Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/UHLXNvUqHm3rOTWYxlnlLYXVAG8.roa
File: UHLXNvUqHm3rOTWYxlnlLYXVAG8.roa (raw, json)
Hash identifier: tZbrzb0qDFAAPL33JJmOBTutWyyv1k9TxXDlHy2jxUU=
Subject key identifier: 50:72:D7:36:F5:2A:1E:6D:EB:39:35:98:C6:59:E5:2D:85:D5:00:6F
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 011A786C
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/UHLXNvUqHm3rOTWYxlnlLYXVAG8.roa
Signing time: Thu 12 May 2022 16:48:10 +0000
ROA not before: Thu 12 May 2022 16:48:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48024
IP address blocks: 45.156.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18511980 (0x11a786c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 12 16:48:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5072d736f52a1e6deb393598c659e52d85d5006f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:05:56:b7:91:75:7d:90:6e:ab:0b:47:d3:5d:
00:40:e9:c0:45:00:47:81:31:3e:02:a9:19:bf:1b:
00:d3:53:5d:2d:aa:39:da:47:1e:69:2c:12:a9:5d:
34:66:40:6a:58:f2:05:7c:16:04:91:22:43:d2:9c:
a5:27:ff:bb:52:12:9e:bf:f3:04:b7:c8:78:5a:bb:
d4:67:a0:03:34:ce:6f:24:d1:e1:4f:1d:02:f3:07:
c3:08:ea:c6:1a:a6:7f:c0:51:15:42:c4:54:b9:d9:
20:2b:9c:a3:45:ea:5d:f7:fc:14:9a:63:8e:a1:33:
22:6b:41:bb:62:02:1f:f0:2c:8c:d8:e3:66:d2:2b:
7b:75:88:3d:76:68:65:87:b4:c7:86:67:70:5f:6d:
e4:2d:c5:2c:10:00:3a:56:07:c2:fc:5f:3b:e4:f0:
30:ed:79:81:92:7a:4d:f1:a2:e4:85:16:b0:99:7f:
32:57:a4:6c:49:ce:be:ac:75:10:d7:f1:3b:0e:35:
0f:dc:e3:fd:f4:af:c2:eb:56:c4:c6:7f:cf:98:13:
13:74:7e:f1:38:46:e3:11:c9:00:46:4a:56:c1:4c:
8c:fc:5b:86:76:9d:7c:02:72:87:80:7d:83:05:13:
47:f0:ac:69:c9:41:be:a7:78:e4:16:31:09:86:3e:
3f:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:72:D7:36:F5:2A:1E:6D:EB:39:35:98:C6:59:E5:2D:85:D5:00:6F
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/UHLXNvUqHm3rOTWYxlnlLYXVAG8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.145.0/24
Signature Algorithm: sha256WithRSAEncryption
68:eb:c0:45:37:6e:f4:65:71:92:43:ff:25:a4:95:21:89:6e:
83:11:73:69:9a:4d:41:45:9d:03:fe:43:68:a6:c3:88:c3:9b:
27:fa:22:02:02:9f:dd:aa:f5:c3:ab:7d:bb:4d:5e:54:80:d3:
37:79:8f:10:92:90:0f:d8:59:c9:70:49:20:cf:a5:d4:79:4c:
37:5e:6d:d0:8c:12:a7:25:06:b0:93:cb:e2:b0:d3:43:ba:7d:
3f:32:cd:ee:06:87:ba:d9:7c:ba:83:15:ee:e6:ea:47:0b:bf:
c6:29:ed:d9:cf:18:d6:b5:31:b3:c9:3d:a9:a7:3e:e0:24:cb:
89:0f:9a:19:ef:78:d9:fc:dd:bd:46:dc:a2:95:1d:1a:0e:09:
4a:d4:07:89:07:fb:4d:84:83:9e:dc:94:68:c6:f4:bd:ef:26:
76:c9:2e:c8:cb:e5:31:44:6b:b1:0a:e4:f4:ad:db:01:c9:28:
d6:f8:6b:d9:1b:06:ba:7b:88:87:81:60:12:07:e0:43:48:b0:
c0:de:87:4c:a9:cc:7f:49:8d:93:6f:09:ec:e9:80:e0:3e:f6:
42:9e:78:c3:9c:b3:02:b6:67:a5:f5:7c:2d:02:7b:d7:dc:31:
4b:36:cf:20:19:24:a1:ab:b9:f9:24:93:18:20:57:2f:9f:73:
fb:2a:73:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org