Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kUUtT5ppI5w0GMp620PC1UxrbMk.roa
File: kUUtT5ppI5w0GMp620PC1UxrbMk.roa (raw, json)
Hash identifier: 0tiXsPn8A7wNKInKv0x3EuLCG4FeAi0AbQrgall0L5c=
Subject key identifier: 91:45:2D:4F:9A:69:23:9C:34:18:CA:7A:DB:43:C2:D5:4C:6B:6C:C9
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 01838E07F5EAAF3BC516E015CE1302FF8F07
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kUUtT5ppI5w0GMp620PC1UxrbMk.roa
Signing time: Fri 30 Sep 2022 10:53:49 +0000
ROA not before: Fri 30 Sep 2022 10:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207459
IP address blocks: 45.143.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8e:07:f5:ea:af:3b:c5:16:e0:15:ce:13:02:ff:8f:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Sep 30 10:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91452d4f9a69239c3418ca7adb43c2d54c6b6cc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:0d:fe:5e:b1:1f:de:75:a6:69:fd:9b:71:ac:
05:58:d5:29:79:69:c7:a1:35:3b:d6:27:b8:4a:40:
49:13:d5:22:8a:74:ea:03:09:05:fb:b3:c2:83:fa:
ae:78:c8:01:cb:b1:3e:1c:b4:54:10:12:7e:77:03:
eb:b1:37:46:c9:16:3c:dc:99:cc:92:90:e2:cd:fb:
fd:a3:c8:70:47:78:78:c6:7e:18:5a:40:87:d6:92:
8e:89:8a:10:62:d7:92:96:ad:4f:73:b9:47:63:af:
65:da:29:7f:a1:73:c9:e6:d2:66:0d:78:d7:4e:57:
d4:f3:c9:1f:eb:db:6e:ce:4f:af:9c:57:8b:83:c9:
d0:ee:7f:cb:7d:67:b6:f1:21:ba:83:b5:ee:b8:93:
3b:0f:ba:bd:63:2c:25:f1:b3:77:04:db:fa:4f:c4:
32:f0:b4:c6:66:ff:59:15:6b:c5:78:9e:7d:54:82:
8a:fd:03:58:f2:11:66:d0:b5:cd:61:7c:20:67:ee:
79:11:a4:f5:9f:04:80:a5:d6:be:a5:dc:3e:52:96:
21:87:bb:39:26:28:25:bf:f7:73:03:a3:12:a5:7c:
d5:52:64:3d:ca:39:0a:02:51:a9:63:d6:4b:10:aa:
dd:67:f8:49:43:bd:ab:f3:f6:99:09:d4:32:42:01:
74:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:45:2D:4F:9A:69:23:9C:34:18:CA:7A:DB:43:C2:D5:4C:6B:6C:C9
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kUUtT5ppI5w0GMp620PC1UxrbMk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.99.0/24
Signature Algorithm: sha256WithRSAEncryption
76:38:02:45:1d:4c:42:ff:1d:f9:09:91:e8:35:3e:6f:cd:67:
c0:62:4f:b6:6c:7f:67:4c:05:f7:6f:62:5b:9b:16:ac:6e:4f:
40:b2:0d:ad:bb:8f:f5:05:41:33:e6:7b:3b:c9:8b:3f:d6:e8:
66:da:0d:25:06:1b:56:c4:1f:19:fd:85:dd:14:cc:6f:c7:c9:
7b:33:3e:df:86:7c:5b:dc:93:c1:c4:7a:f3:33:fb:48:9e:e7:
5a:bc:93:e2:de:5b:37:20:eb:42:0a:47:de:d4:b0:d7:30:7e:
5e:77:22:f8:19:ca:0c:94:8e:19:72:67:c0:22:99:d1:fe:c9:
a9:49:3c:03:e3:3e:c0:c8:4c:51:ef:fe:17:89:7d:0f:77:ee:
af:8c:a7:2f:92:e6:22:a9:4d:cc:ef:b3:bd:1d:85:ba:06:bf:
a8:74:4a:7b:47:b3:b0:47:90:13:c5:1d:96:63:fc:46:09:ef:
34:be:b7:6f:76:1f:1e:3b:14:2d:be:d1:21:6b:30:0e:4f:8d:
92:be:c8:28:3a:16:8a:5d:4b:e0:4b:36:4a:43:25:90:34:00:
8d:42:7d:9e:21:5b:fa:64:73:e1:9a:29:d4:cf:f4:59:37:52:
f3:2a:c9:fc:f0:24:89:b2:df:c2:2d:7f:d1:e3:41:a6:bc:98:
ca:84:67:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-ams.rpki-client.org