Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/42clzC--_z2yCr4HWqPegTLPAuE.roa
File: 42clzC--_z2yCr4HWqPegTLPAuE.roa (raw, json)
Hash identifier: 2R7kzRsmHb+N0141L40dfRZHopS9F9uw6bCfVcZelng=
Subject key identifier: E3:67:25:CC:2F:BE:FF:3D:B2:0A:BE:07:5A:A3:DE:81:32:CF:02:E1
Certificate issuer: /CN=b39c70f7ce3831b8f2cce89db14a27ddaa0e99c2
Certificate serial: 07DDEE26
Authority key identifier: B3:9C:70:F7:CE:38:31:B8:F2:CC:E8:9D:B1:4A:27:DD:AA:0E:99:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s5xw9844MbjyzOidsUon3aoOmcI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/42clzC--_z2yCr4HWqPegTLPAuE.roa
Signing time: Sat 01 Jan 2022 05:06:19 +0000
ROA not before: Sat 01 Jan 2022 05:06:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47952
IP address blocks: 45.130.14.0/24 maxlen: 24
45.130.13.0/24 maxlen: 24
45.130.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131984934 (0x7ddee26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b39c70f7ce3831b8f2cce89db14a27ddaa0e99c2
Validity
Not Before: Jan 1 05:06:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e36725cc2fbeff3db20abe075aa3de8132cf02e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:39:4d:b5:53:6a:2c:98:85:42:61:dc:0c:28:
a8:9e:a8:c5:04:e3:47:01:bb:95:b2:d5:d0:d6:73:
fa:3f:3d:50:e9:cf:ab:b7:87:d7:e9:43:b3:79:df:
e4:ee:3e:1f:06:e6:99:38:05:4e:62:a3:dd:24:0f:
55:27:d1:e5:79:50:61:3e:c1:e6:1e:9c:d5:65:92:
bb:f9:b8:80:4b:10:48:15:f0:9a:4d:96:cb:fa:a0:
84:a5:27:a8:c7:2a:5b:94:4e:67:eb:6d:ba:91:a4:
41:58:55:fc:66:a1:6e:0c:75:b8:9a:2b:d6:f2:c0:
a0:e9:15:44:0f:95:74:b7:20:38:1c:3d:10:87:b2:
7f:48:7f:d2:11:c6:46:c3:f9:65:bd:56:3f:73:c0:
2f:09:17:82:8a:2d:ed:ad:3b:51:b2:49:54:a8:37:
60:00:39:b7:03:6e:ba:f3:2d:91:31:e7:5a:a1:eb:
29:2c:9d:b3:bf:9f:e4:54:13:15:eb:d9:da:bc:d2:
f3:c3:71:6d:bf:13:b9:98:fc:bf:74:00:6e:e7:b9:
6c:c9:e4:09:ce:57:47:85:54:22:f0:71:dc:2f:a3:
58:3f:26:db:92:29:5d:e1:29:d8:a4:50:b2:fb:5e:
46:75:8f:09:f9:aa:a8:3f:43:d8:57:e7:74:74:58:
96:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:67:25:CC:2F:BE:FF:3D:B2:0A:BE:07:5A:A3:DE:81:32:CF:02:E1
X509v3 Authority Key Identifier:
keyid:B3:9C:70:F7:CE:38:31:B8:F2:CC:E8:9D:B1:4A:27:DD:AA:0E:99:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s5xw9844MbjyzOidsUon3aoOmcI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/42clzC--_z2yCr4HWqPegTLPAuE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/e91813-927e-47a5-b702-de5378461fee/1/s5xw9844MbjyzOidsUon3aoOmcI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.13.0-45.130.15.255
Signature Algorithm: sha256WithRSAEncryption
65:a7:7e:b5:ed:c3:9b:6d:81:71:a7:9c:36:33:b6:19:e7:e2:
be:b2:07:a5:37:8f:f6:43:42:3d:42:85:54:e2:ac:77:de:00:
17:e1:5f:9e:1a:a8:c9:6b:09:84:42:c0:4a:10:48:43:fc:31:
1d:fc:d6:97:38:04:48:05:5a:03:db:a4:87:24:d8:b5:85:57:
9f:b6:f7:85:f8:a2:21:87:20:82:b3:46:e9:82:e4:a3:ff:3b:
69:e5:54:69:70:77:77:87:dc:dc:cc:f5:3a:a5:d4:a6:e3:9c:
a7:67:b9:d3:9a:64:9d:f1:5e:7f:aa:33:4d:fd:0f:a5:eb:a6:
d5:7e:05:c8:89:77:78:b0:49:ff:b1:59:1f:5f:e8:61:44:ba:
f5:44:66:e2:2b:31:6c:2d:12:d7:23:95:bf:19:f9:72:bb:4c:
16:46:e7:c9:4e:df:fc:e3:ef:e2:26:3e:3d:c4:b8:d5:71:aa:
50:e3:80:7e:6d:8f:4f:83:d4:76:bf:1c:fc:07:50:3b:6b:fc:
32:33:f3:44:cf:19:1c:f3:fe:57:6c:30:5e:37:fc:76:e3:25:
e6:10:60:46:c5:76:ac:58:bf:c7:6f:de:79:64:05:69:41:fa:
bf:5d:d0:07:d9:f8:ac:7e:dc:32:3e:4e:8d:92:ed:a4:ff:35:
61:0c:a1:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:54 2024 by rpki-client on console-ams.rpki-client.org