Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/7mbHz7lRVFDJOtyx9vNqBpGpWr0.roa
File: 7mbHz7lRVFDJOtyx9vNqBpGpWr0.roa (raw, json)
Hash identifier: B4tzRgdrdSW/ak7BW7I3qYIfFwZ4QWVK0qz39UTg4TM=
Subject key identifier: EE:66:C7:CF:B9:51:54:50:C9:3A:DC:B1:F6:F3:6A:06:91:A9:5A:BD
Certificate issuer: /CN=bfff419659f54df378792b602c0092c353988ec8
Certificate serial: 0185069CBD07AFA2DBF2853BF7DD5EADDDE5
Authority key identifier: BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/7mbHz7lRVFDJOtyx9vNqBpGpWr0.roa
Signing time: Mon 12 Dec 2022 13:53:33 +0000
ROA not before: Mon 12 Dec 2022 13:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8881
IP address blocks: 45.129.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:9c:bd:07:af:a2:db:f2:85:3b:f7:dd:5e:ad:dd:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfff419659f54df378792b602c0092c353988ec8
Validity
Not Before: Dec 12 13:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ee66c7cfb9515450c93adcb1f6f36a0691a95abd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:05:63:8c:f6:80:dc:01:fd:d0:ab:c1:bb:9c:
4a:0b:64:15:28:8e:48:c3:03:b2:49:c7:40:0f:f8:
19:39:b6:e0:a7:4f:00:17:ff:c3:89:64:de:9e:92:
5d:6e:1c:e0:b7:4d:55:e7:1f:f3:35:75:25:51:d7:
b8:5a:08:f3:4e:1d:4b:4e:3b:22:8a:e6:45:14:77:
07:c8:e4:f8:6b:ea:be:47:09:ca:f2:b3:99:21:b6:
b9:8c:90:b1:2e:11:53:d6:15:b3:3d:53:1d:8e:85:
9d:b9:db:b6:16:22:70:19:cf:47:bc:20:5f:a2:90:
9b:ee:ca:a4:ea:0d:76:9d:de:ab:3a:06:61:4e:40:
e6:0d:ca:77:1a:83:6d:12:87:e6:55:8c:c6:1e:9b:
70:78:e8:2a:84:1d:31:e0:68:c5:f0:2a:85:40:fd:
85:ab:c2:36:0b:d9:dc:bb:8d:72:cf:79:d6:7f:b7:
e5:13:1a:41:6f:a6:61:b0:9d:ac:c2:4a:ff:31:84:
29:e8:1d:dc:b6:ca:e4:eb:eb:95:38:54:6b:71:a0:
e1:55:82:8a:39:4b:18:91:71:ba:48:cc:44:7a:d6:
32:94:99:9c:44:78:bc:8c:5e:9c:63:86:b6:f2:d6:
d1:82:eb:af:06:bd:58:a2:6d:f0:ce:45:19:37:02:
bd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:66:C7:CF:B9:51:54:50:C9:3A:DC:B1:F6:F3:6A:06:91:A9:5A:BD
X509v3 Authority Key Identifier:
keyid:BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/7mbHz7lRVFDJOtyx9vNqBpGpWr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.244.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:76:c6:90:75:02:4b:2f:a4:47:70:c9:21:71:9b:aa:af:6c:
1a:b9:34:c3:b7:ff:a5:9b:d9:3a:02:10:ce:6d:69:2d:81:0d:
e6:f7:72:bd:64:6c:f4:35:60:56:53:d0:9c:e0:04:93:ac:a5:
7e:85:54:af:53:ca:db:8d:f6:cc:12:6f:18:f9:8a:9e:f2:6d:
1b:0f:f5:0c:2f:f3:ba:e0:d5:dd:0f:e4:b9:f1:6c:c0:0e:f9:
fe:a1:a3:58:ce:42:db:32:b1:eb:e6:11:50:0c:55:37:6d:8e:
b3:d1:ce:1c:44:9b:f5:8c:20:a3:c3:db:5a:9c:9a:23:41:f4:
57:bb:cc:92:62:be:ce:ad:6e:53:6b:54:b0:f0:72:2c:88:b5:
39:ea:06:8e:ee:42:d3:16:71:ba:1a:61:1a:d0:0d:e4:d9:a0:
84:ad:ce:91:63:dd:71:a7:35:34:ab:31:26:74:28:94:4d:6a:
e9:9e:b5:b1:a0:e7:07:ce:a7:71:87:22:ee:19:7d:41:3c:0e:
6f:e7:92:a1:b0:0a:94:47:11:72:0c:ce:6d:7c:ad:00:dd:eb:
42:40:4e:b0:21:79:d0:fc:d5:44:e6:2f:18:4b:ef:4c:1d:d4:
1e:c4:ce:fb:d0:21:4e:da:80:ea:77:c0:08:08:a6:9e:32:57:
96:a5:e5:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:02 2023 by rpki-client on console-ams.rpki-client.org