Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/IHseZ_omWfs8hyYOYWDrNbEx7YQ.roa
File: IHseZ_omWfs8hyYOYWDrNbEx7YQ.roa (raw, json)
Hash identifier: WeGtEEx29Bey3H+6znsFt/ngNxLE5qBuVItTwykXwsc=
Subject key identifier: 20:7B:1E:67:FA:26:59:FB:3C:87:26:0E:61:60:EB:35:B1:31:ED:84
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1ACA9B24
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/IHseZ_omWfs8hyYOYWDrNbEx7YQ.roa
Signing time: Wed 23 Mar 2022 16:12:24 +0000
ROA not before: Wed 23 Mar 2022 16:12:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212477
IP address blocks: 45.140.140.0/22 maxlen: 24
45.140.188.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 449485604 (0x1aca9b24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Mar 23 16:12:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=207b1e67fa2659fb3c87260e6160eb35b131ed84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6a:cc:71:df:4b:91:07:64:30:72:95:98:a5:
a9:93:52:af:dd:b9:2b:b8:42:a1:88:15:55:63:14:
5d:e7:5b:ab:3a:23:e0:ae:16:76:0d:37:f6:3a:ac:
de:c2:04:ef:a6:ef:9b:ef:10:dc:e8:91:2e:02:5a:
d7:00:45:05:5a:8a:20:c8:b9:98:36:b9:15:34:3e:
4e:10:ce:0c:f9:9b:cd:48:4d:52:67:36:b7:eb:7a:
f9:7e:39:6e:5b:fe:5f:65:07:1c:06:d8:0c:30:3b:
ff:c6:0e:18:0e:c2:09:cb:f6:d6:51:b1:17:d3:76:
6f:27:2b:d1:93:b4:bd:d9:df:a5:cd:d6:49:f5:a0:
00:d5:e8:54:2d:55:0f:5a:5c:46:4d:cd:c5:d1:cf:
b7:8b:56:9d:01:f2:c9:c6:f4:62:2d:20:4b:da:00:
a6:a6:d0:89:24:47:8f:aa:06:cc:1c:38:8f:09:ad:
a1:2b:8a:ed:d7:1a:e2:b4:6b:2d:e7:0c:1e:50:06:
43:df:e4:9b:69:5f:d5:ee:7b:59:dc:9e:51:56:d1:
47:6d:1e:78:9d:66:95:ef:f9:cb:4c:4c:66:5f:3a:
ab:82:9e:84:a9:a3:6b:57:ae:06:e2:1a:ca:4f:b0:
61:77:f1:73:62:65:dd:c8:9b:5d:0a:a9:63:c5:6b:
38:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:7B:1E:67:FA:26:59:FB:3C:87:26:0E:61:60:EB:35:B1:31:ED:84
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/IHseZ_omWfs8hyYOYWDrNbEx7YQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.140.0/22
45.140.188.0/22
Signature Algorithm: sha256WithRSAEncryption
ad:c7:35:06:99:60:0c:9f:c8:ed:49:0b:7c:bd:98:6e:82:eb:
16:19:9c:ff:26:9e:7b:2d:5e:82:37:38:8b:a8:0f:82:b3:e3:
aa:ba:14:64:0b:d0:4c:6f:06:74:8f:1e:74:ee:7d:bc:94:47:
cd:e0:c7:ce:58:1d:8a:fe:51:a1:86:a0:1f:c7:0d:a1:20:f7:
65:b1:e4:23:aa:ee:16:59:90:65:b9:d9:48:ea:9a:35:d5:c6:
c8:a9:7f:22:e7:be:b6:3a:90:e7:89:e6:1e:fc:a9:11:d4:c7:
05:61:bd:e0:c5:c2:c2:36:86:d7:21:c8:9e:43:57:40:3e:44:
61:2c:16:bc:03:70:85:79:42:bc:d5:c5:68:0d:18:22:23:c7:
2b:57:bf:ff:da:2e:a2:2b:ad:4c:44:31:0b:f7:fe:18:f1:38:
7c:fc:40:e5:0a:ea:df:74:2d:ce:c2:e4:01:fa:23:ee:d1:87:
d1:fb:75:06:23:75:97:b2:30:f9:4e:43:0f:09:ce:03:cf:a7:
d9:8d:c4:49:b2:b4:c8:d3:dc:02:67:4a:63:56:bf:88:f8:a6:
ae:61:df:20:c9:e7:2d:13:01:a4:46:4c:38:49:7c:7e:38:ee:
5c:97:81:1a:69:6f:0d:58:0c:93:d8:aa:5c:43:56:58:75:33:
dc:07:41:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org