Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/2_-fxWukZa4FGbECj91JZ2OsTDg.roa
File: 2_-fxWukZa4FGbECj91JZ2OsTDg.roa (raw, json)
Hash identifier: BqdFjIN/nVSfaWeUexY3hURl5q3u6NOOcKETalWnTuo=
Subject key identifier: DB:FF:9F:C5:6B:A4:65:AE:05:19:B1:02:8F:DD:49:67:63:AC:4C:38
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 0185587FB2DDE0517CEE72A1D334B34D50FE
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/2_-fxWukZa4FGbECj91JZ2OsTDg.roa
Signing time: Wed 28 Dec 2022 11:30:41 +0000
ROA not before: Wed 28 Dec 2022 11:30:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35758
IP address blocks: 45.144.28.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:58:7f:b2:dd:e0:51:7c:ee:72:a1:d3:34:b3:4d:50:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Dec 28 11:30:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dbff9fc56ba465ae0519b1028fdd496763ac4c38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ee:7a:e8:3c:71:ea:3d:96:56:28:0f:55:3b:
fa:16:c0:08:f0:da:17:e7:ce:04:73:2f:6a:23:52:
80:12:2e:dc:ee:1f:0b:0c:07:32:45:7e:cf:89:37:
b3:9e:70:8b:15:d1:a4:d0:42:33:5b:f9:90:07:cf:
64:9c:f3:e4:e2:20:c8:22:8c:27:8a:77:dd:c5:9b:
2c:e2:75:cf:4c:54:92:6f:e9:9e:f1:c0:51:d1:83:
c1:46:31:f9:42:bb:56:ba:4a:43:17:6e:e7:ee:fa:
4d:9b:7d:28:6a:e9:a7:4a:c7:a8:aa:b6:48:b3:bf:
73:fa:d2:df:64:17:35:a2:88:e2:11:14:3f:c0:54:
4f:6a:9e:71:a1:8d:e8:ff:61:2d:c6:23:f1:08:b7:
b7:8e:ef:60:27:70:08:8b:04:3c:e3:ee:7a:14:42:
65:eb:b3:dc:28:5f:c7:e8:a4:eb:ff:e7:2c:6a:7e:
53:f6:0f:1a:69:b5:5f:a4:3a:5e:b4:54:32:ce:73:
eb:21:14:f3:9a:9f:62:78:8e:8e:18:74:78:f7:c7:
ee:9f:32:e6:04:9e:b5:17:b4:af:46:05:6d:e8:62:
7d:dc:a3:b8:26:15:64:24:c5:dd:53:12:d6:f8:65:
0a:a2:04:6c:91:bc:23:43:fc:e4:be:76:e8:8b:b2:
c0:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:FF:9F:C5:6B:A4:65:AE:05:19:B1:02:8F:DD:49:67:63:AC:4C:38
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/2_-fxWukZa4FGbECj91JZ2OsTDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.28.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:3b:c4:cb:40:c6:7f:18:2c:68:85:37:7a:2f:31:26:26:94:
14:4a:ae:17:e2:42:cc:25:16:78:46:43:66:86:9b:3d:b6:73:
6d:90:24:78:73:f3:5a:78:ce:5b:6c:15:98:65:34:50:c4:23:
5b:82:ff:ce:9a:0d:44:ff:5a:fc:d8:dd:7e:63:8a:a5:93:d3:
46:2d:69:83:ac:f4:c7:e7:c2:bb:e9:75:62:35:a2:9d:1f:b1:
1c:ee:22:07:44:d4:41:03:93:35:09:c4:c4:d5:fd:77:39:b1:
60:5c:85:f4:03:20:e1:7f:cd:30:70:4f:5e:f0:c0:e3:3d:d7:
39:80:b3:4d:17:bf:39:de:21:94:f6:80:8b:52:c0:c8:56:cb:
fd:32:c5:66:ca:b0:55:3c:44:4f:db:33:61:13:50:ad:92:83:
d0:d7:e9:d8:4e:d1:2a:2f:48:b8:46:6f:9d:25:34:a2:18:85:
90:a8:57:f6:46:a3:3e:bc:79:b4:86:d0:c8:57:c5:bf:14:a4:
6a:05:09:4b:fb:72:03:23:3b:cb:a3:2c:dd:02:f4:91:c7:db:
35:1a:49:1d:76:13:bf:b6:14:bd:88:44:53:59:94:8a:8a:14:
38:4a:9e:6f:b8:ff:f4:c0:15:f5:c5:d8:5a:17:0c:70:14:fe:
c8:2a:6b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:11 2023 by rpki-client on console-ams.rpki-client.org