Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Pb6sXWEx5EVD68c-MLKnQP0NBz0.roa
File: Pb6sXWEx5EVD68c-MLKnQP0NBz0.roa (raw, json)
Hash identifier: st+SLZo2SiToP8C0pm8zQQov3P1Bf5VvJyCQ7u8fV2Q=
Subject key identifier: 3D:BE:AC:5D:61:31:E4:45:43:EB:C7:3E:30:B2:A7:40:FD:0D:07:3D
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 0383180D
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Pb6sXWEx5EVD68c-MLKnQP0NBz0.roa
Signing time: Sat 01 Jan 2022 15:58:04 +0000
ROA not before: Sat 01 Jan 2022 15:58:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139659
IP address blocks: 45.152.64.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58923021 (0x383180d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Jan 1 15:58:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3dbeac5d6131e44543ebc73e30b2a740fd0d073d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ab:17:18:d0:22:b8:27:bd:6d:9a:83:f9:66:
df:a2:a0:95:f4:5d:86:24:03:0b:db:f5:c9:e7:1d:
19:bc:69:96:08:90:18:5b:0e:41:ee:39:f6:3f:a5:
14:84:81:4e:cf:c4:21:dd:e3:c7:f4:3a:fa:07:05:
e3:43:b0:95:00:a9:e7:8c:5d:db:9a:8b:49:67:25:
c5:74:5b:69:88:29:0d:28:e3:39:33:97:e9:6e:35:
a8:03:a2:78:e8:4a:04:77:85:2d:e9:db:08:50:dd:
73:9a:16:8f:b3:e0:2c:db:4f:29:9d:a2:b6:5b:f4:
bc:86:05:d8:e3:2c:3b:d4:79:95:e8:42:85:77:a6:
55:ae:cc:de:48:fc:62:e4:c1:74:86:88:0f:11:e5:
27:fd:44:78:4c:1d:80:4d:70:4c:05:ec:95:0d:2f:
45:21:ea:aa:fe:45:97:e9:d6:4e:07:07:6a:12:df:
b9:4d:8b:45:6a:b7:c6:2a:6e:d8:f4:2b:59:c4:59:
7d:5e:c4:21:64:ec:ec:3d:57:81:33:66:ce:53:b1:
a5:ca:fe:f4:33:ff:84:9b:c1:4e:c8:ea:a7:4f:4e:
e3:f8:d0:f8:83:7c:5a:58:f7:7e:e5:c3:93:63:e1:
42:26:8e:cd:e2:5a:9d:9e:8c:1e:55:eb:97:9a:ee:
b1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BE:AC:5D:61:31:E4:45:43:EB:C7:3E:30:B2:A7:40:FD:0D:07:3D
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Pb6sXWEx5EVD68c-MLKnQP0NBz0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.64.0/22
Signature Algorithm: sha256WithRSAEncryption
22:3e:90:f1:b2:cb:ef:3c:b8:7e:66:f5:8d:9c:bd:03:0c:47:
e8:d6:f8:90:13:d7:e7:00:d9:0d:ad:3c:79:d1:b2:0b:1d:09:
8b:0f:3c:2c:d6:3a:3b:3f:79:a8:37:37:71:86:10:a6:e9:2a:
06:00:2d:15:31:bb:83:ac:66:19:b9:9e:41:b3:8d:3d:05:04:
12:31:3a:79:92:c1:98:53:21:56:39:cd:a5:6a:25:34:42:ee:
c0:a6:92:9e:80:7d:f1:0b:fd:97:d0:93:79:f4:18:29:11:2c:
46:c8:e5:9d:88:ed:ab:d1:df:7b:56:f4:2b:ad:62:04:5c:bd:
b3:6c:74:56:5d:dd:2e:25:9d:14:2d:3d:46:9b:0e:b3:f0:be:
59:5f:53:85:05:19:1c:2c:85:45:e6:ea:c9:a3:88:fc:de:b2:
fd:5b:7e:52:d2:9c:2c:d5:f3:19:0f:60:22:22:7d:85:fb:78:
97:3e:e1:35:54:6a:4e:7a:f6:53:8e:01:6d:c3:e7:3b:04:7a:
f2:f6:c4:db:6b:18:02:78:7a:c2:ad:19:a2:65:54:3e:77:6d:
a9:75:65:4a:7c:e7:d3:ec:42:a6:d2:d8:e9:92:5d:0e:d5:88:
01:c5:a5:d1:87:69:a1:3d:1c:9a:e5:f4:77:b2:98:9e:0b:f7:
76:59:b0:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:56 2024 by rpki-client on console-fra.rpki-client.org