Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/v6WPCVPP6MHmAv7qD5EHmRkinpo.roa
File: v6WPCVPP6MHmAv7qD5EHmRkinpo.roa (raw, json)
Hash identifier: iuVPeBY2ijnrAriPNdJLc9Q4yv8OysyNwHBfWefghAk=
Subject key identifier: BF:A5:8F:09:53:CF:E8:C1:E6:02:FE:EA:0F:91:07:99:19:22:9E:9A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01847EF741E30C41B91E16A387FD12991143
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/v6WPCVPP6MHmAv7qD5EHmRkinpo.roa
Signing time: Wed 16 Nov 2022 05:44:04 +0000
ROA not before: Wed 16 Nov 2022 05:44:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3215
IP address blocks: 45.140.214.0/24 maxlen: 24
45.145.249.0/24 maxlen: 24
45.142.206.0/24 maxlen: 24
45.142.204.0/24 maxlen: 24
45.144.158.0/24 maxlen: 24
45.144.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7e:f7:41:e3:0c:41:b9:1e:16:a3:87:fd:12:99:11:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Nov 16 05:44:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bfa58f0953cfe8c1e602feea0f91079919229e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ff:64:27:f1:78:c1:3a:8f:61:68:71:c3:3d:
6f:13:f6:ba:73:18:10:5c:f2:2e:97:64:70:d7:5a:
73:fa:9b:70:02:44:43:af:90:63:a0:d1:5e:4e:6a:
f6:85:5b:97:9e:86:3c:96:01:d9:42:fc:9e:f7:5b:
86:04:b1:6d:1a:06:1e:62:3e:e4:36:55:d9:84:46:
b4:87:71:5a:14:f6:98:35:ef:bf:1f:73:fc:b6:48:
e4:e4:f4:45:89:dd:68:58:c1:d4:e2:15:60:52:cc:
0e:39:ba:c2:55:92:2b:83:43:b7:64:0c:32:81:66:
58:57:d4:dc:64:d0:67:87:23:9a:1c:f6:88:a8:ec:
f8:99:e5:14:41:c0:c1:9d:e7:54:36:e7:5a:4f:ad:
a6:e0:6b:12:20:56:43:9e:a7:eb:ae:da:31:4e:97:
d0:9a:64:f9:3e:65:bb:aa:44:42:4d:e2:65:41:c8:
d1:2c:c8:fa:bc:f7:61:e2:29:96:5c:fc:53:03:ed:
d2:5a:98:a1:52:13:f0:46:31:6f:01:ba:28:d6:61:
5e:4a:c3:0e:56:14:d7:c6:6d:d7:45:f5:93:7a:d6:
9a:83:da:95:9c:68:37:34:52:03:72:cf:9c:83:c9:
20:98:dc:c8:9f:fa:5d:4d:db:a0:66:91:48:22:4a:
58:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:A5:8F:09:53:CF:E8:C1:E6:02:FE:EA:0F:91:07:99:19:22:9E:9A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/v6WPCVPP6MHmAv7qD5EHmRkinpo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.214.0/24
45.142.204.0/24
45.142.206.0/24
45.144.156.0/24
45.144.158.0/24
45.145.249.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:79:67:11:13:67:63:02:9a:a7:f8:d8:18:4c:8f:f6:18:28:
3d:3c:67:0a:70:4b:a0:87:f2:94:0d:60:22:c3:f0:56:de:fa:
01:29:f7:56:66:28:e5:93:5c:10:34:86:98:15:f6:36:b1:89:
4e:3e:bf:16:5a:5d:6d:38:fb:24:84:a7:af:a5:1c:37:48:0e:
32:e3:0e:23:b0:82:bf:bb:cc:91:5e:a4:1f:e1:47:00:45:8e:
e7:9c:2b:64:2f:3e:9f:67:b0:5a:40:53:ba:b6:e4:0f:34:8f:
e0:cb:b0:e4:42:04:16:8d:05:11:f5:aa:de:f6:86:24:cb:ac:
8d:f3:4b:39:ac:37:72:af:3b:0a:da:25:d1:91:20:7f:70:ab:
c9:2c:7a:36:11:da:be:fc:fc:94:74:6b:d2:16:37:ff:c2:ad:
ea:9a:6e:00:7b:02:07:24:7e:1d:3c:b7:62:76:04:da:ce:e2:
c3:29:b3:1f:92:c0:33:fd:76:9a:0f:1c:88:d5:c7:e4:26:db:
d6:67:0a:9d:1f:b3:ed:5f:6e:67:49:8b:c7:13:59:57:9b:16:
b2:66:2d:fc:d2:07:43:5a:13:70:e3:cd:04:72:4f:a4:6d:f4:
82:ad:35:f4:8e:60:f0:cd:04:40:42:1e:ba:8e:26:61:78:35:
c2:4a:d0:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org