Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/EpewtuZ7c2SdeHwsR1msNV9u7o0.roa
File: EpewtuZ7c2SdeHwsR1msNV9u7o0.roa (raw, json)
Hash identifier: +aX57UkecFPRp+y2p9mkFhENeG1Onrs4wnAABB3vmlM=
Subject key identifier: 12:97:B0:B6:E6:7B:73:64:9D:78:7C:2C:47:59:AC:35:5F:6E:EE:8D
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 018301C664D6BE469F06F7DFEB3F1A17D359
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/EpewtuZ7c2SdeHwsR1msNV9u7o0.roa
Signing time: Sat 03 Sep 2022 05:15:22 +0000
ROA not before: Sat 03 Sep 2022 05:15:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133861
IP address blocks: 45.152.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:01:c6:64:d6:be:46:9f:06:f7:df:eb:3f:1a:17:d3:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Sep 3 05:15:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1297b0b6e67b73649d787c2c4759ac355f6eee8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:82:1c:59:95:07:72:13:fa:71:a9:51:eb:c5:
fe:09:7d:11:a3:da:28:83:d4:2e:69:f9:60:72:f5:
0a:3b:af:a3:10:50:1d:b4:19:e4:ed:36:3c:52:11:
2b:27:24:ff:6e:ab:ff:30:96:64:11:bc:4f:ec:44:
c8:05:5d:b0:42:7c:a8:47:18:4f:d5:9a:34:b7:20:
ca:a9:46:fc:05:55:3a:e8:2f:dd:ba:fe:7b:77:62:
b1:20:e4:a3:48:e7:8b:6c:09:35:eb:05:05:26:05:
af:1d:46:83:4a:76:4e:30:ee:9a:2b:5f:e8:e3:ad:
b9:8b:27:eb:60:a8:24:dd:03:11:b2:18:79:78:ec:
b4:d2:6a:9e:dc:5b:50:fd:ed:ae:a7:e5:ab:e3:26:
8b:ae:9f:55:ca:d1:a0:19:d0:2d:cb:bd:b4:a3:b9:
e1:9d:b7:52:37:bf:ed:7f:2e:e5:a2:56:a5:be:63:
d4:b5:d7:6f:67:27:8a:ce:8b:13:e0:c1:55:06:b3:
97:80:25:61:86:21:e8:88:3c:b5:81:f3:ba:5d:ee:
f9:09:9b:cd:c4:dc:c7:3d:6e:d8:a8:3c:ad:44:f5:
d9:13:32:99:dc:84:1d:b6:b9:35:ad:93:f1:ae:f7:
68:90:fa:59:1f:16:81:90:9b:b2:ce:2a:17:d2:27:
41:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:97:B0:B6:E6:7B:73:64:9D:78:7C:2C:47:59:AC:35:5F:6E:EE:8D
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/EpewtuZ7c2SdeHwsR1msNV9u7o0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.64.0/22
Signature Algorithm: sha256WithRSAEncryption
40:1d:eb:91:48:46:99:f8:a3:d7:2b:fb:76:71:06:0d:08:5c:
3c:d4:42:4d:ac:1e:54:86:da:74:fa:5b:84:f9:05:47:37:4c:
f3:71:26:96:fd:67:8a:9d:7f:0c:40:6e:66:61:df:90:2c:17:
b8:fd:4d:4d:5d:03:50:9a:c3:0c:1d:d8:86:97:76:4d:59:77:
d0:77:39:fe:5b:ee:bb:83:f2:1b:ce:04:86:2a:57:3b:f7:25:
62:5c:66:c9:26:77:69:50:d3:b2:20:2f:95:8f:50:bb:04:c2:
3f:04:83:80:0d:e4:8f:8e:b5:00:72:03:20:cd:b9:c9:12:82:
20:53:43:f6:08:12:55:d2:15:eb:a3:ac:05:a8:63:91:9f:9d:
43:88:f7:9f:1a:f5:43:b2:c0:f4:9e:17:03:fe:e4:85:c9:18:
a3:fc:9f:22:85:a2:ca:52:b5:77:81:54:b9:2b:62:bf:16:8a:
07:55:73:9e:64:d0:3f:c8:75:24:85:8b:d3:a2:ad:54:cc:ae:
2a:a1:88:d4:b6:84:e8:bc:56:be:90:c4:d0:3f:b2:7e:8d:0c:
9d:5d:2d:a5:08:73:d4:9e:1e:70:39:57:95:83:da:84:02:50:
00:53:cf:79:95:0f:5e:08:1f:d4:a5:e9:ab:f2:83:fa:b1:7c:
89:fd:a7:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:56 2024 by rpki-client on console-fra.rpki-client.org