Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/e0q1kYeKVRoDJt6EwXZpHqW4yKc.roa
File: e0q1kYeKVRoDJt6EwXZpHqW4yKc.roa (raw, json)
Hash identifier: XKXfG6vw2KjHsS4YcAByc60iTldL4xeeekHtkfcxBO8=
Subject key identifier: 7B:4A:B5:91:87:8A:55:1A:03:26:DE:84:C1:76:69:1E:A5:B8:C8:A7
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09F70F08
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/e0q1kYeKVRoDJt6EwXZpHqW4yKc.roa
Signing time: Thu 03 Mar 2022 14:55:01 +0000
ROA not before: Thu 03 Mar 2022 14:55:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10103
IP address blocks: 45.142.106.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 167186184 (0x9f70f08)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 3 14:55:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b4ab591878a551a0326de84c176691ea5b8c8a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3f:d4:0c:16:0d:cc:6f:3b:42:2f:34:2b:69:
03:8e:a3:3e:fe:69:4a:27:fd:5a:65:69:1b:bc:5a:
bf:c8:6c:60:7d:75:de:0b:1e:0f:5c:0b:26:7a:e9:
0c:29:62:f4:d7:be:77:02:cc:e9:74:31:57:06:4f:
1d:9f:1c:49:7a:4e:33:e1:f0:a9:a7:0b:9c:35:51:
05:ba:51:8b:4c:b9:35:6c:64:fb:8d:34:0f:bf:65:
2d:ee:91:dd:81:64:af:ec:50:b7:28:26:b9:10:cb:
3a:3a:73:1d:69:a3:51:01:8e:e1:aa:8e:73:ac:13:
38:24:f0:fe:a3:78:56:b0:ea:53:d7:ad:3e:1f:51:
85:bb:72:31:89:62:04:3e:53:57:e4:cd:cd:4d:32:
80:df:52:00:ce:ed:2b:df:ad:97:29:f6:c0:14:1b:
09:83:ec:77:b8:b9:ff:3f:46:c2:1e:c4:fa:28:6b:
fa:80:ed:21:c9:02:12:55:d2:1d:7a:6a:d1:f2:34:
20:21:4b:dd:ca:a7:ab:d2:82:58:f3:b7:72:bf:aa:
d3:d7:0e:99:46:6e:c6:bc:48:db:61:a4:ba:80:3b:
a6:20:ef:a5:c9:aa:de:82:92:1d:5a:bd:20:56:37:
bb:1d:9a:1d:86:fb:32:3c:3b:43:92:49:23:4b:74:
f2:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:4A:B5:91:87:8A:55:1A:03:26:DE:84:C1:76:69:1E:A5:B8:C8:A7
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/e0q1kYeKVRoDJt6EwXZpHqW4yKc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.106.0/24
Signature Algorithm: sha256WithRSAEncryption
10:1e:00:29:58:e0:c8:f3:31:c3:d7:6b:13:34:6d:91:69:fa:
26:8d:d2:23:6c:73:43:8e:a8:80:e6:80:ea:02:b9:c2:a2:4b:
13:0f:05:98:46:05:62:37:6f:42:85:5d:bd:bf:0c:05:e6:b1:
58:86:f9:65:75:d7:59:b3:f1:f1:ec:68:13:64:75:2e:3d:b0:
25:70:7f:09:83:ab:a8:22:f1:e4:b1:29:b4:0f:85:a5:76:c7:
a3:f8:ec:a0:f4:9e:0d:b8:f0:1d:32:fb:b6:44:01:ae:a1:97:
eb:cd:67:6c:1b:68:e2:a3:75:94:58:72:c3:b1:c1:0d:1b:5f:
0e:39:43:b1:c9:44:47:05:57:64:da:61:4b:a1:00:b3:4c:39:
35:2c:6a:5c:f4:46:dd:26:24:51:8b:95:f3:31:46:7d:95:5a:
ce:24:9f:92:dd:a4:9d:c5:f5:21:7d:13:0d:4b:8c:cc:c2:0b:
83:08:b2:a6:a2:f7:88:c2:50:d8:01:0f:e6:ab:60:48:a6:0a:
ee:5d:d5:f3:09:db:23:3e:45:8c:aa:e7:c4:53:7e:33:f4:8c:
80:d3:35:28:78:ae:d0:e9:b5:c0:2c:3a:1a:1d:19:6c:2a:a8:
b0:71:53:0e:02:a8:d9:bf:a2:a6:16:37:05:01:85:14:80:30:
ab:70:a0:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org