Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kgWu2qyLMjIrSDPRAFlPWu7YfoM.roa
File: kgWu2qyLMjIrSDPRAFlPWu7YfoM.roa (raw, json)
Hash identifier: 2PBRLxKiLW0vFQEJOPj4CIUbWGJVMpdOxluwgyOtQco=
Subject key identifier: 92:05:AE:DA:AC:8B:32:32:2B:48:33:D1:00:59:4F:5A:EE:D8:7E:83
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 01826FB844D3BFEB17B882355C038B29472C
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kgWu2qyLMjIrSDPRAFlPWu7YfoM.roa
Signing time: Fri 05 Aug 2022 20:35:23 +0000
ROA not before: Fri 05 Aug 2022 20:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50565
IP address blocks: 45.143.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6f:b8:44:d3:bf:eb:17:b8:82:35:5c:03:8b:29:47:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Aug 5 20:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9205aedaac8b32322b4833d100594f5aeed87e83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ff:90:5d:79:01:1a:bc:37:a5:13:32:8b:b0:
f5:68:38:62:db:8c:15:fa:e7:35:06:e4:41:e3:a7:
e2:de:c4:1b:07:62:9e:a0:08:00:ae:0d:60:15:ae:
55:5c:7a:a2:af:5c:6c:38:80:a9:64:84:31:d3:b9:
9f:d0:d6:45:86:51:65:0b:bd:76:ac:f3:25:ba:86:
83:8d:74:d3:ca:66:38:f3:54:2b:32:79:b8:95:ac:
80:7e:df:df:af:8e:dc:2d:1c:d7:42:d9:42:4a:f8:
76:a8:31:f2:d8:6d:2f:ac:3a:20:1c:6b:eb:4e:e2:
9f:55:27:82:2f:ad:f2:fe:dd:ee:3c:b1:fe:9a:80:
f0:a9:9b:dd:d2:c2:04:f4:c4:51:90:26:aa:1c:46:
ad:86:ae:0f:91:a0:2b:56:a2:4e:a3:4a:8e:96:2c:
f8:5f:f1:ab:84:68:33:45:f6:d0:6d:ea:67:31:2b:
f9:c1:ad:20:76:55:61:d8:c5:90:5f:3d:3d:a9:db:
75:b0:d2:4e:68:27:93:a5:a1:2b:70:af:cd:2a:21:
75:4f:04:05:cd:8b:9b:e2:cc:66:d6:c7:51:d5:06:
68:8a:b0:41:6f:f4:46:84:33:c5:59:89:9c:d6:3a:
b8:fa:3e:36:47:58:92:d4:ee:bf:54:ab:9b:de:f8:
88:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:05:AE:DA:AC:8B:32:32:2B:48:33:D1:00:59:4F:5A:EE:D8:7E:83
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/kgWu2qyLMjIrSDPRAFlPWu7YfoM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.97.0/24
Signature Algorithm: sha256WithRSAEncryption
35:fd:b5:26:ac:d7:26:9e:28:8a:ec:4e:91:4c:df:b3:bf:bd:
18:eb:b3:67:8b:c2:f8:de:10:ff:e3:e8:67:02:15:22:95:2c:
c4:0c:ba:c3:75:2d:b9:c1:21:a6:ca:d7:0f:2f:2b:0d:af:3c:
72:91:13:11:d0:0d:31:8c:08:b9:f0:c9:c8:a4:64:6e:78:c8:
81:8d:af:6e:fa:7c:38:62:62:18:fb:25:29:d3:9c:61:28:6f:
20:cb:d7:67:6c:4e:6e:df:e1:e5:6d:0c:32:df:e1:b3:08:3c:
b9:a0:d7:51:20:1e:ff:3b:09:91:cb:40:e8:2f:98:31:51:2c:
eb:35:de:bc:75:47:10:68:b3:1f:09:ea:70:f9:d2:36:68:f5:
60:04:86:ef:cc:5a:5d:62:f6:96:50:2e:46:85:ca:4a:b7:44:
2d:25:57:6a:95:f0:a9:4c:c4:7c:5d:bd:0c:fa:21:b7:e0:63:
da:28:fa:3b:8e:da:07:83:a7:82:cf:7f:e4:2d:51:92:a8:8c:
e5:82:27:8e:13:c4:f1:3a:3f:97:0b:8b:a8:ba:d8:b5:ff:a1:
e4:0f:bd:79:50:ee:55:09:9a:76:1e:f1:26:aa:44:f8:32:1b:
86:b7:e2:4f:92:9c:8f:e3:e8:76:8d:59:67:78:33:eb:92:37:
5f:bc:58:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:44 2023 by rpki-client on console-fra.rpki-client.org