Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/1153f8-1994-4b2d-9645-f28b4d640a49/1/DWy1eIWHLlRokiT3tKfuqtj0gmo.roa
File: DWy1eIWHLlRokiT3tKfuqtj0gmo.roa (raw, json)
Hash identifier: pwDAz/sYbyzZMbh0iHMHRqfuzRAAV5tI/CrUClaF63Q=
Subject key identifier: 0D:6C:B5:78:85:87:2E:54:68:92:24:F7:B4:A7:EE:AA:D8:F4:82:6A
Certificate issuer: /CN=48ea30c0f28e02269c5765bf4a045677ca2794a5
Certificate serial: 036CBE4D
Authority key identifier: 48:EA:30:C0:F2:8E:02:26:9C:57:65:BF:4A:04:56:77:CA:27:94:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SOowwPKOAiacV2W_SgRWd8onlKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/1153f8-1994-4b2d-9645-f28b4d640a49/1/DWy1eIWHLlRokiT3tKfuqtj0gmo.roa
Signing time: Sun 20 Feb 2022 09:58:53 +0000
ROA not before: Sun 20 Feb 2022 09:58:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 800
IP address blocks: 45.147.188.0/22 maxlen: 24
2a09:4880::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57458253 (0x36cbe4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48ea30c0f28e02269c5765bf4a045677ca2794a5
Validity
Not Before: Feb 20 09:58:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0d6cb57885872e54689224f7b4a7eeaad8f4826a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d5:b0:12:d2:8c:6e:80:b9:4d:5d:44:63:f1:
e2:d0:e4:c2:8c:db:e6:17:32:de:72:eb:d2:94:a7:
9a:5e:92:20:db:35:24:86:26:da:1e:52:94:b4:bc:
18:4b:39:8c:66:28:cd:99:d9:c4:4c:23:8e:f6:7d:
15:85:31:40:3c:e4:79:ba:04:e0:72:cc:f0:79:80:
ae:a6:71:14:2f:9e:f1:4f:0c:4d:63:9d:29:79:49:
6f:bf:93:e6:c3:67:fc:b5:da:f6:60:a5:ab:df:7f:
03:46:7c:f0:4b:c7:b2:ea:47:7a:4e:85:23:77:cd:
72:47:6b:d5:ec:a1:a9:6f:73:a0:32:2b:1e:c9:9b:
6a:58:70:e7:60:25:02:ea:37:f9:58:1f:2c:7e:7a:
9d:ca:eb:39:1b:2a:fc:35:43:09:08:0c:6c:a4:4d:
90:3f:85:6a:43:1f:7a:a5:18:21:d3:54:80:96:f0:
08:33:a4:23:58:e0:30:40:76:14:09:89:e6:51:ff:
a4:a8:2d:70:21:77:98:73:cd:17:24:d5:0b:d4:d2:
ce:cd:5f:47:ba:c5:41:c4:23:9e:7a:07:fd:32:cd:
b8:b9:6b:7a:fd:ed:29:77:44:cb:5b:5a:b8:11:28:
80:fb:93:4c:65:19:f9:72:c3:ce:60:4e:29:72:e6:
b7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:6C:B5:78:85:87:2E:54:68:92:24:F7:B4:A7:EE:AA:D8:F4:82:6A
X509v3 Authority Key Identifier:
keyid:48:EA:30:C0:F2:8E:02:26:9C:57:65:BF:4A:04:56:77:CA:27:94:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SOowwPKOAiacV2W_SgRWd8onlKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/1153f8-1994-4b2d-9645-f28b4d640a49/1/DWy1eIWHLlRokiT3tKfuqtj0gmo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/1153f8-1994-4b2d-9645-f28b4d640a49/1/SOowwPKOAiacV2W_SgRWd8onlKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.188.0/22
IPv6:
2a09:4880::/32
Signature Algorithm: sha256WithRSAEncryption
bd:05:71:e3:f5:98:2b:af:63:f5:71:33:e1:66:28:97:4f:61:
fb:e1:c8:2d:6d:f2:d5:43:45:a7:75:42:3a:fc:d2:6f:85:d1:
9a:54:95:8c:c9:3f:11:11:4a:f4:10:c1:0e:11:81:7a:64:9e:
5e:ab:f7:61:dc:23:6b:44:e7:12:f5:35:53:1c:bc:86:b7:77:
13:65:5d:7d:c3:b2:ae:b8:9a:0c:5a:2d:b8:79:77:d9:6a:35:
32:a5:30:20:bb:15:e0:28:82:54:88:33:08:fe:bc:d1:8c:c7:
91:52:9f:49:fa:1c:e9:2b:c8:2f:33:36:06:a7:12:47:35:23:
4a:02:f7:be:f6:20:3c:7d:ec:cf:a6:10:ce:3b:c3:f8:a1:9e:
17:82:7f:d8:73:31:9a:43:4e:fb:77:3e:f5:59:74:09:95:9a:
93:92:08:31:f1:09:a0:fc:6b:00:42:c3:28:69:9e:18:dd:18:
53:5a:ff:78:56:19:be:aa:0c:c0:6b:ef:58:ee:f3:dc:3f:0e:
49:0a:72:a3:68:23:d4:05:76:58:1f:35:16:d7:e4:72:e5:45:
75:f4:ca:9e:2b:5d:4e:4b:29:f3:dc:42:20:7c:73:d9:45:26:
49:c1:ff:f1:1a:cb:6c:57:bb:a8:23:fc:2e:05:de:3c:b8:8b:
a7:ad:09:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:11 2024 by rpki-client on console-fra.rpki-client.org