Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/P91G7usx13kuKVAqId2IrNoRQs4.roa
File: P91G7usx13kuKVAqId2IrNoRQs4.roa (raw, json)
Hash identifier: h34OrH6cVTxfEEZVNgHKFZo+3PtxFxeMOJbU5qjnmhE=
Subject key identifier: 3F:DD:46:EE:EB:31:D7:79:2E:29:50:2A:21:DD:88:AC:DA:11:42:CE
Certificate issuer: /CN=9573c1a56ecc24a57d2b684e5482dab7b8d9d2cb
Certificate serial: 0181FBEC34CC2CB8992201E2BC680602BC3C
Authority key identifier: 95:73:C1:A5:6E:CC:24:A5:7D:2B:68:4E:54:82:DA:B7:B8:D9:D2:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXPBpW7MJKV9K2hOVILat7jZ0ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/P91G7usx13kuKVAqId2IrNoRQs4.roa
Signing time: Thu 14 Jul 2022 08:56:10 +0000
ROA not before: Thu 14 Jul 2022 08:56:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34549
IP address blocks: 45.153.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:fb:ec:34:cc:2c:b8:99:22:01:e2:bc:68:06:02:bc:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9573c1a56ecc24a57d2b684e5482dab7b8d9d2cb
Validity
Not Before: Jul 14 08:56:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fdd46eeeb31d7792e29502a21dd88acda1142ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a1:4f:8c:11:6c:6b:0c:f1:81:f5:cb:82:51:
64:14:73:ae:70:7f:e7:32:92:68:63:b2:5a:4f:f4:
6c:04:f7:a1:94:c6:c1:a3:55:35:b5:72:a7:4e:04:
bc:8a:04:4a:7d:b4:c7:6d:0c:2c:08:1a:60:67:08:
2b:8c:87:07:b0:fd:6b:35:b8:f6:a8:23:ea:73:f3:
81:ae:0c:10:19:ec:38:cb:4f:d6:f9:d0:dc:2c:05:
03:49:91:a2:aa:49:00:31:78:20:ff:1b:cf:2a:98:
40:37:ec:8d:5e:d9:2a:b0:c4:c6:d5:e3:c1:1b:9a:
91:d2:08:7f:7d:2f:40:e9:7d:3d:18:5e:8e:29:71:
df:3f:25:74:11:91:a9:77:99:87:c4:8d:9f:03:4f:
4e:48:7a:fb:57:02:53:0b:92:6c:c3:8b:72:c2:88:
24:9a:61:c2:2a:95:e5:40:5b:e3:53:83:f3:71:47:
c1:e2:99:b7:ad:87:3f:bb:0a:06:ea:73:5b:fa:fc:
b4:9f:84:57:f8:07:36:9c:6c:f7:6d:8d:d2:4c:87:
37:ca:cb:a0:96:36:40:da:7a:97:56:b2:46:b0:1e:
ed:0f:96:f6:1d:e8:8e:78:d7:b9:95:8a:aa:a5:66:
46:53:da:2d:bb:52:da:29:f8:a8:ac:98:3d:54:90:
4b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:DD:46:EE:EB:31:D7:79:2E:29:50:2A:21:DD:88:AC:DA:11:42:CE
X509v3 Authority Key Identifier:
keyid:95:73:C1:A5:6E:CC:24:A5:7D:2B:68:4E:54:82:DA:B7:B8:D9:D2:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXPBpW7MJKV9K2hOVILat7jZ0ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/P91G7usx13kuKVAqId2IrNoRQs4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/lXPBpW7MJKV9K2hOVILat7jZ0ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.160.0/22
Signature Algorithm: sha256WithRSAEncryption
63:ef:ca:22:21:97:06:5f:9f:89:d8:b8:2d:5b:a2:86:be:d4:
97:77:67:0d:fc:02:95:af:1a:c6:96:46:ab:fd:14:e8:f7:8a:
c5:45:28:b6:01:41:7c:d7:3a:b7:e4:5a:c7:ff:e9:ea:9b:55:
1e:48:74:22:1c:2c:66:9c:07:1c:e3:d7:4f:38:52:27:94:70:
7c:0f:39:5f:11:dd:84:78:11:10:ed:fd:e8:e4:72:ae:f3:b1:
9f:9c:04:77:6c:49:04:f7:52:69:04:a6:74:f2:00:06:db:c3:
f8:55:39:0a:83:91:74:30:b0:d4:3b:13:1c:8f:03:37:82:f0:
4f:53:f5:2b:01:1b:3f:b9:df:6d:fd:dc:b9:ef:ef:b2:10:05:
ea:e9:ae:bb:7a:fa:8c:ab:7a:a1:67:74:79:44:3b:ee:c2:9d:
cb:32:79:0a:17:da:0d:39:2f:c3:64:75:7e:c3:98:a7:ef:71:
6c:3f:12:07:62:83:a1:52:18:9b:4a:be:fb:1a:51:18:4a:e3:
28:cb:24:33:38:38:e9:c1:44:24:ca:30:a0:44:fe:61:3c:ea:
8d:c7:0f:99:3b:98:4f:57:91:02:f7:5d:d4:a6:e8:38:37:9c:
9c:23:2e:2a:65:54:d2:c4:f0:ba:95:fa:53:ac:87:d3:df:92:
f8:f2:ac:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:12 2023 by rpki-client on console-fra.rpki-client.org