Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/8ba8bb-c1c0-4d35-90a7-cda5c3766f03/1/8QAkhXRgHHJsrAS4F6rZowySSwY.roa
File: 8QAkhXRgHHJsrAS4F6rZowySSwY.roa (raw, json)
Hash identifier: v/4Vc3o1mg9N53BXaQxPMaXozTOzHPA7jXC07MQEDmY=
Subject key identifier: F1:00:24:85:74:60:1C:72:6C:AC:04:B8:17:AA:D9:A3:0C:92:4B:06
Certificate issuer: /CN=d3c35bc9b7f8550be3e467c54a9d3a66e2443bd4
Certificate serial: 8FAA76
Authority key identifier: D3:C3:5B:C9:B7:F8:55:0B:E3:E4:67:C5:4A:9D:3A:66:E2:44:3B:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/08Nbybf4VQvj5GfFSp06ZuJEO9Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/8ba8bb-c1c0-4d35-90a7-cda5c3766f03/1/8QAkhXRgHHJsrAS4F6rZowySSwY.roa
Signing time: Sat 01 Jan 2022 03:58:08 +0000
ROA not before: Sat 01 Jan 2022 03:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 45.159.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9415286 (0x8faa76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3c35bc9b7f8550be3e467c54a9d3a66e2443bd4
Validity
Not Before: Jan 1 03:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f100248574601c726cac04b817aad9a30c924b06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:86:c6:fa:96:e7:f5:0f:e3:7b:db:42:48:60:
91:e3:6b:e6:68:b5:5b:28:7a:63:cc:d7:ea:ad:58:
94:63:1c:47:a7:ad:57:9a:22:be:66:00:7e:35:56:
24:d1:41:8b:f6:5a:cf:16:a3:58:1d:b9:e4:56:00:
c1:df:b6:34:46:12:72:93:79:9a:78:97:28:01:76:
bf:6c:0e:bf:b4:06:71:f5:68:d9:63:02:86:7f:00:
9b:56:0d:ff:e4:35:7c:67:c3:81:8d:0b:a9:6d:83:
1f:97:a9:88:e9:46:9c:5d:b6:06:46:cd:d3:2a:22:
3b:28:ff:ba:9d:41:e3:3c:95:5d:5b:5a:a3:f3:e6:
c8:c0:6a:d6:04:19:03:00:84:62:65:1f:2c:a0:c3:
36:e0:0d:17:96:20:18:b2:df:0a:46:67:ce:4e:8d:
ed:56:f8:d7:38:e8:de:d1:a7:86:9b:86:5b:b4:58:
d0:32:9a:be:1f:31:fd:71:f1:2b:9d:c5:65:33:38:
37:4a:b5:3a:74:0b:54:94:8b:c1:f8:15:28:30:97:
5b:37:2a:f5:1a:71:d4:29:0a:fe:90:6e:f1:53:5c:
f3:cd:da:6a:be:06:99:67:44:5e:6a:a8:12:18:20:
c6:e7:3e:a1:ff:36:ae:8c:1c:50:65:43:02:4a:d3:
c8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:00:24:85:74:60:1C:72:6C:AC:04:B8:17:AA:D9:A3:0C:92:4B:06
X509v3 Authority Key Identifier:
keyid:D3:C3:5B:C9:B7:F8:55:0B:E3:E4:67:C5:4A:9D:3A:66:E2:44:3B:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/08Nbybf4VQvj5GfFSp06ZuJEO9Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8ba8bb-c1c0-4d35-90a7-cda5c3766f03/1/8QAkhXRgHHJsrAS4F6rZowySSwY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/8ba8bb-c1c0-4d35-90a7-cda5c3766f03/1/08Nbybf4VQvj5GfFSp06ZuJEO9Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.14.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:62:ea:58:84:92:7f:90:c4:85:d0:bd:b6:e3:d2:b2:56:6f:
28:ae:28:a6:31:f5:21:5b:f5:f3:b3:9a:b7:37:16:8c:e0:b9:
92:01:f8:4f:d1:a3:96:83:7a:af:0a:54:8e:2f:a2:38:cd:d1:
f5:cb:c5:76:9e:de:6a:49:d6:53:33:b0:54:7c:7c:72:92:1e:
32:97:46:0c:f1:bd:7a:08:c6:2a:e2:3e:53:62:a9:88:f4:b3:
54:3a:a6:e4:e7:e2:ef:90:96:9e:82:51:f5:ba:f7:74:3e:3f:
73:09:5e:51:6b:09:63:a8:98:23:78:42:7a:54:ed:65:cf:92:
5d:e7:6e:3c:a2:35:47:ed:bf:af:d6:2d:20:8c:25:00:a1:37:
84:2d:c3:6d:68:a8:4d:e4:c5:d9:66:83:f5:38:a3:56:6a:41:
f2:7a:fe:51:cb:8c:31:8e:35:e4:eb:4f:e2:2d:c2:17:f6:6a:
ba:ad:94:aa:e4:b3:d0:bc:f5:c2:7f:54:02:d7:14:61:af:7b:
d1:35:99:e3:c3:a5:14:9b:26:6b:83:5a:df:df:a1:76:08:16:
40:82:04:4c:88:62:e8:20:0a:d0:09:6d:28:d9:c9:7b:fd:2f:
89:de:41:b8:35:ee:e6:19:e4:4a:91:20:68:77:25:22:64:f9:
e1:11:0d:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:01 2024 by rpki-client on console-ams.rpki-client.org