Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pW75V3uqAyI4v7x2JsWECLzlbH0.roa
File: pW75V3uqAyI4v7x2JsWECLzlbH0.roa (raw, json)
Hash identifier: entGKGQA1myKShWLKmdiCGzsTNPWio+zeCLk5VI0n7E=
Subject key identifier: A5:6E:F9:57:7B:AA:03:22:38:BF:BC:76:26:C5:84:08:BC:E5:6C:7D
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0183E0017AB06875C6023005C1AB09BB800D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pW75V3uqAyI4v7x2JsWECLzlbH0.roa
Signing time: Sun 16 Oct 2022 08:55:36 +0000
ROA not before: Sun 16 Oct 2022 08:55:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38001
IP address blocks: 45.67.136.0/24 maxlen: 24
45.67.137.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e0:01:7a:b0:68:75:c6:02:30:05:c1:ab:09:bb:80:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 16 08:55:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a56ef9577baa032238bfbc7626c58408bce56c7d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1e:3d:3f:93:f3:96:8a:f4:10:94:12:02:4d:
cc:30:44:d3:c2:80:9f:81:8c:af:45:43:f9:96:8e:
62:08:75:bd:14:5e:13:5d:91:fd:21:23:a0:a1:79:
4c:ab:2d:fc:50:bb:e4:8f:e6:11:23:02:02:19:d8:
69:d7:9b:a1:fb:83:a9:7c:cf:4b:86:8b:14:37:3d:
2d:6a:ba:ed:70:1a:78:10:25:9d:71:0f:1d:d7:09:
95:03:7d:2e:e0:fa:92:d8:f1:14:08:9b:8b:6c:ad:
ea:f5:56:e7:91:29:dd:fa:37:49:bf:8a:56:4a:f1:
40:17:62:2b:70:03:e6:50:be:37:76:6e:4a:0f:ee:
11:1f:2c:1e:8a:33:a7:4e:3d:bb:3c:02:35:62:c5:
3a:10:5b:00:e9:6b:5b:a3:d6:13:c8:8e:ea:1b:f1:
27:e1:c0:5c:f3:40:49:8f:21:0d:90:c1:f0:73:ff:
cd:8e:22:29:33:b6:5b:20:04:86:7d:e7:db:ae:0a:
24:ed:bb:54:f0:17:f4:c9:8d:bd:33:3d:9b:6b:c7:
4d:2b:38:1a:22:41:92:03:a3:ee:e6:aa:9d:16:f2:
24:cf:2a:4d:13:e1:01:43:13:88:4c:46:d3:29:e8:
b7:64:5f:5a:ba:46:44:36:0d:71:ee:95:bb:47:62:
93:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:6E:F9:57:7B:AA:03:22:38:BF:BC:76:26:C5:84:08:BC:E5:6C:7D
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/pW75V3uqAyI4v7x2JsWECLzlbH0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.136.0/23
Signature Algorithm: sha256WithRSAEncryption
00:0b:a8:63:20:8e:ae:e5:a5:2a:80:bf:22:75:0e:a5:60:79:
5d:99:a8:9a:9b:ea:23:ba:95:cc:8c:4b:6f:70:1d:26:f5:f0:
65:5c:61:61:99:ad:97:c0:c2:ed:ab:11:7d:30:11:58:a8:b0:
bd:c2:64:53:28:4d:f2:ec:62:ca:ee:e0:df:7e:f4:c7:d5:1a:
89:a8:cd:b2:51:99:36:25:c7:82:7a:dd:8e:b5:28:ea:87:15:
e9:0a:ae:0a:39:76:a9:2e:86:76:7b:5f:c8:d2:ec:f7:02:b1:
c1:90:77:af:e6:fb:05:59:b0:9c:ae:58:af:d3:2f:f6:d7:bb:
70:92:6f:cb:22:e8:9b:8a:fc:14:43:ff:b5:01:f5:e5:e7:d4:
5c:03:6a:07:de:a2:8d:7d:69:64:60:81:fa:b7:23:6f:b8:37:
5b:6b:32:90:df:22:14:e5:53:7f:78:c4:ad:c3:5a:e3:33:1b:
c7:2a:32:01:28:fb:86:bd:75:d8:c0:3f:bb:3a:1a:db:1d:df:
9f:fa:3e:e4:6b:b3:e9:a0:29:3e:b8:9d:a1:81:4f:39:2d:4c:
7a:c2:73:8c:74:a4:7d:6d:a1:aa:a8:95:91:b4:8a:14:f8:c9:
d5:69:0e:8b:c9:1b:8f:c9:5b:fc:05:47:12:f0:be:68:58:ba:
47:0e:a4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org