Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/E-iHk8_a4Wl_0aUBFZq9vpPob8c.roa
File: E-iHk8_a4Wl_0aUBFZq9vpPob8c.roa (raw, json)
Hash identifier: GMf6fbX/fLv0pY1VMoHHrdJEYbbmxRb8WzbqFVA2RGg=
Subject key identifier: 13:E8:87:93:CF:DA:E1:69:7F:D1:A5:01:15:9A:BD:BE:93:E8:6F:C7
Certificate issuer: /CN=bfff419659f54df378792b602c0092c353988ec8
Certificate serial: 0185069CBD50669C43A1EF66F4A4240178D1
Authority key identifier: BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/E-iHk8_a4Wl_0aUBFZq9vpPob8c.roa
Signing time: Mon 12 Dec 2022 13:53:33 +0000
ROA not before: Mon 12 Dec 2022 13:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207790
IP address blocks: 45.129.244.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:9c:bd:50:66:9c:43:a1:ef:66:f4:a4:24:01:78:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfff419659f54df378792b602c0092c353988ec8
Validity
Not Before: Dec 12 13:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13e88793cfdae1697fd1a501159abdbe93e86fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:5f:6a:81:9f:d6:5f:22:a4:74:e8:a8:f2:76:
a0:2f:c1:35:b0:8d:4b:30:79:d9:ae:d2:e9:7c:a9:
d4:7c:d8:05:26:a6:fe:f3:0a:c8:ca:cf:73:b8:90:
d5:06:29:0b:87:ac:62:41:03:4f:78:67:32:d4:d5:
40:5c:b8:d1:e3:dd:93:e5:ce:a9:07:f2:04:d4:67:
4d:f3:da:5f:0d:ec:2a:21:6c:92:49:ac:0c:da:87:
bb:d6:9a:03:e2:f7:a2:28:05:12:45:01:82:bf:56:
f8:63:e6:d9:5c:dd:f4:ec:3c:64:24:26:75:f2:24:
fb:51:4d:68:cb:6d:34:27:52:7a:e9:d1:ad:42:4a:
aa:0d:88:ee:97:13:5f:67:f3:11:ee:51:79:e3:68:
a2:e8:4b:50:7b:72:42:27:15:fd:f8:d6:e5:67:a6:
8b:8c:d7:e6:e4:f8:ef:af:da:03:f3:4e:8f:c6:50:
e9:ad:32:d8:8b:25:a3:41:e3:23:5f:79:58:b8:9c:
2f:03:bc:31:57:93:c3:73:a2:52:78:45:b5:6f:2d:
2e:d1:f9:3a:d5:5b:66:b8:07:33:ed:df:ee:01:1c:
2a:68:c2:43:5c:18:3c:f8:13:79:75:6d:29:f1:69:
f6:9e:3d:9c:33:b5:44:ae:6d:c0:d5:fc:0e:f8:1e:
25:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:E8:87:93:CF:DA:E1:69:7F:D1:A5:01:15:9A:BD:BE:93:E8:6F:C7
X509v3 Authority Key Identifier:
keyid:BF:FF:41:96:59:F5:4D:F3:78:79:2B:60:2C:00:92:C3:53:98:8E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v_9Blln1TfN4eStgLACSw1OYjsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/E-iHk8_a4Wl_0aUBFZq9vpPob8c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/2ba138-1737-4714-960a-70bdf15dd619/1/v_9Blln1TfN4eStgLACSw1OYjsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.244.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:ba:e2:74:3f:f8:ed:56:17:b8:ed:88:31:90:9c:f9:d7:df:
18:d2:b2:b7:cc:cb:0d:6f:36:a3:be:17:ac:75:9e:5f:3e:c2:
70:57:13:bd:39:8a:12:d8:00:cc:05:2b:ad:84:f4:6d:b9:01:
57:f7:30:c0:05:5e:f3:db:43:a9:10:75:75:06:5c:c2:d1:3b:
94:cf:c0:9a:4c:b5:1d:9a:85:2f:b4:73:c6:cc:db:24:9b:a5:
d7:b0:5a:f5:22:b1:c9:02:5a:9d:61:cc:bf:c9:90:26:41:47:
34:d7:55:c8:8b:de:c1:4e:a1:36:85:24:7d:86:1a:46:d3:5b:
f8:12:ef:51:a1:94:54:a1:dd:27:9b:2e:83:9f:4d:98:13:ac:
c7:87:0a:87:5d:23:20:7f:c5:ea:64:6e:32:51:99:01:d7:66:
39:38:d3:78:1c:4d:0c:76:73:76:ce:b5:37:07:38:00:67:ff:
2c:29:91:77:fc:5e:69:65:94:11:79:2f:31:6f:a0:07:b8:63:
c5:58:cb:35:b6:d2:6f:23:ff:15:bb:70:8a:c6:9f:d6:c3:d0:
15:43:bd:54:b1:90:bf:13:9c:85:c8:08:a4:83:6a:57:06:93:
b2:28:a9:79:91:2d:3e:30:6e:57:f7:83:fb:f8:cb:15:86:6a:
46:10:bd:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:02 2023 by rpki-client on console-ams.rpki-client.org