Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/0hiMUXK3tx1CizB2waw4afdv60o.roa
File: 0hiMUXK3tx1CizB2waw4afdv60o.roa (raw, json)
Hash identifier: +0SLe15fLD/3J2dH8MC5aWFtGhTwoHKKLqd4Gpz1bkU=
Subject key identifier: D2:18:8C:51:72:B7:B7:1D:42:8B:30:76:C1:AC:38:69:F7:6F:EB:4A
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 43105C
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/0hiMUXK3tx1CizB2waw4afdv60o.roa
Signing time: Tue 04 Jan 2022 08:49:05 +0000
ROA not before: Tue 04 Jan 2022 08:49:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212442
IP address blocks: 45.11.185.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4395100 (0x43105c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jan 4 08:49:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2188c5172b7b71d428b3076c1ac3869f76feb4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:98:6b:48:7b:ad:10:a1:d2:8d:c2:a9:b5:ba:
e0:24:2a:df:a0:77:52:c3:2a:3b:99:8d:77:bd:29:
46:83:a5:12:20:c5:54:9c:ec:c6:c3:37:06:e1:99:
68:b8:8d:b5:76:ba:95:da:b0:c3:12:32:bf:ef:6f:
de:f6:ff:a4:27:e8:ba:08:39:81:f5:67:67:6c:3b:
7d:1d:20:12:b3:09:d8:2f:2e:c3:29:79:81:c8:f7:
97:ea:ee:d7:bc:94:a6:80:40:2e:b9:8a:a0:53:1c:
b5:f6:1f:7e:c1:cd:41:ca:93:5a:c3:81:88:15:56:
8b:10:6f:19:db:8e:fe:5c:79:6f:2b:22:be:a7:10:
6e:c5:42:93:6e:c2:f7:4b:5d:81:17:13:92:2a:79:
6f:1e:40:30:e7:74:fb:33:06:fd:bf:5d:6c:10:4c:
8e:64:19:86:d2:b7:6d:bf:06:8f:ab:37:01:4b:db:
38:82:0d:dc:04:4c:86:3c:c6:12:0e:4b:ae:c3:1f:
3b:6b:17:be:f8:f7:32:ed:d9:6d:35:e3:40:ff:08:
bd:61:e7:ba:9c:8b:3a:78:c8:32:f8:10:ba:71:51:
1e:ab:3f:af:72:a2:15:d9:4f:2c:20:4d:33:b6:45:
94:41:08:0b:26:f3:c8:28:a1:88:b4:2e:3b:15:68:
a1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:18:8C:51:72:B7:B7:1D:42:8B:30:76:C1:AC:38:69:F7:6F:EB:4A
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/0hiMUXK3tx1CizB2waw4afdv60o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.185.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:38:37:fc:24:e8:54:bc:d9:70:ba:dc:19:fd:61:24:4f:b4:
7a:98:f8:91:ac:b7:a8:b6:24:26:1f:2d:f6:14:de:5b:f6:45:
e3:83:6b:d5:db:96:35:14:26:13:a8:b1:6f:83:b3:e2:6f:f8:
94:1e:a8:21:3e:70:c1:e7:7d:af:e3:b4:50:c4:e8:93:ec:c1:
c6:66:9c:1f:3a:22:b6:64:c4:b7:c2:44:5a:5e:79:fa:9b:85:
e0:7e:bf:67:8c:89:f6:df:7d:5a:25:a9:77:c8:2c:20:b7:ec:
9c:6c:c0:e4:9b:4a:8f:ce:51:d4:b2:bc:94:0c:2a:c2:4f:04:
92:32:c9:0f:91:85:3d:41:69:78:f4:24:8f:80:f4:aa:a1:ab:
c8:fe:eb:9a:0b:e2:ad:a9:cb:38:a0:0b:2a:32:fb:2c:9d:3d:
2b:a2:64:40:20:ec:7a:a8:b7:cc:e7:51:7e:b9:4a:5a:33:24:
83:e7:54:09:85:3c:83:ad:31:65:60:85:86:ea:4a:86:97:06:
34:3f:d9:3a:41:e2:e6:d8:2f:ab:3c:51:50:b3:b8:13:3b:a3:
e3:f5:36:81:05:85:d2:54:25:91:ce:a3:79:ba:27:a1:6e:9f:
0e:e3:a7:b9:3e:92:a2:ac:41:77:43:e3:57:78:06:c8:12:b7:
0e:16:f6:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:58 2023 by rpki-client on console-ams.rpki-client.org