Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8TLRah4FnZdB_mGfZv5DSMREvY0.roa
File: 8TLRah4FnZdB_mGfZv5DSMREvY0.roa (raw, json)
Hash identifier: Bk+n0DoBcKVbhuKp+qeTPGM0psr3eeDHICnvDtIGBek=
Subject key identifier: F1:32:D1:6A:1E:05:9D:97:41:FE:61:9F:66:FE:43:48:C4:44:BD:8D
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 0181D30EC2FD91D2023BB38333216FE01690
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8TLRah4FnZdB_mGfZv5DSMREvY0.roa
Signing time: Wed 06 Jul 2022 10:29:28 +0000
ROA not before: Wed 06 Jul 2022 10:29:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51736
IP address blocks: 45.138.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d3:0e:c2:fd:91:d2:02:3b:b3:83:33:21:6f:e0:16:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 6 10:29:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f132d16a1e059d9741fe619f66fe4348c444bd8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:82:a7:a8:9f:b6:52:ac:5f:65:fc:28:a3:7b:
ca:36:4a:7c:0c:a9:b9:54:6e:4b:a0:13:e1:45:a8:
3b:ba:49:98:9d:65:19:b0:67:19:49:8d:52:ca:74:
2a:3f:80:85:fb:52:4c:cb:3b:49:10:59:a1:1c:b3:
20:54:47:88:3b:28:33:a2:bf:6c:13:a2:7a:d8:fd:
39:e2:a2:34:78:63:24:fd:bf:e4:69:cc:57:8a:4b:
c3:a5:60:75:9f:57:07:8d:5d:a6:9f:c2:aa:1d:26:
a5:22:0b:22:48:f2:b4:74:2c:74:56:05:06:68:7d:
77:06:ae:0c:3b:d4:ed:30:75:81:8f:30:7f:bc:78:
75:61:82:07:f1:c7:84:19:95:3e:ef:bd:a6:81:fc:
54:9b:ab:6d:bf:26:17:48:3f:09:f7:55:0e:1c:f4:
3d:de:44:dd:ab:37:7c:06:da:b8:68:45:81:c3:a6:
2e:d9:36:8f:4f:9e:21:33:cd:6d:6b:a6:95:ee:3f:
b8:44:35:43:1f:20:c9:7e:07:13:46:92:4b:d3:35:
c1:37:a7:3f:23:1b:5b:0c:18:e5:37:80:82:65:e7:
94:48:e5:d9:c9:8f:47:1a:92:c0:04:54:8a:20:ed:
53:cd:ab:08:6e:91:29:13:14:6d:d6:2c:79:e7:b1:
0c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:32:D1:6A:1E:05:9D:97:41:FE:61:9F:66:FE:43:48:C4:44:BD:8D
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/8TLRah4FnZdB_mGfZv5DSMREvY0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.19.0/24
Signature Algorithm: sha256WithRSAEncryption
43:af:c1:43:5b:ea:b6:31:dd:f7:60:8e:22:65:39:b5:30:82:
ea:14:3f:b4:02:86:d6:2b:74:4a:97:db:dd:ef:92:ae:02:af:
30:de:a5:ee:9d:a2:83:e6:58:3d:2d:4a:8e:8a:42:39:f5:f5:
e9:dc:76:72:05:8b:63:a2:82:8d:e8:e9:62:2e:6c:67:e6:a8:
98:c0:49:9e:5d:f2:7c:3d:2a:7d:52:c6:02:a7:de:a3:60:ae:
59:e8:57:6c:0e:77:89:6f:12:79:55:5f:41:67:a7:aa:ce:a7:
b2:fb:73:53:c5:ea:4d:e8:4b:a8:ad:15:be:0a:45:13:a4:ae:
c4:c0:40:5f:88:3c:cf:c7:08:7c:3d:0d:21:90:13:01:99:d9:
96:52:7e:5d:b6:c7:7f:d2:da:e4:cf:fa:26:85:d9:72:bd:84:
f7:78:bc:c9:43:cc:56:22:bb:21:99:4d:f8:7a:fa:df:fc:2b:
51:4f:01:17:a2:d3:38:75:7c:2d:2a:de:bc:07:d4:9d:82:0a:
00:f7:43:4c:e0:32:b1:33:74:a6:f7:8a:81:6f:bb:19:57:92:
89:d2:dd:cf:25:9f:9f:a4:0e:71:02:c4:4f:13:3d:39:5d:78:
05:36:70:89:b2:b5:3d:b0:c9:a6:58:ad:a3:47:2d:22:15:21:
b6:27:34:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org