Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/6419af-a23c-4219-9a2b-0463b252bd1a/1/ItrSxFZ-zf2SY_WAqj6xDsqoG2E.roa
File: ItrSxFZ-zf2SY_WAqj6xDsqoG2E.roa (raw, json)
Hash identifier: VXUnDwpNo9ZEgkWErTDWPf0Tk8S6qzJ6UPo5NsdqZF0=
Subject key identifier: 22:DA:D2:C4:56:7E:CD:FD:92:63:F5:80:AA:3E:B1:0E:CA:A8:1B:61
Certificate issuer: /CN=a4b002e0cd28ca1051e02c9d21dbaa38fe4dee07
Certificate serial: 0659BFAB
Authority key identifier: A4:B0:02:E0:CD:28:CA:10:51:E0:2C:9D:21:DB:AA:38:FE:4D:EE:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pLAC4M0oyhBR4CydIduqOP5N7gc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/6419af-a23c-4219-9a2b-0463b252bd1a/1/ItrSxFZ-zf2SY_WAqj6xDsqoG2E.roa
Signing time: Sat 01 Jan 2022 10:53:55 +0000
ROA not before: Sat 01 Jan 2022 10:53:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 45.143.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106545067 (0x659bfab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4b002e0cd28ca1051e02c9d21dbaa38fe4dee07
Validity
Not Before: Jan 1 10:53:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22dad2c4567ecdfd9263f580aa3eb10ecaa81b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:a9:e7:83:46:68:63:77:3e:77:8a:2f:eb:7a:
2e:24:68:df:fa:3b:d1:82:1c:41:ef:0c:fc:cd:eb:
de:2f:93:1b:be:4c:94:6a:ab:38:c5:28:41:a7:4b:
14:2f:72:90:d5:8e:dd:85:a4:fc:20:51:77:8d:bd:
14:ae:72:93:c5:32:3e:88:8d:89:81:71:30:8b:b4:
00:3d:fe:c4:09:14:53:4b:6e:a6:18:94:f6:74:09:
8e:f9:fe:a8:c5:77:c4:38:fb:5f:ed:f0:01:50:96:
00:e6:7b:0c:e7:14:24:10:0b:93:3b:0c:26:83:ad:
ec:b2:67:61:77:68:29:42:12:82:90:5f:54:77:58:
3f:67:5e:0a:11:b5:2f:54:e7:e3:7e:3b:e6:4d:53:
a1:74:84:48:a9:19:e2:0d:19:cb:79:07:08:6e:d2:
91:5a:f9:e5:77:fc:98:a3:a4:9c:31:c6:68:98:cb:
e6:a0:df:99:93:36:81:26:16:c6:84:a3:ae:56:33:
f8:e0:e6:a0:53:62:d3:fe:41:b7:ed:6e:8d:79:69:
10:dc:be:84:54:51:03:f7:aa:e9:ee:98:89:d1:13:
66:77:27:5d:f9:89:b2:77:56:be:3d:c0:00:ef:0e:
d4:df:f1:83:eb:12:ed:a0:57:8e:b3:92:1a:48:dd:
69:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:DA:D2:C4:56:7E:CD:FD:92:63:F5:80:AA:3E:B1:0E:CA:A8:1B:61
X509v3 Authority Key Identifier:
keyid:A4:B0:02:E0:CD:28:CA:10:51:E0:2C:9D:21:DB:AA:38:FE:4D:EE:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pLAC4M0oyhBR4CydIduqOP5N7gc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6419af-a23c-4219-9a2b-0463b252bd1a/1/ItrSxFZ-zf2SY_WAqj6xDsqoG2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/6419af-a23c-4219-9a2b-0463b252bd1a/1/pLAC4M0oyhBR4CydIduqOP5N7gc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.145.0/24
Signature Algorithm: sha256WithRSAEncryption
29:01:9d:ef:e6:fb:22:15:b9:35:21:0a:ba:66:cb:37:94:8d:
81:df:18:0e:d1:97:3f:43:fa:ea:dd:1b:da:01:a7:25:f2:2a:
08:c4:37:a2:f4:3a:f8:1b:ff:d5:3f:5c:6b:03:29:d4:56:5b:
7e:c3:9f:c8:f1:db:e1:93:2d:11:3c:bd:6f:7e:8e:82:0c:87:
50:c3:99:ed:17:ae:4b:47:b2:54:39:ea:41:56:97:5c:72:39:
b8:ac:f6:0e:ab:c6:d4:15:44:2b:f6:6a:4e:e9:e2:a9:d8:bd:
86:85:4f:06:ff:ec:81:f3:05:b5:1d:f4:23:ec:70:0f:e9:91:
d2:5c:99:10:e1:a1:46:96:ff:3f:03:eb:b3:17:b6:0c:b6:d7:
8e:01:df:f0:c3:b3:f7:40:3b:ef:dd:3c:d8:87:61:ad:1d:9f:
49:50:3c:4c:e7:12:ad:d2:1d:33:01:96:5a:0d:28:52:b5:6c:
a1:ce:f8:db:97:f6:8e:3d:41:6e:59:2d:da:dc:eb:c2:16:55:
67:dc:6c:86:67:2e:30:2a:04:ed:94:53:c3:fc:d6:44:78:86:
03:b0:dd:7e:47:ce:49:6b:0b:05:63:35:86:c0:0f:43:d0:a5:
f0:a0:2d:63:c9:b0:3f:73:f6:88:45:e0:22:3f:3a:09:9c:1c:
cd:05:b2:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:47 2023 by rpki-client on console-fra.rpki-client.org