Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/fYamtEnLSFXI43d3-rcCE9jUoeg.roa
File: fYamtEnLSFXI43d3-rcCE9jUoeg.roa (raw, json)
Hash identifier: bnk3is+KMe5RE/eBKQhb08PSrztTuYD1xwRQfFzIBf8=
Subject key identifier: 7D:86:A6:B4:49:CB:48:55:C8:E3:77:77:FA:B7:02:13:D8:D4:A1:E8
Certificate issuer: /CN=127af6c693573a2270c9237875456c2df0b503c2
Certificate serial: 0184F6FD362982C7406731A59FB84DDC5A11
Authority key identifier: 12:7A:F6:C6:93:57:3A:22:70:C9:23:78:75:45:6C:2D:F0:B5:03:C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Enr2xpNXOiJwySN4dUVsLfC1A8I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/fYamtEnLSFXI43d3-rcCE9jUoeg.roa
Signing time: Fri 09 Dec 2022 13:05:00 +0000
ROA not before: Fri 09 Dec 2022 13:05:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208296
IP address blocks: 45.141.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f6:fd:36:29:82:c7:40:67:31:a5:9f:b8:4d:dc:5a:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=127af6c693573a2270c9237875456c2df0b503c2
Validity
Not Before: Dec 9 13:05:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d86a6b449cb4855c8e37777fab70213d8d4a1e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:1b:08:4d:a5:0c:64:87:fa:e2:70:a6:a9:5b:
45:0f:42:64:7e:8d:c9:64:14:80:1d:86:88:b7:75:
0d:9d:b4:8c:38:7b:cc:51:8b:c6:61:b0:3b:f6:c4:
45:7e:74:c4:de:02:b3:17:c7:15:4f:d3:a8:05:a6:
7f:bc:a9:ff:fd:e6:bb:65:89:ca:cb:3d:f4:eb:75:
b4:f9:bf:d0:09:de:d3:39:ff:14:ae:48:5d:b5:4a:
49:cf:e1:67:fd:e3:70:f4:2d:bc:75:bc:95:70:aa:
1b:a3:f9:ff:03:16:6d:fc:e8:be:58:5c:42:ab:ee:
64:f1:25:76:42:77:3d:96:be:46:e2:c8:23:b5:fd:
6f:20:b5:dc:75:39:c6:45:05:52:d8:a1:ef:0b:95:
aa:73:96:df:df:56:6e:e1:5d:23:16:e6:a6:1d:8b:
51:7d:f5:d3:b9:25:6c:72:f2:ce:75:4d:1a:44:8f:
bd:a0:c2:d4:3e:e8:8b:44:19:92:e4:23:c4:aa:63:
1c:0e:6c:bd:cf:5b:fc:0b:1c:d7:a2:8d:6e:71:ba:
dc:49:de:8f:4e:90:dc:54:e0:45:22:9c:35:f6:f4:
64:66:cb:cf:dd:b7:dd:b7:2a:27:14:d1:d4:a7:13:
39:07:ac:cb:70:aa:5b:a3:b0:81:c7:8b:e4:cf:97:
ac:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:86:A6:B4:49:CB:48:55:C8:E3:77:77:FA:B7:02:13:D8:D4:A1:E8
X509v3 Authority Key Identifier:
keyid:12:7A:F6:C6:93:57:3A:22:70:C9:23:78:75:45:6C:2D:F0:B5:03:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Enr2xpNXOiJwySN4dUVsLfC1A8I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/fYamtEnLSFXI43d3-rcCE9jUoeg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/0d362c-f863-4d40-80bd-85fc5fd90fd8/1/Enr2xpNXOiJwySN4dUVsLfC1A8I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.40.0/22
Signature Algorithm: sha256WithRSAEncryption
7d:07:6a:c1:ad:32:d7:17:95:e0:d2:41:49:ec:7c:20:6e:a4:
b5:5c:15:42:4b:c5:9f:33:f5:1c:de:ed:6f:57:2b:b7:dc:72:
5e:50:c9:67:c3:ee:82:e6:e0:7b:8d:c0:1f:1a:98:32:91:98:
9a:88:23:c0:ee:a4:a4:84:8a:26:82:89:58:74:ca:89:39:1b:
ac:98:1d:a0:4d:a6:0a:39:c5:b9:7b:02:62:0b:80:cd:ca:7c:
01:98:7f:3f:e9:2c:f7:c4:88:79:f0:e9:54:54:ec:24:4c:5a:
cb:5f:11:8b:e5:5f:a4:ce:09:19:d1:be:6e:0f:d3:25:92:dd:
f7:8a:31:52:3f:49:a8:3c:af:0b:c2:2f:0c:9c:f6:b8:d3:95:
54:c9:fe:fb:d5:17:bb:40:09:02:ab:76:a0:51:77:42:36:ca:
ca:af:4f:cf:37:1e:1f:47:c5:e7:0b:af:11:02:6f:9c:52:c4:
4f:12:0b:85:b4:dd:d6:bf:35:cb:6e:b3:e1:c4:c7:82:5a:1e:
91:52:26:36:93:d7:06:c8:62:7a:39:2c:08:f3:b6:92:0b:93:
ee:36:bd:0e:1b:94:f9:1d:58:81:f5:57:a3:58:ce:e5:ba:ef:
62:e0:cc:9b:ba:16:d8:1f:17:6e:80:12:ed:d7:bb:3b:42:6a:
6f:5e:da:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:27 2023 by rpki-client on console-ams.rpki-client.org