Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Cbw8CzkKu6j3ghEk4Y7riUk49m8.roa
File: Cbw8CzkKu6j3ghEk4Y7riUk49m8.roa (raw, json)
Hash identifier: GE9MhnfU+TIRFPJGTzN3fq3TvVW6vCvV2Ur3gunzhmc=
Subject key identifier: 09:BC:3C:0B:39:0A:BB:A8:F7:82:11:24:E1:8E:EB:89:49:38:F6:6F
Certificate issuer: /CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Certificate serial: 0185006079751DE7E5551610FBEB8CF51B3F
Authority key identifier: 33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Cbw8CzkKu6j3ghEk4Y7riUk49m8.roa
Signing time: Sun 11 Dec 2022 08:50:00 +0000
ROA not before: Sun 11 Dec 2022 08:50:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 979
IP address blocks: 45.145.228.0/24 maxlen: 24
45.145.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:00:60:79:75:1d:e7:e5:55:16:10:fb:eb:8c:f5:1b:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=333361fba8409174fb3c482b8ca26f235ebd22c2
Validity
Not Before: Dec 11 08:50:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09bc3c0b390abba8f7821124e18eeb894938f66f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f1:78:a9:09:c5:94:1b:9b:82:92:50:ae:fe:
50:58:94:3d:e3:ce:37:de:d8:2c:91:64:91:ed:96:
fe:1b:ea:8c:64:d5:8f:7b:05:65:94:61:31:41:68:
ad:d2:c3:af:a5:97:bd:fa:a7:e3:cd:5e:7c:a8:81:
f6:a0:21:82:47:19:dc:1d:e6:91:26:3d:da:a7:fa:
29:7f:6c:c6:0f:59:b2:d0:c3:3f:6a:be:3b:23:53:
3b:8d:e8:11:df:31:53:26:0b:f6:05:2a:ef:bc:19:
bd:5b:fb:e0:18:7a:2e:53:c6:5c:0c:29:18:64:04:
9f:0b:2d:33:17:1e:b9:2d:e9:57:b2:66:7a:13:4c:
da:4e:78:cd:28:1a:ae:b2:c9:79:2f:a3:b3:ff:93:
71:22:f0:4f:d6:8d:ff:3e:c4:e0:e9:ed:16:44:a8:
5a:05:8f:fa:5a:86:fe:2c:85:11:08:9a:28:ef:56:
c1:7f:26:18:b8:03:5b:b6:5f:3f:70:b2:1d:44:59:
6c:7d:66:f2:a7:8c:5d:6d:67:10:a1:00:58:d7:40:
59:07:2e:4e:d3:3e:9d:f6:90:3d:32:39:b4:61:1b:
74:5a:fc:26:fe:3f:30:60:9d:68:57:0b:5d:35:dd:
41:4f:47:23:72:7a:1b:38:19:69:4a:8c:5c:10:47:
84:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:BC:3C:0B:39:0A:BB:A8:F7:82:11:24:E1:8E:EB:89:49:38:F6:6F
X509v3 Authority Key Identifier:
keyid:33:33:61:FB:A8:40:91:74:FB:3C:48:2B:8C:A2:6F:23:5E:BD:22:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MzNh-6hAkXT7PEgrjKJvI169IsI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/Cbw8CzkKu6j3ghEk4Y7riUk49m8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/11e13f-4cea-44af-81f9-b2cccf0eadab/1/MzNh-6hAkXT7PEgrjKJvI169IsI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.228.0/23
Signature Algorithm: sha256WithRSAEncryption
a6:77:fa:78:a0:54:a5:73:89:3e:16:58:fa:3f:2e:32:6d:1b:
35:e3:af:c0:6d:cc:ce:d6:b2:f1:df:21:0d:ac:b9:ac:3b:e4:
4d:98:7c:66:59:5c:41:c4:de:ae:b2:af:f1:21:b6:bb:b6:8d:
b6:6e:ef:d9:eb:52:6b:14:51:17:3a:ad:3b:23:90:c2:b5:31:
a1:ee:9a:0d:07:27:8f:39:77:1a:9c:5b:06:f5:ee:66:9e:84:
f5:b7:9e:ff:84:e3:88:cf:37:bd:ab:cf:e4:7e:76:4d:08:e6:
bb:ec:72:0f:86:3c:e6:4b:f8:67:4a:2f:f6:84:a4:ec:fe:61:
02:2d:38:97:1b:9e:ae:ea:3f:eb:d0:69:aa:9e:e3:89:9d:6e:
04:7e:03:76:26:dc:f3:b7:1d:e3:cc:19:3c:44:0f:6e:d8:4b:
a2:53:e3:f1:33:c1:34:2a:24:14:55:08:38:54:43:2a:13:3e:
74:8d:c7:9a:d2:ba:7d:5c:0e:c6:c5:55:61:49:9e:ad:41:5e:
5b:13:6f:b0:ca:c6:a4:66:6c:ac:0c:98:0f:62:5c:39:6a:b2:
bd:ff:ce:1f:91:ec:b1:c1:63:e9:8c:8b:69:69:20:4e:f4:57:
01:02:07:db:a0:da:3c:21:05:43:ab:58:cf:f0:ec:db:89:06:
3f:d9:92:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:41 2023 by rpki-client on console.sobornost.net