Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/03zb7jtUREfrz5VX3af2YXBzm1w.roa
File: 03zb7jtUREfrz5VX3af2YXBzm1w.roa (raw, json)
Hash identifier: bQkxD8GLSV7/V5G4PoIRxzgkeJzZeBq29e4RDl7Xqp8=
Subject key identifier: D3:7C:DB:EE:3B:54:44:47:EB:CF:95:57:DD:A7:F6:61:70:73:9B:5C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01831D07F160C7BF685F9484EE696014FE58
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/03zb7jtUREfrz5VX3af2YXBzm1w.roa
Signing time: Thu 08 Sep 2022 12:16:43 +0000
ROA not before: Thu 08 Sep 2022 12:16:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.81.250.0/24 maxlen: 24
45.81.251.0/24 maxlen: 24
45.81.248.0/24 maxlen: 24
45.81.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1d:07:f1:60:c7:bf:68:5f:94:84:ee:69:60:14:fe:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Sep 8 12:16:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d37cdbee3b544447ebcf9557dda7f66170739b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:08:f1:28:1f:ee:cf:ec:15:0f:15:1b:a4:9a:
c8:6c:39:e1:4e:fd:75:fc:9a:78:f7:02:da:61:1f:
54:5a:1c:0e:af:74:fb:75:af:0e:04:37:83:0d:28:
45:b4:7c:59:a1:ec:bd:74:4e:fd:22:2e:92:cd:1e:
14:a5:84:18:34:9a:7a:39:15:16:d6:1e:da:45:f3:
6e:4b:26:d2:21:a6:c1:d2:4f:2b:52:dc:12:bf:9d:
1d:77:c8:cc:42:67:90:62:2a:00:36:74:6a:46:ad:
57:ca:6c:0c:3d:87:e2:fc:d1:9a:c4:ba:95:c5:4d:
61:f8:25:c3:65:7b:2b:e8:6f:78:c2:5d:cb:b1:d8:
dd:98:5a:bd:96:b8:c7:e6:e1:87:37:32:fb:f4:8d:
f4:fe:7c:85:ea:ad:a1:55:a6:5f:a8:57:40:46:5f:
ea:bf:d8:a4:64:8a:8f:9b:66:b3:75:0b:c1:43:1d:
e0:f1:e5:02:74:44:1f:87:ca:b7:e0:00:91:bf:db:
4f:b5:cc:b9:97:1f:21:86:7c:81:d7:00:8c:6e:6b:
5c:10:77:70:54:3f:fb:1e:f4:e1:70:8b:47:46:5d:
87:19:f1:88:90:8b:0d:bf:10:6c:79:57:a5:a9:8f:
7f:74:ca:af:07:a5:d4:67:3d:12:2d:51:bb:b4:ad:
be:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:7C:DB:EE:3B:54:44:47:EB:CF:95:57:DD:A7:F6:61:70:73:9B:5C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/03zb7jtUREfrz5VX3af2YXBzm1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.248.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:dd:57:53:ba:6b:44:0e:87:82:cf:e7:52:ae:3e:80:f4:15:
be:ee:64:92:bb:be:28:af:a0:64:52:d7:63:5b:88:6d:a1:ad:
5e:71:7a:e4:87:fc:52:d1:cc:5d:17:fb:eb:d9:5c:bc:b3:66:
52:8f:44:68:92:dd:a6:4b:64:87:dc:38:01:0c:16:21:0e:54:
b5:e0:17:eb:85:d9:f4:0b:46:f2:51:1c:ad:ab:bf:f1:85:7d:
b3:80:7c:c2:21:fe:5b:69:f7:31:7a:7b:79:5c:37:4c:1e:ae:
ce:f2:94:dc:ad:77:6d:f1:68:84:6f:30:c3:78:b9:f4:6c:f5:
f2:5c:7d:ae:c7:ad:f1:0c:8c:06:1b:41:5e:86:df:fa:eb:2b:
70:b2:b0:15:e3:8e:34:7d:db:ee:a5:3f:47:a5:0e:3d:4b:a8:
f4:d4:3c:d9:19:d8:5f:e0:a0:89:04:f8:97:04:99:14:e5:17:
9a:97:c5:e6:1f:0e:69:ba:c3:01:b5:96:c1:25:93:e5:a8:41:
92:d5:2c:6d:2f:18:f5:21:3e:92:f7:cd:d2:12:33:ab:db:91:
bf:f3:63:fd:95:a2:51:1c:74:34:42:fb:ed:b6:a2:b4:c3:75:
30:16:85:1c:d2:1d:83:e0:d9:74:1a:88:fc:0e:84:70:19:bb:
12:6f:be:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-ams.rpki-client.org