Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/xrtIcgsClHdErgRaNwWDQqlXzDs.roa
File: xrtIcgsClHdErgRaNwWDQqlXzDs.roa (raw, json)
Hash identifier: 1wN57wKRGYJ53bbAT3gwXjfXvEPb9IEcufLJegyZe1s=
Subject key identifier: C6:BB:48:72:0B:02:94:77:44:AE:04:5A:37:05:83:42:A9:57:CC:3B
Certificate issuer: /CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Certificate serial: 0846562C
Authority key identifier: 82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/xrtIcgsClHdErgRaNwWDQqlXzDs.roa
Signing time: Sat 01 Jan 2022 01:57:45 +0000
ROA not before: Sat 01 Jan 2022 01:57:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 45.13.152.0/24 maxlen: 24
45.13.155.0/24 maxlen: 24
45.13.154.0/24 maxlen: 24
45.13.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138827308 (0x846562c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8251e7fb6b960d406b2236d25e4e20e245359db2
Validity
Not Before: Jan 1 01:57:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6bb48720b02947744ae045a37058342a957cc3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:dd:32:b1:f2:9f:3b:bc:5f:9f:6b:04:f2:f7:
35:19:a3:8d:f0:e8:ce:d6:01:64:34:37:fc:17:f9:
f0:8b:ce:3c:43:44:58:a5:2c:c1:d8:63:01:1f:bd:
c6:b0:51:a1:a3:81:f2:85:52:62:b7:4d:f6:48:db:
90:48:40:a8:f8:17:db:68:1c:37:c3:8a:d0:79:dc:
56:ff:2b:15:60:23:e4:a5:65:f8:81:ff:e5:2e:c8:
2a:52:b6:20:3b:d7:2c:e7:e0:45:1d:6a:11:6e:bb:
d1:8b:ad:0a:c6:13:8f:10:1c:fd:85:d1:0d:63:f1:
92:ed:8c:36:5c:59:e6:1f:8a:eb:58:e2:8c:7d:ea:
e9:ad:39:c9:d7:db:06:fe:db:7c:06:8c:9a:f5:9a:
42:2b:52:fa:e4:0b:06:df:5d:9e:fe:b7:86:a4:89:
0b:2b:94:66:2d:f9:15:44:2e:5d:54:99:71:1b:52:
8b:d9:5f:34:4b:68:06:fd:30:e5:74:4a:b5:34:85:
53:bb:10:2a:c4:c7:bf:32:21:5e:41:99:85:18:8f:
20:2e:02:29:ea:24:ef:f1:75:ac:86:98:fb:14:e7:
87:6a:2b:dd:c0:53:e5:e0:01:d1:f5:ee:c1:e7:d6:
20:84:61:ca:42:f0:b8:85:d5:c4:8c:7e:4f:89:d9:
1d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:BB:48:72:0B:02:94:77:44:AE:04:5A:37:05:83:42:A9:57:CC:3B
X509v3 Authority Key Identifier:
keyid:82:51:E7:FB:6B:96:0D:40:6B:22:36:D2:5E:4E:20:E2:45:35:9D:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/glHn-2uWDUBrIjbSXk4g4kU1nbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/xrtIcgsClHdErgRaNwWDQqlXzDs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ff0e61-1c92-418c-9267-d3a487295491/1/glHn-2uWDUBrIjbSXk4g4kU1nbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.152.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:5d:b9:f4:ae:78:0f:a1:17:e6:3a:61:75:57:7c:f8:ac:f9:
cd:cf:b8:a9:4e:ff:01:d1:1a:61:b5:12:22:20:8c:2e:dc:91:
da:63:64:93:00:75:84:37:b3:59:bf:36:1c:70:13:3e:b3:b8:
ff:b2:bb:1f:be:d6:8d:38:58:9a:fc:f5:0a:d7:1e:c8:3d:cf:
cb:7c:f9:d1:9f:a8:fe:4f:8b:8d:8b:cd:4a:c9:fd:c6:6a:69:
29:c2:c0:67:86:61:f1:4e:74:ac:26:a1:9d:c0:88:fe:a3:51:
42:7a:97:60:20:3e:09:f4:e5:76:63:b2:fa:87:97:ff:4b:ba:
73:36:bb:09:da:60:37:f9:18:ad:f1:ff:2e:25:68:bd:aa:84:
39:b4:91:e6:5b:ed:58:2a:13:bf:94:00:eb:94:3e:75:f0:7b:
ff:4f:cf:36:08:08:3c:1d:48:81:c2:1c:2b:67:40:6e:7b:16:
94:0e:b1:a7:de:c5:e4:00:e3:45:10:ae:f1:1d:ea:e6:7e:df:
f9:cb:7c:f1:ab:2a:af:f9:ce:f9:45:88:4a:cc:46:ea:66:85:
8c:56:0f:b3:a6:ad:37:5d:7c:1e:5c:1e:be:16:d6:a7:60:55:
e6:df:d8:89:c6:2d:13:9b:fc:8b:a1:57:af:3c:5f:86:c0:b3:
39:8b:54:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:43 2024 by rpki-client on console-fra.rpki-client.org