Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/3w7h5XVGCWrRFrqzRrug0apy6SI.roa
File: 3w7h5XVGCWrRFrqzRrug0apy6SI.roa (raw, json)
Hash identifier: 70oBhi/+nSWcHJ+CsAnYsnxsagAe1z3HxJH9WowBO8U=
Subject key identifier: DF:0E:E1:E5:75:46:09:6A:D1:16:BA:B3:46:BB:A0:D1:AA:72:E9:22
Certificate issuer: /CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Certificate serial: 08B8FE3B
Authority key identifier: A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/3w7h5XVGCWrRFrqzRrug0apy6SI.roa
Signing time: Sat 01 Jan 2022 11:03:24 +0000
ROA not before: Sat 01 Jan 2022 11:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50563
IP address blocks: 45.8.77.0/24 maxlen: 24
45.8.78.0/24 maxlen: 24
45.8.78.0/23 maxlen: 23
45.8.76.0/24 maxlen: 24
45.8.76.0/23 maxlen: 23
45.8.76.0/22 maxlen: 22
45.8.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146341435 (0x8b8fe3b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a097d6a2cf42880dbebf42a3251907a21c91a4a5
Validity
Not Before: Jan 1 11:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df0ee1e57546096ad116bab346bba0d1aa72e922
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:34:09:24:a0:07:21:43:e8:94:65:fe:a9:d6:
5e:b8:a3:e2:91:d4:48:6c:ac:de:12:a4:63:0a:fa:
6a:b1:43:96:70:9c:3a:45:36:cc:44:9e:47:9b:44:
81:46:aa:88:cd:58:2d:a5:27:1f:af:e6:5a:b2:46:
54:1e:b2:83:cf:10:14:a5:4f:ca:d4:8c:cf:a8:f3:
b2:09:59:be:99:ee:34:b9:29:33:0c:a8:72:64:7d:
ab:f0:23:24:27:bb:3f:09:d1:f2:d9:e7:6a:b3:66:
0c:8c:8e:88:48:d2:9d:09:f5:37:f1:6c:e5:6e:fa:
a1:76:ea:9e:48:a3:a0:47:5c:b2:69:49:80:57:4a:
ce:0a:ca:40:93:3c:ea:5a:ee:38:29:9b:c4:10:fc:
63:fc:82:60:f0:ee:d8:90:e1:86:1f:0c:1b:8e:ab:
2d:2f:2d:28:b4:d3:56:c8:30:dc:8d:fe:66:01:ab:
3a:c4:bf:b5:3f:7a:cc:a4:9a:de:39:a7:56:b1:5b:
4a:e9:81:14:6e:f4:e6:f8:43:a4:4f:27:00:14:82:
e3:26:2c:5a:0f:19:3b:c9:c3:f1:c0:8b:92:b5:a2:
ab:20:89:1e:f6:aa:4f:23:f9:07:0f:5f:58:f6:11:
60:8e:41:45:17:4c:1e:1a:d5:53:98:41:f2:e8:9a:
d7:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:0E:E1:E5:75:46:09:6A:D1:16:BA:B3:46:BB:A0:D1:AA:72:E9:22
X509v3 Authority Key Identifier:
keyid:A0:97:D6:A2:CF:42:88:0D:BE:BF:42:A3:25:19:07:A2:1C:91:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oJfWos9CiA2-v0KjJRkHohyRpKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/3w7h5XVGCWrRFrqzRrug0apy6SI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/4c2b68-818b-4902-b42f-6fcaf2729be5/1/oJfWos9CiA2-v0KjJRkHohyRpKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.76.0/22
Signature Algorithm: sha256WithRSAEncryption
11:d2:19:40:1e:45:55:28:bb:eb:29:09:d1:bf:c1:28:54:ee:
81:e2:7c:78:5a:12:5b:29:20:82:41:b1:9f:85:d7:72:61:e8:
71:3f:99:b5:41:55:03:7f:c0:2d:d0:d1:83:9d:0b:68:05:d1:
54:f5:d3:64:d2:7d:9f:86:dc:97:a0:05:a6:e4:30:1a:b0:fb:
01:30:cc:d6:86:62:c1:5e:af:21:f1:50:33:1c:bb:91:2e:98:
bf:7c:e0:54:1c:68:67:0b:bb:ac:33:2e:a1:34:9d:38:2a:79:
22:26:11:ad:a5:7a:c1:8d:e5:61:a9:fb:e4:78:0a:67:23:26:
77:48:7f:70:4b:8b:ac:e3:30:8c:85:b0:6f:64:c8:4b:f2:f5:
ff:91:a4:a8:9b:46:bf:50:47:10:fb:bd:c5:69:61:76:a0:68:
a1:df:53:01:7d:ce:f4:23:e7:57:19:c6:06:49:60:19:45:f7:
12:95:88:cd:0a:1f:a1:c6:cb:c2:71:df:f0:4b:ac:c2:31:15:
ad:bb:6a:73:eb:12:24:fe:87:ca:c1:87:eb:10:3e:ae:e5:39:
93:1e:2e:c7:b1:e9:c9:c3:a1:56:e3:a3:51:6d:6a:74:04:be:
f6:f3:1c:63:77:44:61:93:f2:d5:35:6f:1c:04:af:2c:88:92:
95:b8:c0:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:42:38 2023 by rpki-client on console.sobornost.net