Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/kAR0g21wugQcU0f0idNZ7SUeh2U.roa
File: kAR0g21wugQcU0f0idNZ7SUeh2U.roa (raw, json)
Hash identifier: JPqis1p6WS9onb9ej8MfhQazTgehxxZC1Dc2bWpF0nQ=
Subject key identifier: 90:04:74:83:6D:70:BA:04:1C:53:47:F4:89:D3:59:ED:25:1E:87:65
Certificate issuer: /CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Certificate serial: 08600959
Authority key identifier: A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/kAR0g21wugQcU0f0idNZ7SUeh2U.roa
Signing time: Sat 01 Jan 2022 06:05:48 +0000
ROA not before: Sat 01 Jan 2022 06:05:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206455
IP address blocks: 45.85.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140511577 (0x8600959)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a811a2c9fc8de9679bb158581b10ceaee91ff791
Validity
Not Before: Jan 1 06:05:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=900474836d70ba041c5347f489d359ed251e8765
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:f7:e5:c3:c0:9c:e1:49:bd:8e:06:71:e6:55:
7d:55:bb:e6:de:27:70:8f:81:ee:10:1a:81:2f:22:
98:c6:5f:07:36:3c:1b:87:d0:11:d4:85:97:44:7f:
22:d4:37:f4:65:91:ec:cf:2b:74:5d:cf:8c:1f:d8:
e3:8f:6c:e0:1b:c5:95:6b:ce:7a:9c:9e:2b:34:94:
d3:a2:bd:96:d7:7c:86:4e:95:c8:79:03:98:79:c1:
2e:c3:d7:3f:82:89:65:81:a7:ff:91:d8:ea:72:92:
b4:80:68:77:de:36:ae:c7:bc:f2:8c:c1:31:5b:6f:
f5:95:30:87:6d:3a:a0:33:2a:9a:9f:07:8a:52:28:
62:7b:1b:f5:e8:31:60:90:e0:2f:21:be:26:aa:cb:
18:96:a9:d5:10:e0:84:32:77:82:a7:87:67:d8:ed:
b7:79:d7:9c:44:3c:1b:d9:14:cf:91:de:64:36:84:
6d:cb:7a:e0:2a:c5:6a:fd:8b:b8:b6:4d:b7:a5:f0:
c6:99:98:ca:46:d5:6b:a1:7b:42:ef:d7:ac:39:b5:
55:83:8d:18:7b:a9:09:c2:eb:68:b8:83:41:05:00:
07:84:97:d2:e2:7b:d4:5a:6b:2b:21:f0:1d:88:81:
e7:27:7f:e3:44:d9:1d:68:d9:f6:48:ed:da:33:e4:
f1:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:04:74:83:6D:70:BA:04:1C:53:47:F4:89:D3:59:ED:25:1E:87:65
X509v3 Authority Key Identifier:
keyid:A8:11:A2:C9:FC:8D:E9:67:9B:B1:58:58:1B:10:CE:AE:E9:1F:F7:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBGiyfyN6WebsVhYGxDOrukf95E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/kAR0g21wugQcU0f0idNZ7SUeh2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/1decb3-1593-45db-af56-0cc4c0000858/1/qBGiyfyN6WebsVhYGxDOrukf95E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.185.0/24
Signature Algorithm: sha256WithRSAEncryption
a8:f7:66:a0:00:82:a7:17:48:06:0a:e7:14:98:94:eb:7a:0f:
1d:ed:67:7e:a7:86:74:d4:a8:0e:56:b4:ad:89:3d:95:f1:06:
bb:4e:0d:34:ef:bc:b8:20:73:30:7b:80:23:83:f2:fb:05:e2:
ae:93:cf:b9:f2:64:5c:0a:40:83:6d:01:bd:30:04:9c:b7:58:
c5:3b:a2:9d:3f:a8:d6:2f:f5:98:ac:a0:de:dc:c6:e6:d0:3a:
d1:e4:53:b7:f6:61:12:58:e9:f0:2a:34:cf:75:09:43:20:e5:
4e:a6:81:50:0b:71:dc:3f:cb:5a:1c:75:03:45:04:46:b1:5d:
08:96:38:43:ee:a3:f9:d8:ce:be:6e:04:5f:61:30:f2:cf:d3:
0d:76:e1:8e:37:dd:8d:a5:9a:9d:fb:13:ea:e0:7b:43:36:e0:
91:4a:56:c6:5f:3a:1a:9e:74:52:4a:6e:4e:f9:84:bb:8f:5b:
b8:e5:93:29:57:23:52:d4:5b:51:68:ed:2e:17:3f:d9:44:9a:
a3:9b:0b:c1:f7:1b:14:37:48:bb:34:a2:b7:af:d9:1f:2b:c5:
dd:70:86:93:f4:77:32:94:c1:95:35:bd:74:b4:7f:99:5d:55:
3d:b2:ee:36:06:74:7e:91:f7:1b:13:cc:32:ea:31:30:ee:a8:
5b:bb:ec:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:59 2024 by rpki-client on console-ams.rpki-client.org