Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/IfHLUPWOtFO3ALFQtWuZE7ZLZgM.roa
File: IfHLUPWOtFO3ALFQtWuZE7ZLZgM.roa (raw, json)
Hash identifier: vEl19opqpRF/NIrkJ6U5Rvo+sm/5jqkEvqVxSeEZl/Y=
Subject key identifier: 21:F1:CB:50:F5:8E:B4:53:B7:00:B1:50:B5:6B:99:13:B6:4B:66:03
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 03E4D32D
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/IfHLUPWOtFO3ALFQtWuZE7ZLZgM.roa
Signing time: Mon 07 Mar 2022 13:21:40 +0000
ROA not before: Mon 07 Mar 2022 13:21:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.140.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65327917 (0x3e4d32d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Mar 7 13:21:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21f1cb50f58eb453b700b150b56b9913b64b6603
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:60:78:5f:fa:2e:0d:18:95:ab:73:17:2e:06:
20:d2:2c:6c:6e:40:fb:53:d3:44:26:31:1e:ec:d5:
0f:27:5c:6f:16:05:85:01:83:ea:ec:72:64:42:f0:
81:ed:2d:a7:eb:ff:a5:a7:a6:ee:52:50:4a:10:94:
a9:a6:2b:95:27:d6:96:92:91:ab:30:11:19:31:ce:
3e:88:e0:93:1c:18:c1:23:a7:6f:f8:39:ca:19:77:
0e:23:00:29:2d:91:da:64:3d:8b:88:e0:82:06:48:
c9:29:67:55:eb:59:7e:67:90:a1:fe:7f:24:17:ee:
23:cd:ef:b7:54:6e:c6:0e:0b:5f:75:97:05:3b:ef:
63:d1:be:6f:bc:fc:e3:6e:7c:0b:79:a3:6c:fd:45:
b6:b0:b6:31:c2:93:26:b9:cc:f8:56:0b:b9:69:6d:
26:06:09:da:aa:40:95:e4:1d:bd:01:c2:52:5f:6a:
e6:e0:cd:4d:22:b5:8c:90:7c:ec:55:e3:21:8b:97:
c3:71:f9:e5:7a:59:45:76:b3:31:33:47:e9:0e:09:
ec:e9:7a:33:1d:83:3f:7e:dc:6e:b2:53:2e:db:6a:
00:aa:bc:5b:8b:f8:c4:62:c8:11:de:df:f3:dc:c9:
59:2d:4c:4a:71:6a:c1:1a:fb:49:c0:a8:fa:d7:18:
1a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:F1:CB:50:F5:8E:B4:53:B7:00:B1:50:B5:6B:99:13:B6:4B:66:03
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/IfHLUPWOtFO3ALFQtWuZE7ZLZgM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.167.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:00:b0:8b:11:51:0b:77:39:86:15:0c:e2:22:39:5f:b6:08:
e2:99:c3:59:c8:f3:01:52:16:97:43:4d:63:66:42:5a:34:17:
04:0f:63:a4:4f:97:d9:d6:a0:65:6f:2c:50:35:60:2f:0c:69:
dc:7a:ba:b9:ab:1c:10:74:b1:f9:52:14:50:ed:33:7b:b6:2d:
9e:27:52:a6:6c:b1:6e:6b:d7:fc:d3:90:16:e5:74:25:9a:33:
f7:8f:ab:4c:22:69:6c:1a:99:79:92:ff:50:75:6a:9e:a5:f2:
6b:f7:d2:56:16:70:a6:51:b2:45:30:e9:76:fb:0c:ea:a8:2e:
4e:55:52:a3:a0:52:36:25:36:08:75:c0:d9:55:41:5e:e1:44:
41:35:ae:f5:e7:42:9a:3f:e1:33:00:82:30:66:ca:3b:3b:a3:
ae:c9:eb:f6:87:60:3c:60:a7:50:0f:9e:f3:56:1e:13:45:0a:
75:e1:ba:b8:8a:b7:36:56:07:c9:f5:e2:e1:7e:41:44:65:32:
5c:8e:52:99:79:fd:35:6b:3e:f6:58:60:ee:f1:b5:3a:9f:04:
b1:c3:2c:35:b5:9c:b5:fb:7b:bc:b2:ca:5d:a1:93:51:f7:35:
20:98:3c:ce:8d:09:7e:85:b7:fd:f7:bb:ca:ce:23:b9:2c:10:
35:a8:69:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:11 2023 by rpki-client on console-ams.rpki-client.org