25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:16:38:9f:f6:f4:2d:4c:69:54:fa:10:09:d6:
fe:28:3e:79:0f:19:f1:4d:09:b2:27:67:94:a0:7e:
3f:b1:25:4f:6f:26:61:f5:86:ff:1a:c1:3a:b9:79:
3b:bd:80:5e:6d:94:31:56:08:91:da:9f:db:04:f4:
34:41:d3:f3:51:a7:8a:8c:9b:bd:83:c1:0f:a9:0d:
48:c0:1d:1b:d4:73:93:2a:98:eb:d0:06:91:31:70:
ef:9d:8d:2c:82:6f:9d:91:da:0d:36:70:93:b1:57:
6a:b7:b9:d1:9c:96:b8:1c:5f:ff:95:17:08:e6:0a:
1b:62:1f:5e:4b:a4:60:56:56:d1:53:cb:7a:83:c1:
ed:1d:35:1b:7f:22:ba:24:2b:49:56:d5:fe:33:0f:
96:b2:ef:05:41:5b:ef:f3:66:a0:5f:e5:36:02:90:
28:39:94:ca:ff:ee:c1:db:a8:12:1e:d9:ca:9a:19:
5d:47:6a:18:b8:7e:13:e6:d1:7b:64:bc:df:82:14:
94:36:1b:a1:02:d8:7a:7f:6e:cd:75:6a:df:cd:44:
1f:58:45:74:14:71:30:12:0e:ff:99:fb:2c:69:04:
5c:0b:d3:c8:a6:54:de:30:4b:14:6a:31:8a:56:88:
8f:9d:0c:95:fd:a9:e5:36:6b:8f:0c:d1:46:4d:6c:
47:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:B1:C5:EC:92:87:80:89:20:0A:96:E4:C7:64:D4:1F:EB:92:7B:25
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/orHF7JKHgIkgCpbkx2TUH-uSeyU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.156.0/24
45.67.158.0/23
IPv6:
2a09:7ac0::/32
Signature Algorithm: sha256WithRSAEncryption
08:57:e0:4e:21:4a:9b:9c:7f:47:d5:6d:88:69:96:85:79:50:
8c:f5:d1:fe:c8:23:3b:17:2a:55:43:b2:ec:e7:12:d7:89:b5:
41:fa:d6:72:cb:f2:81:dd:ec:3b:1b:6b:75:fc:02:8e:2b:1a:
d5:94:31:ed:c8:7a:cc:6b:85:94:2f:de:94:4d:27:1f:7f:b4:
ea:95:ef:c1:a8:e3:f2:f8:55:6b:82:d3:a7:3d:d7:9d:6a:1b:
87:a2:9b:36:58:27:9c:aa:ba:94:e0:b5:b7:f2:31:96:26:d1:
1e:f1:61:3d:99:d2:bd:fd:e6:d0:e0:66:e9:c2:1e:98:47:f2:
76:74:82:5a:fe:cd:0a:ba:e8:53:8c:1a:65:05:da:2d:f4:b5:
77:af:7c:e6:ea:5a:17:06:6e:6a:bd:b4:44:ec:43:03:db:85:
37:15:a5:9f:8e:c2:03:2a:09:33:fd:60:7a:71:6e:77:0a:8e:
59:2f:23:66:c3:ea:21:42:8e:53:90:2d:09:a8:bc:f4:db:2c:
19:ca:ab:4f:88:dd:75:3f:20:e9:56:a2:3f:ab:72:ce:14:d7:
a4:68:64:7c:09:76:71:73:ee:30:ca:0f:e2:ce:7b:80:35:9e:
ad:fb:81:46:72:87:55:6b:ff:cf:a4:43:4a:1d:cd:c8:eb:c9:
c3:08:b9:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:02 2024 by rpki-client on console-ams.rpki-client.org