Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HA4oCDpR8W-oL-oAxVerHzXYVtE.roa
File: HA4oCDpR8W-oL-oAxVerHzXYVtE.roa (raw, json)
Hash identifier: Jzt7r2OJNMUDE7k109akQFi1Uaeobx+7ccxqOggKORw=
Subject key identifier: 1C:0E:28:08:3A:51:F1:6F:A8:2F:EA:00:C5:57:AB:1F:35:D8:56:D1
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19EC7AAC
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HA4oCDpR8W-oL-oAxVerHzXYVtE.roa
Signing time: Sat 01 Jan 2022 15:56:52 +0000
ROA not before: Sat 01 Jan 2022 15:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209014
IP address blocks: 45.149.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434928300 (0x19ec7aac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1c0e28083a51f16fa82fea00c557ab1f35d856d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0c:3b:fe:f2:ca:d5:ba:d2:a6:6a:f8:e3:08:
5e:de:f2:20:9f:16:73:d5:a6:e8:f7:b7:0b:11:e8:
ed:50:0a:a9:e0:f9:fb:a6:45:1a:b3:39:85:67:8b:
96:0b:6b:03:3f:d9:d1:65:81:ea:d2:aa:52:c1:dd:
ee:ac:84:dd:65:b1:1d:e3:65:a3:68:2d:dc:56:30:
50:3b:a4:96:ef:bb:f2:00:bf:54:d6:75:90:0a:38:
f3:9d:d3:91:fe:13:f9:49:9d:0a:d8:13:83:50:a5:
57:37:f4:36:fa:ff:f8:36:26:cd:63:84:37:dd:b4:
4c:7d:be:75:2f:4b:eb:b3:c7:9e:a5:59:d0:a8:89:
ad:24:1b:4a:d0:1a:c6:81:01:39:33:dd:e4:c1:f1:
be:f8:3f:1b:89:34:07:d1:8f:ff:53:b3:d7:2f:a5:
d6:2e:da:5e:0c:9f:3c:c3:54:fc:9b:b6:6d:d6:8c:
2f:54:96:89:7a:11:b0:6e:85:34:b7:de:fc:28:55:
ae:f1:70:92:6c:9c:53:73:42:ba:45:0b:76:20:20:
12:87:33:c2:a5:c1:70:f6:3d:37:36:f0:e3:1e:95:
c0:53:d2:be:4f:68:76:05:cb:e4:ff:5c:a6:b9:78:
17:d0:01:c3:bb:ac:4a:df:58:f0:db:e1:cc:a3:ee:
49:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:0E:28:08:3A:51:F1:6F:A8:2F:EA:00:C5:57:AB:1F:35:D8:56:D1
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/HA4oCDpR8W-oL-oAxVerHzXYVtE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.2.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:f1:4a:84:8c:0e:26:36:4e:4e:81:17:85:bf:fe:1d:55:da:
11:b7:b5:fa:44:88:b9:68:6c:e6:df:dd:8c:8f:29:9b:23:49:
83:a2:ce:64:73:5d:01:3f:33:ad:3a:8f:af:73:58:f7:b3:15:
76:2d:bd:e1:a0:f2:46:22:88:2e:7e:a2:e5:fc:0d:4d:d5:b1:
c6:38:d8:20:56:69:87:14:ae:71:b6:7e:79:e2:4c:ed:c3:0d:
4c:8c:36:f8:3e:b2:fb:52:6e:7c:28:55:fd:76:5c:cd:00:af:
ea:c6:7c:38:9d:43:12:6b:90:63:87:60:c1:10:40:70:99:6e:
ef:64:ff:6a:d3:b4:11:de:f4:90:1e:a4:a0:37:34:4b:c7:8c:
80:2c:98:bd:3d:cd:77:d9:28:96:9f:72:cc:ff:26:fa:76:a6:
d7:ce:05:19:da:4d:43:c9:65:62:bf:05:a6:4e:00:6b:58:07:
26:32:d5:d2:7a:e3:0f:37:0a:7f:76:41:e8:84:b3:1f:3c:a7:
fa:01:1c:e2:42:70:46:24:3b:de:33:73:9f:a9:7e:f7:84:55:
df:7e:e0:39:20:52:fd:26:ae:f8:11:fc:7c:0d:36:9d:1e:67:
a5:f7:de:4f:54:fe:4b:5c:cd:9d:7c:21:77:28:20:cc:15:07:
aa:7c:60:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org