Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/4e03f0-9820-496e-bee5-74ec15e72ee8/1/tg4QcCFkptIuxnf_FB5pwQS0mA4.roa
File: tg4QcCFkptIuxnf_FB5pwQS0mA4.roa (raw, json)
Hash identifier: HjzODh/T6UqeiCXBkyDULdYLK1UG7YABUCFxRbP4NFc=
Subject key identifier: B6:0E:10:70:21:64:A6:D2:2E:C6:77:FF:14:1E:69:C1:04:B4:98:0E
Certificate issuer: /CN=fb0726994524a2757a42c9d6e4e0e1726c795931
Certificate serial: 0182C5D8952249BE6C278463F84F54B225B8
Authority key identifier: FB:07:26:99:45:24:A2:75:7A:42:C9:D6:E4:E0:E1:72:6C:79:59:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-wcmmUUkonV6QsnW5ODhcmx5WTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/4e03f0-9820-496e-bee5-74ec15e72ee8/1/tg4QcCFkptIuxnf_FB5pwQS0mA4.roa
Signing time: Mon 22 Aug 2022 13:58:01 +0000
ROA not before: Mon 22 Aug 2022 13:58:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208525
IP address blocks: 45.80.108.0/24 maxlen: 24
45.80.109.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:c5:d8:95:22:49:be:6c:27:84:63:f8:4f:54:b2:25:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fb0726994524a2757a42c9d6e4e0e1726c795931
Validity
Not Before: Aug 22 13:58:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b60e10702164a6d22ec677ff141e69c104b4980e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:b0:7a:32:80:ed:ac:70:71:cb:10:cf:bf:bd:
61:a7:1b:c8:1e:24:51:7e:df:39:6e:e6:9c:a2:a8:
f8:11:c6:67:10:96:db:19:28:96:b3:82:9a:3e:38:
0f:f8:3d:7d:d8:c3:1a:db:e9:6d:74:46:9c:a7:b7:
dd:d8:3f:d5:60:6e:91:31:c0:2a:b2:41:6b:ea:1f:
c9:dc:a5:b0:d2:b0:78:c3:c6:55:bb:3e:cb:b7:16:
32:3c:7f:2e:1e:18:b2:11:39:de:72:9a:77:a9:45:
45:ea:5d:9f:e0:7e:ac:fb:50:38:af:a9:4e:a3:ac:
50:99:30:ce:ee:7b:7c:16:f9:e0:37:79:d8:dc:d2:
c3:15:25:8f:3a:ad:d2:18:4f:f0:3d:e2:4e:34:4a:
61:7b:25:db:fa:e6:e7:e0:2f:37:0d:b8:0c:12:93:
db:50:b6:1f:a1:6b:b5:bb:8f:3f:31:5a:fb:eb:1f:
89:be:59:bb:6a:1a:7a:ea:8c:36:5a:47:ea:60:e1:
35:8a:86:74:18:69:a3:92:91:8c:6b:9b:fe:19:21:
42:a8:e7:f3:4b:7a:dd:d7:ae:89:34:3c:2b:a3:4a:
93:a8:9a:84:e7:07:cf:5d:dc:fb:d5:7c:27:90:59:
3f:d7:e6:cb:0f:cd:fe:45:cf:db:18:c5:df:73:99:
f9:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0E:10:70:21:64:A6:D2:2E:C6:77:FF:14:1E:69:C1:04:B4:98:0E
X509v3 Authority Key Identifier:
keyid:FB:07:26:99:45:24:A2:75:7A:42:C9:D6:E4:E0:E1:72:6C:79:59:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-wcmmUUkonV6QsnW5ODhcmx5WTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4e03f0-9820-496e-bee5-74ec15e72ee8/1/tg4QcCFkptIuxnf_FB5pwQS0mA4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/4e03f0-9820-496e-bee5-74ec15e72ee8/1/1-wcmmUUkonV6QsnW5ODhcmx5WTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.108.0/23
Signature Algorithm: sha256WithRSAEncryption
44:df:ab:72:ce:6b:16:eb:23:e6:d2:e2:f7:1d:d6:19:47:09:
72:a3:4e:a2:10:14:46:0d:26:17:8b:26:94:26:47:b8:e7:dd:
22:97:93:a1:f3:fc:66:87:bf:0d:b1:52:e9:a0:1d:00:72:53:
ec:c8:df:93:ad:a8:b5:0d:89:05:38:a2:f1:9d:e0:e4:6d:d3:
c6:d4:b2:88:2f:c9:54:c1:41:29:58:88:52:b7:92:c9:20:68:
dc:bb:6d:bd:6c:4b:88:3c:d6:28:dc:fb:64:44:c9:86:67:41:
38:1a:56:6c:bc:d0:b5:ef:73:e2:c0:d2:b5:14:1b:2d:aa:b9:
8b:30:fe:89:44:28:e4:cc:c5:d5:aa:bd:99:10:0a:87:40:5b:
f2:f0:c3:03:f1:bb:af:ec:97:67:cc:10:3b:c3:1b:34:a5:e7:
b6:c8:10:4d:06:97:e5:15:e3:11:c5:08:f8:c5:7e:42:e8:d4:
38:ea:aa:bd:59:8e:3f:cc:52:7e:9d:ff:d9:09:2d:c4:f7:cb:
a4:13:04:6d:e4:5e:ab:b8:16:59:34:a6:c5:7f:d4:96:36:43:
a5:e2:a1:4e:38:96:e0:f7:93:e3:75:6d:63:59:f2:23:0b:61:
91:7a:6c:ca:06:d2:0d:34:4b:f1:a4:47:53:a8:b9:a2:a9:a6:
84:b5:61:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:03 2023 by rpki-client on console-ams.rpki-client.org