Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/BrvteMGM9GmpvStkxuiO3SVvwzk.roa
File: BrvteMGM9GmpvStkxuiO3SVvwzk.roa (raw, json)
Hash identifier: ogAkxWN76al0RoslvJfuDenixao+4nTgPFB+MDjE7xw=
Subject key identifier: 06:BB:ED:78:C1:8C:F4:69:A9:BD:2B:64:C6:E8:8E:DD:25:6F:C3:39
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1B18C545
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/BrvteMGM9GmpvStkxuiO3SVvwzk.roa
Signing time: Wed 20 Apr 2022 05:39:00 +0000
ROA not before: Wed 20 Apr 2022 05:39:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211112
IP address blocks: 45.139.163.0/24 maxlen: 24
2a07:e344::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 454608197 (0x1b18c545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Apr 20 05:39:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06bbed78c18cf469a9bd2b64c6e88edd256fc339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f1:3a:23:46:0c:50:2d:0e:10:32:6e:28:80:
67:2a:b3:2b:dd:48:18:8a:05:44:b7:d7:ce:4c:5e:
00:2b:bc:50:1d:e9:95:2f:58:3d:cf:51:93:84:04:
7d:dd:9f:9e:d1:20:b8:31:43:b3:e1:8a:a5:a7:96:
ba:16:78:03:22:52:88:e3:41:3b:61:9d:17:f6:ca:
fa:26:a7:ac:c8:25:77:cf:4d:ec:bf:e2:4d:58:90:
54:10:9b:5b:50:5a:a1:af:a1:15:e6:92:c1:59:ef:
3d:e0:6e:71:fc:2d:dd:34:e5:b3:21:30:6d:97:74:
09:94:9b:9c:d7:af:82:72:5e:94:0b:58:15:49:9b:
33:02:a1:51:ad:5e:e3:c1:ee:ed:55:af:55:19:95:
ac:16:a7:9b:a3:3f:e0:e1:31:12:aa:81:bb:55:96:
ff:09:e5:04:6a:1e:e7:06:da:09:a5:64:98:c4:ef:
7a:e3:ba:b8:c8:3e:0c:f0:ad:57:97:50:d8:96:7f:
53:47:4d:b1:f9:73:ea:b3:50:29:99:31:0f:d1:a6:
8d:e1:15:7e:46:11:8b:f0:da:e0:54:5e:ba:a6:7c:
d9:3d:17:f8:b4:61:b3:f0:c5:7d:5c:da:8c:44:cd:
b2:04:01:4c:00:ab:ef:e3:ea:c6:62:11:6f:a7:ae:
20:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:BB:ED:78:C1:8C:F4:69:A9:BD:2B:64:C6:E8:8E:DD:25:6F:C3:39
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/BrvteMGM9GmpvStkxuiO3SVvwzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.163.0/24
IPv6:
2a07:e344::/32
Signature Algorithm: sha256WithRSAEncryption
95:fb:e5:30:df:ee:18:de:b1:f1:2e:9b:e4:c4:b3:95:fb:0b:
4a:f4:f9:1d:fe:9e:2b:7b:0e:26:75:09:3f:94:db:3e:f7:12:
d7:3a:66:a8:a9:9c:91:d5:6a:a4:a4:3c:3c:ca:52:0e:40:9f:
fb:c4:d6:23:69:a0:91:01:18:61:fb:93:90:d0:5c:6c:0e:68:
a9:ef:93:21:97:9b:dd:12:89:59:f9:16:bb:bc:16:4c:f6:ac:
b9:b5:76:43:f0:18:1f:71:50:02:c1:6f:ca:e1:9e:2c:0e:80:
c7:63:49:ac:0f:cd:0c:cd:3b:dd:c4:3f:7e:c0:75:4a:bd:f8:
1a:4f:17:78:93:4b:ad:64:a0:b7:c9:0d:e1:9b:29:40:42:d7:
cb:9d:20:50:b2:25:b2:e2:82:bf:8d:77:0d:fa:2b:85:68:71:
a6:73:cb:e5:82:ab:67:c7:2e:c0:f6:19:a4:2c:ce:80:56:dd:
58:b6:6e:55:23:8b:50:96:4a:2c:7f:3d:b0:f7:20:60:b1:61:
83:a8:39:d5:32:df:97:1a:8d:70:18:c0:73:8c:83:b2:c7:14:
0c:f2:ab:3c:3b:45:92:f8:d7:db:ee:ad:6d:94:55:fc:8c:6e:
87:8c:2b:69:bc:c8:06:0a:d3:a4:29:b9:c4:ff:80:64:8e:d4:
56:46:76:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org