Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/9JlTFoRXLtRXEe4cxAJjadk1Jrk.roa
File: 9JlTFoRXLtRXEe4cxAJjadk1Jrk.roa (raw, json)
Hash identifier: Yqtz6RvIGX+uScYaK1BvvumZkOM0WB2aBSyEKYOfFNw=
Subject key identifier: F4:99:53:16:84:57:2E:D4:57:11:EE:1C:C4:02:63:69:D9:35:26:B9
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19DEF56A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/9JlTFoRXLtRXEe4cxAJjadk1Jrk.roa
Signing time: Sat 01 Jan 2022 15:56:46 +0000
ROA not before: Sat 01 Jan 2022 15:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51681
IP address blocks: 45.88.244.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434042218 (0x19def56a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f499531684572ed45711ee1cc4026369d93526b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:96:e7:27:32:9e:87:8f:76:6d:c5:c6:9a:13:
3f:1f:e3:b9:55:3c:bf:ee:64:d4:f8:71:1f:a5:af:
58:7c:58:39:81:07:ae:7c:77:c9:13:8e:cf:0a:90:
73:94:36:21:8a:74:83:46:e8:d0:f0:53:01:fc:22:
cb:83:cf:73:0f:21:49:7e:a1:79:3e:dd:4a:2f:ed:
4f:81:ef:3c:20:a2:17:1c:83:9d:81:41:a8:ab:d7:
01:e9:5e:0f:c3:97:05:1a:9d:83:8e:76:e5:15:f5:
95:fe:39:32:ef:10:85:1f:e2:8f:ec:d2:f3:15:75:
10:29:3f:36:d6:e0:f6:b3:77:28:c3:ca:d0:38:d4:
25:bf:a6:97:02:e0:5f:2b:94:e7:1a:a7:65:0f:ae:
f3:ca:1d:db:01:59:66:16:c5:40:77:3f:b4:eb:c4:
49:00:14:5f:a5:1f:54:16:43:81:31:e4:b6:96:a4:
ff:a6:37:42:f2:b7:81:4b:40:4f:98:ac:fa:5e:8d:
6c:bb:aa:e3:c3:f5:85:0f:ac:da:83:45:49:cd:4c:
95:5c:b9:b7:2c:f2:1d:f3:3d:e2:4c:4e:23:5e:43:
f5:f3:4c:5c:22:23:fb:63:11:df:67:31:3c:97:8d:
53:c0:19:ec:c2:a3:0a:6e:95:1d:8e:aa:bd:b1:e1:
d6:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:99:53:16:84:57:2E:D4:57:11:EE:1C:C4:02:63:69:D9:35:26:B9
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/9JlTFoRXLtRXEe4cxAJjadk1Jrk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.244.0/23
Signature Algorithm: sha256WithRSAEncryption
53:dd:57:e6:fd:28:96:48:3a:c7:61:0d:ad:75:46:8f:06:be:
1b:fa:b2:00:c2:69:f6:ce:fd:d1:5a:ef:f6:40:14:9c:f4:c9:
88:e9:c3:32:b1:2f:52:1a:9f:8c:22:73:6b:76:07:e9:e5:7f:
91:37:7c:c8:2d:a5:f1:e4:68:51:ad:3c:b0:74:79:3c:b1:ff:
ce:49:75:3a:71:84:1c:21:47:03:bb:15:f0:4f:02:ec:b3:ac:
21:68:b1:fd:92:b5:57:65:e2:c3:46:66:f9:f5:06:a0:be:a8:
81:06:a7:f1:bb:54:16:70:fb:78:32:64:26:57:35:4c:46:99:
3c:1d:d3:19:eb:64:86:ca:a6:d0:dd:ac:aa:a3:7f:89:28:29:
49:d3:66:d8:56:01:54:e0:16:45:44:da:cf:cb:19:bb:b5:11:
13:0d:61:7f:2c:84:eb:d4:43:73:f0:e7:15:ad:47:28:05:f2:
1c:82:20:02:25:01:9d:1d:7f:91:c9:c9:09:ce:95:61:ba:da:
79:12:98:59:e4:00:7a:76:05:00:fc:da:a2:68:68:c1:a8:9e:
7d:91:fa:bf:a1:fa:2e:67:ed:fc:c3:40:db:ca:05:e1:09:f3:
49:c3:d2:87:20:e0:81:db:22:e2:ac:3a:dc:9a:dc:aa:bc:3f:
74:88:f1:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org