Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/3dC51zb72zmEPf8l3lJCc6olz18.roa
File: 3dC51zb72zmEPf8l3lJCc6olz18.roa (raw, json)
Hash identifier: r5ABxl8kJW3caLVBZL0pzYDkcrq1gwZvoO9HrgIiT0U=
Subject key identifier: DD:D0:B9:D7:36:FB:DB:39:84:3D:FF:25:DE:52:42:73:AA:25:CF:5F
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0183A70DF9CE26882A72EC33636D2299A455
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/3dC51zb72zmEPf8l3lJCc6olz18.roa
Signing time: Wed 05 Oct 2022 07:30:54 +0000
ROA not before: Wed 05 Oct 2022 07:30:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.156.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a7:0d:f9:ce:26:88:2a:72:ec:33:63:6d:22:99:a4:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Oct 5 07:30:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddd0b9d736fbdb39843dff25de524273aa25cf5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:03:fb:d3:f9:7a:17:d7:7b:b7:46:37:9d:e5:
49:bc:c1:8c:b7:ac:ac:a7:e9:c3:55:21:a9:3b:6c:
5e:56:71:3c:ad:3b:2b:ab:94:3a:8e:fb:4d:e2:bf:
f3:a7:bb:e0:20:2d:17:3a:c3:13:49:fa:4c:19:c1:
49:01:79:9a:fd:ea:3e:fb:67:38:a4:c4:34:dd:b1:
85:d0:d4:cf:f6:17:58:60:09:13:6d:3b:90:ca:e9:
54:5a:a4:9f:bd:28:5b:2f:4a:ff:4d:e9:7b:33:44:
5d:a7:05:14:a0:27:93:37:1c:e8:03:4a:bc:6a:f6:
d6:0b:ea:3e:c1:53:41:65:c5:b5:5a:18:d4:25:42:
34:96:3a:41:ba:d3:79:d0:03:c2:f7:9b:d0:b0:8f:
f4:c1:f2:10:e2:d4:ec:67:19:fc:78:7a:6d:e3:18:
6e:ee:e7:33:ee:13:8d:49:db:47:f8:98:37:01:10:
97:ae:b3:54:65:fc:9a:7d:c7:c8:2f:80:4f:b2:95:
51:77:7f:c6:46:6d:87:64:b9:fd:0e:e1:f1:6e:09:
5f:37:a9:6b:1b:9d:a9:23:a8:c2:fa:10:85:20:a0:
e2:2b:dd:89:50:64:1c:4c:5a:cc:c4:41:20:e8:cd:
5f:38:38:74:ce:95:98:91:63:a9:be:ac:e8:15:c9:
40:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:D0:B9:D7:36:FB:DB:39:84:3D:FF:25:DE:52:42:73:AA:25:CF:5F
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/3dC51zb72zmEPf8l3lJCc6olz18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.145.0/24
Signature Algorithm: sha256WithRSAEncryption
14:48:e0:d3:b0:b7:be:af:d2:e4:e9:24:43:a2:9e:4f:75:7e:
88:65:84:a8:31:02:fd:f8:68:3c:8d:0e:83:21:0a:87:03:f0:
46:2f:7f:af:ae:5b:31:95:8f:fa:3a:18:cd:37:db:b7:4b:74:
0b:90:a5:71:7c:d9:78:c8:1b:ba:d0:63:ec:52:cd:82:e8:b1:
64:73:a2:41:6c:ba:d5:ff:ce:d9:13:46:1a:c0:85:fd:4e:43:
9b:f0:84:a9:73:e6:04:9b:34:48:74:ad:13:f5:aa:ca:b9:03:
4a:9c:69:b9:2e:c1:2d:6e:6d:0f:cc:d5:8a:ee:3e:29:c3:eb:
fa:75:f2:15:24:bd:86:60:cd:2d:79:7a:7e:3b:74:b4:11:2a:
e0:2b:31:1d:0b:5f:1c:f2:90:c1:bd:7b:3e:4b:c0:68:e9:74:
ba:65:4b:1f:44:98:e9:04:dc:85:d0:c4:f5:d6:5b:0d:fa:0d:
c5:02:9a:01:06:56:db:bd:7d:a4:16:18:30:f0:ee:4c:b0:17:
fb:a2:de:8e:ab:a1:81:ba:88:59:55:8c:0b:f1:fb:f4:6d:57:
36:7b:b4:4f:6a:6b:69:72:b4:c8:cb:81:7f:74:53:03:eb:35:
b3:7f:7a:59:49:87:db:eb:4d:87:52:48:94:1d:11:d9:f2:34:
a8:01:0b:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org