Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/VHzlj_ixgTzr4BT6Mkwe0Ltg_Ug.roa
File: VHzlj_ixgTzr4BT6Mkwe0Ltg_Ug.roa (raw, json)
Hash identifier: 5nE37Y/reYYcJl57JNd2B0eCfP7J6ok5sq/Zg98sJrg=
Subject key identifier: 54:7C:E5:8F:F8:B1:81:3C:EB:E0:14:FA:32:4C:1E:D0:BB:60:FD:48
Certificate issuer: /CN=b0758e88c20702131b917a4dfdb2374bc3655587
Certificate serial: 0787183B
Authority key identifier: B0:75:8E:88:C2:07:02:13:1B:91:7A:4D:FD:B2:37:4B:C3:65:55:87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHWOiMIHAhMbkXpN_bI3S8NlVYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/VHzlj_ixgTzr4BT6Mkwe0Ltg_Ug.roa
Signing time: Sat 01 Jan 2022 09:02:38 +0000
ROA not before: Sat 01 Jan 2022 09:02:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200793
IP address blocks: 45.149.200.0/22 maxlen: 22
45.149.200.0/23 maxlen: 23
45.149.201.0/24 maxlen: 24
45.149.202.0/23 maxlen: 23
45.149.203.0/24 maxlen: 24
45.149.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126294075 (0x787183b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0758e88c20702131b917a4dfdb2374bc3655587
Validity
Not Before: Jan 1 09:02:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=547ce58ff8b1813cebe014fa324c1ed0bb60fd48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:7c:fe:fe:f5:b9:49:aa:ed:25:7b:f4:a7:54:
a4:49:17:0f:52:91:e4:f9:cd:b8:45:3f:53:22:5c:
91:71:cc:bd:ed:84:b6:f8:ca:58:67:52:37:c1:c2:
c0:5d:2b:8b:21:cd:a2:19:04:57:ff:bb:69:d5:3c:
24:66:1a:3f:63:fd:db:99:e3:09:9c:4f:8a:66:dc:
24:c3:9f:df:d3:5e:b9:17:e2:b8:3b:7a:3c:6d:49:
07:ab:d2:30:38:14:af:64:c7:a3:c2:52:69:2c:e6:
d7:41:a1:ca:98:b8:e6:dd:87:b7:2d:6e:44:37:d7:
4f:a8:3f:cf:13:7e:e7:ef:fd:22:6e:50:38:e6:91:
92:b7:5b:e6:18:d2:c0:27:6a:37:f9:3e:9b:c8:32:
90:88:a7:b0:b1:9b:83:6d:a4:66:e6:84:ff:05:97:
c1:e7:fb:1a:d6:25:f7:49:3f:1b:23:81:ba:94:c5:
9f:1a:b4:e4:ba:84:e3:ad:1b:97:e8:f9:dc:62:f2:
b9:f5:02:06:93:2c:e1:13:57:49:55:e5:40:af:b2:
1e:dd:71:ae:ba:a1:98:7a:a5:1e:d4:1b:0a:c0:d8:
26:84:09:0e:50:fb:7f:2e:17:74:00:ba:bb:6e:7e:
e7:bc:45:51:ba:b2:3a:5c:29:d9:ba:52:fd:68:e2:
6f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:7C:E5:8F:F8:B1:81:3C:EB:E0:14:FA:32:4C:1E:D0:BB:60:FD:48
X509v3 Authority Key Identifier:
keyid:B0:75:8E:88:C2:07:02:13:1B:91:7A:4D:FD:B2:37:4B:C3:65:55:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHWOiMIHAhMbkXpN_bI3S8NlVYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/VHzlj_ixgTzr4BT6Mkwe0Ltg_Ug.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/071eeb-154a-45f0-8d7b-63873e884413/1/sHWOiMIHAhMbkXpN_bI3S8NlVYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.200.0/22
Signature Algorithm: sha256WithRSAEncryption
5e:65:35:d5:24:4b:f5:c4:2b:80:30:64:37:d7:88:19:b3:b2:
35:49:f9:0f:5e:3c:86:c4:20:71:65:ec:4a:da:9c:80:08:8d:
ed:89:e3:e0:01:cd:6e:b7:e3:e6:6c:87:68:f7:83:a9:4c:15:
66:90:82:14:48:df:37:f6:fc:37:36:22:e3:dd:c5:eb:42:e1:
46:38:3f:27:0c:7e:37:e3:f6:0b:13:b6:70:be:ab:07:78:23:
82:5f:18:ab:0e:ba:62:fa:9c:b6:b3:61:80:40:21:12:70:3e:
47:57:ed:0c:36:5b:e0:e1:4d:2c:61:63:7d:ee:ad:05:a8:c6:
eb:c7:4d:13:31:30:97:51:16:4b:7d:8f:92:bf:f6:98:d9:f1:
27:9b:9b:9e:6c:10:88:1a:c1:fb:dd:9a:e0:b8:fb:84:dd:90:
eb:3e:5a:f6:2e:f6:c5:25:cf:32:f6:22:23:e9:3e:90:3d:2f:
71:7e:f3:f5:be:a2:ce:2c:71:99:5e:65:e0:f6:ba:e3:50:3c:
4f:6d:bc:ae:b5:4f:dc:7f:8c:66:72:e8:bf:b0:63:58:cc:32:
5e:a3:44:0c:71:90:72:68:e3:38:f7:92:82:b1:00:c7:0e:d6:
f0:f3:6b:5c:42:b3:b8:1c:ac:2d:a1:ba:99:14:d2:d7:a5:81:
c4:bc:68:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:25 2023 by rpki-client on console.sobornost.net