Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/guLQN46oSGzXsoZfXShQ2-Oj4Eg.roa
File: guLQN46oSGzXsoZfXShQ2-Oj4Eg.roa (raw, json)
Hash identifier: 5h+BYQWsrsjsF+lc5U3VCC+5nXwFuz+cRPmEavVWhqU=
Subject key identifier: 82:E2:D0:37:8E:A8:48:6C:D7:B2:86:5F:5D:28:50:DB:E3:A3:E0:48
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1AA0E85F
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/guLQN46oSGzXsoZfXShQ2-Oj4Eg.roa
Signing time: Sat 01 Jan 2022 12:02:37 +0000
ROA not before: Sat 01 Jan 2022 12:02:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 812
IP address blocks: 45.43.87.0/24 maxlen: 24
107.181.150.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446752863 (0x1aa0e85f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Jan 1 12:02:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82e2d0378ea8486cd7b2865f5d2850dbe3a3e048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3c:86:dc:e5:2d:ee:ca:f7:02:2c:11:62:68:
e3:0f:83:0e:f1:be:92:0e:4a:a6:d0:c7:28:7c:bc:
93:96:4e:c1:23:64:8e:8c:f0:dc:31:97:70:42:07:
fd:ce:5f:30:b7:74:53:14:f2:69:65:5e:e7:bf:2e:
b4:f4:ed:80:9d:94:19:f5:7f:7f:4a:53:26:17:5f:
a6:21:b9:1a:5f:8a:1f:39:ed:89:a6:ca:c6:a4:7b:
e6:43:cb:c7:c1:5e:64:eb:08:1b:36:c0:ca:a1:15:
6b:79:08:c0:32:fc:d0:ab:45:02:94:71:7c:13:3e:
28:81:61:50:6a:3c:44:12:1d:19:ed:9a:1d:da:ae:
67:31:e0:12:43:52:03:ed:e8:90:d4:db:31:ef:de:
17:87:43:fb:2d:52:d0:33:fa:b1:e9:46:19:d3:26:
69:a3:4a:c4:32:49:79:71:d3:cc:5e:e5:7b:f7:03:
ce:74:a5:f1:59:97:b0:97:9c:15:d8:b6:b4:2d:b2:
be:60:da:4e:c9:2f:1e:27:10:cc:3e:fa:6d:48:89:
a5:46:63:49:3f:83:e9:db:36:5b:c2:bd:5a:27:14:
ed:e8:49:bf:46:f8:8d:a3:83:bc:ea:d2:1c:c7:5f:
7b:98:4d:de:38:01:da:2d:cf:78:4b:c4:05:ce:0a:
d1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:E2:D0:37:8E:A8:48:6C:D7:B2:86:5F:5D:28:50:DB:E3:A3:E0:48
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/guLQN46oSGzXsoZfXShQ2-Oj4Eg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.87.0/24
107.181.150.0/24
Signature Algorithm: sha256WithRSAEncryption
13:5c:74:43:05:38:02:60:cd:4d:57:fe:ab:52:de:b2:a7:1d:
5f:8f:fd:da:35:73:ed:e2:17:38:02:59:fa:38:e5:af:37:b2:
01:95:44:a1:0e:dc:3c:39:51:e7:88:2c:35:e5:dd:0b:34:dc:
4a:2a:2f:db:ec:4f:10:12:72:e2:a9:9b:97:1f:71:08:3a:f7:
ab:c8:fb:85:4d:4e:25:b4:96:a3:db:7b:0d:1b:6a:9d:02:3c:
eb:1f:59:4f:12:82:c5:91:0d:5f:e3:60:c8:e8:a2:c3:6a:62:
9f:1e:06:63:a7:01:88:af:25:25:ec:26:0a:ed:6c:91:ce:23:
23:7b:f2:df:f9:d9:29:eb:46:d8:84:f7:48:d0:37:42:b6:01:
6b:75:e1:98:2d:b6:66:57:e4:6d:5e:0c:65:d6:b6:09:8e:59:
73:46:b9:6d:69:ed:29:56:97:0e:2b:78:65:f9:ec:a1:b7:93:
28:ef:da:c2:af:0c:38:10:ed:41:ce:a4:e6:0f:13:37:1b:7b:
7c:d7:83:68:31:aa:4e:61:cc:9d:d3:f9:05:1f:57:fa:02:e8:
9f:0a:c5:3e:0e:e5:85:77:0f:f5:7e:ba:66:a6:dc:5d:71:d4:
d2:22:e4:5e:fd:33:5f:55:de:49:7e:1b:13:24:e0:06:38:da:
25:8f:52:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:14 2023 by rpki-client on console-ams.rpki-client.org