Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Q03fTEqIbaCHKff6E_sPPLk2Buw.roa
File: Q03fTEqIbaCHKff6E_sPPLk2Buw.roa (raw, json)
Hash identifier: orMDLaVgq55zMtQ+rD/vMwtGfAjkr27sIYfdhtdPmbQ=
Subject key identifier: 43:4D:DF:4C:4A:88:6D:A0:87:29:F7:FA:13:FB:0F:3C:B9:36:06:EC
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A626D67
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Q03fTEqIbaCHKff6E_sPPLk2Buw.roa
Signing time: Wed 13 Apr 2022 08:15:55 +0000
ROA not before: Wed 13 Apr 2022 08:15:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20473
IP address blocks: 45.131.110.0/24 maxlen: 24
45.147.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174222695 (0xa626d67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Apr 13 08:15:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=434ddf4c4a886da08729f7fa13fb0f3cb93606ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:28:f5:5c:30:4f:25:36:0f:76:c1:03:70:dd:
58:46:04:1d:43:09:ac:ef:7d:9b:8d:b0:96:ef:c9:
d7:57:8c:87:91:77:c2:7e:f0:cd:45:93:a6:58:9a:
f9:c1:89:11:e9:94:b8:8e:ac:3d:cf:b3:1d:66:59:
05:50:bf:d7:dd:e5:ee:b1:5e:df:b8:fa:a2:19:fd:
d6:bf:4b:28:5b:a4:d6:4c:2a:a0:29:bf:7d:1a:6c:
8d:24:64:c8:4f:67:74:ba:45:b1:d1:12:1a:ba:6a:
b7:0c:92:2c:9f:a8:49:b2:da:6d:12:67:94:1a:e9:
e4:91:f2:93:61:d1:36:e0:6e:a8:4d:10:b1:16:b9:
c5:57:7b:4e:5a:67:66:e4:d8:78:2b:8c:3f:02:9d:
b8:85:13:91:f9:2e:91:06:f9:c6:d5:22:fb:f3:0f:
99:c1:eb:2b:a9:a7:cd:ca:b4:52:cd:2f:4d:99:e9:
90:a9:34:3c:b2:a2:5c:7a:9e:7e:be:36:db:73:ea:
b9:31:c3:bb:59:7b:00:58:1d:31:30:83:22:26:35:
b5:85:30:4e:ad:a3:18:4b:f9:bb:ca:a2:82:b6:e5:
af:d4:40:37:b5:80:4f:b5:47:11:e4:f5:6c:1e:14:
df:de:aa:3f:ad:be:5f:e1:06:db:d5:df:0f:e7:bb:
58:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:4D:DF:4C:4A:88:6D:A0:87:29:F7:FA:13:FB:0F:3C:B9:36:06:EC
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/Q03fTEqIbaCHKff6E_sPPLk2Buw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.110.0/24
45.147.5.0/24
Signature Algorithm: sha256WithRSAEncryption
63:8e:87:87:9f:25:a8:fc:ed:c1:aa:03:72:b3:dd:fd:71:30:
6b:7d:53:a3:54:73:da:8b:2f:76:70:71:43:ee:58:06:aa:5b:
e8:4a:d6:33:e8:f0:ac:78:ad:d4:e7:c6:ab:57:0b:69:4f:35:
c3:48:be:e7:93:a4:3c:15:c7:06:1c:b4:f5:12:24:3e:bb:05:
44:7d:28:51:06:c6:83:b4:b5:df:3d:80:fe:ec:6c:bd:46:6f:
66:83:e0:1a:18:5e:8a:0e:9e:c9:94:62:3c:1b:46:db:89:66:
d1:b6:a4:10:c2:2c:46:bc:ec:32:e8:0f:89:91:15:d6:d8:1c:
b2:f0:6f:ed:11:02:f3:db:56:df:da:f1:02:b6:15:6f:d3:9d:
6b:3e:91:85:98:8b:8b:fd:4b:33:06:96:1f:c5:e5:9f:23:73:
79:a3:16:07:6b:58:9f:0a:e9:c0:92:b3:f6:6c:e8:25:e3:5c:
45:1f:66:cb:02:53:55:62:b1:82:c3:d6:53:13:d9:12:a0:5b:
c6:0b:31:b6:59:a5:4e:3a:70:cc:9d:c9:4f:f9:cf:5c:71:72:
66:ee:35:64:3d:c0:29:e6:05:ae:cb:35:e5:f4:90:cf:89:38:
0a:c1:fd:0b:45:e3:8a:bf:18:d8:ad:a6:2f:10:b4:64:83:02:
23:8f:c7:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org