Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/McmNmU9rf6O6zddY4AZUVf0rASM.roa
File: McmNmU9rf6O6zddY4AZUVf0rASM.roa (raw, json)
Hash identifier: 0AsvfHXSqzB8qIZQmPE3r3BUNwJkYoTnQ9rEq1+JPrQ=
Subject key identifier: 31:C9:8D:99:4F:6B:7F:A3:BA:CD:D7:58:E0:06:54:55:FD:2B:01:23
Certificate issuer: /CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Certificate serial: 018285A4BDA128339188C0289BB906063503
Authority key identifier: 8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/McmNmU9rf6O6zddY4AZUVf0rASM.roa
Signing time: Wed 10 Aug 2022 02:45:42 +0000
ROA not before: Wed 10 Aug 2022 02:45:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.139.210.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:85:a4:bd:a1:28:33:91:88:c0:28:9b:b9:06:06:35:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e3f1663996be1707611fdce1ddea8920dd398a3
Validity
Not Before: Aug 10 02:45:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=31c98d994f6b7fa3bacdd758e0065455fd2b0123
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:75:ba:71:94:fe:a8:1a:e5:c4:7c:71:15:dc:
63:ff:be:5e:51:e3:ce:2c:34:56:c8:63:db:78:68:
f2:b4:fc:c3:8c:b2:71:4d:fc:74:33:1e:da:00:64:
64:80:7a:55:74:b6:a7:b2:d9:cb:87:2b:98:a8:ed:
7e:37:09:89:3e:eb:1f:b8:9a:36:b0:c6:bf:aa:76:
5d:44:a6:93:ec:3c:72:24:f4:d5:3f:25:2e:eb:bd:
5b:15:48:24:68:51:b6:ca:f1:22:6b:c8:42:7d:e9:
29:d2:e1:6f:29:45:0c:ec:11:f5:c9:2b:6c:57:7a:
d1:f8:8a:e8:ef:82:8a:7d:de:e2:e7:35:49:25:49:
70:ad:25:9e:90:08:e7:14:2a:b9:d4:e6:15:46:74:
2e:4f:97:ee:4c:13:fe:0b:3b:ba:68:bf:b3:47:8d:
ad:7a:0d:f4:1d:07:f1:ad:68:ab:22:7e:96:f7:13:
d4:11:82:d7:eb:64:68:f4:62:dc:08:81:f0:d3:9b:
49:88:d0:40:42:1a:9b:cf:de:9b:6b:8f:40:d5:a2:
72:05:70:4e:bf:fa:be:f8:62:77:03:1e:1d:4c:83:
04:de:b1:25:b6:fd:39:d7:48:f9:da:af:1b:39:95:
6a:9c:85:aa:fb:fa:59:29:03:3e:e8:f7:75:ce:bf:
d9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:C9:8D:99:4F:6B:7F:A3:BA:CD:D7:58:E0:06:54:55:FD:2B:01:23
X509v3 Authority Key Identifier:
keyid:8E:3F:16:63:99:6B:E1:70:76:11:FD:CE:1D:DE:A8:92:0D:D3:98:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jj8WY5lr4XB2Ef3OHd6okg3TmKM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/McmNmU9rf6O6zddY4AZUVf0rASM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/cd97cc-ce2b-4264-9e79-c8f9be7d19df/1/jj8WY5lr4XB2Ef3OHd6okg3TmKM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.210.0/23
Signature Algorithm: sha256WithRSAEncryption
9a:4f:51:41:6d:4b:93:fb:3d:04:0e:55:f7:df:f4:01:b0:2a:
7d:5a:a2:6c:ba:5c:3f:34:df:84:18:e0:62:0a:25:89:77:00:
6c:fb:af:4e:19:4d:bc:3a:e7:79:0a:0c:08:cb:bd:17:46:0c:
44:b4:06:10:fc:3d:25:49:b1:aa:b3:7e:41:b0:9b:af:35:0f:
3c:a7:3b:ec:22:5a:f9:23:0e:04:70:ba:1a:2d:28:c8:4d:86:
63:a2:d7:57:33:7f:87:8f:f9:de:b8:a4:14:e5:2e:56:53:54:
c1:1a:fb:fe:f0:55:7e:64:84:29:fd:58:3f:ce:d0:f5:d9:57:
9d:80:12:5c:67:2f:81:fd:e6:9c:1c:89:15:75:6f:e8:21:e2:
f9:68:48:e4:3f:a0:63:db:c3:78:00:d4:3a:51:e4:e0:1f:99:
30:39:8d:8e:d7:2c:23:60:6e:9c:b6:f8:ca:f7:54:e7:9d:f2:
47:83:f9:38:39:6e:68:dd:ea:9e:de:5e:17:c8:17:6c:ab:fb:
f3:47:44:f4:1f:c8:33:71:72:b8:5d:78:63:c3:c0:ca:e4:05:
3b:ff:0c:da:0a:60:a6:39:61:87:3d:2d:62:42:7b:97:82:91:
bc:5b:ce:59:b5:68:b8:cd:79:0e:0f:52:37:4b:91:c1:23:52:
59:98:ac:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:16:53 2024 by rpki-client on console-ams.rpki-client.org