Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/MDirA3igy4xdrqdfgvW_SBBoVZc.roa
File: MDirA3igy4xdrqdfgvW_SBBoVZc.roa (raw, json)
Hash identifier: TWktpNn8WuA+kYwSUWSvgo//9F+cf9wyE2cu9bDroKY=
Subject key identifier: 30:38:AB:03:78:A0:CB:8C:5D:AE:A7:5F:82:F5:BF:48:10:68:55:97
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 033F18C8
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/MDirA3igy4xdrqdfgvW_SBBoVZc.roa
Signing time: Sat 01 Jan 2022 00:57:58 +0000
ROA not before: Sat 01 Jan 2022 00:57:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61390
IP address blocks: 45.14.244.0/22 maxlen: 24
45.144.232.0/22 maxlen: 24
45.130.70.0/23 maxlen: 23
45.130.68.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54466760 (0x33f18c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 00:57:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3038ab0378a0cb8c5daea75f82f5bf4810685597
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:df:17:1a:54:ff:2f:33:75:eb:a3:7c:16:50:
ec:86:30:cd:2e:71:1e:32:84:e4:d8:90:2d:92:63:
f3:cb:e2:ac:5d:df:94:07:7d:9e:0d:8a:c2:51:65:
4d:4b:d6:98:45:18:bc:4c:c0:e9:86:e5:92:b6:9c:
0b:e4:78:e1:6e:13:b4:b0:09:1e:48:43:16:38:2e:
f3:bb:38:4c:59:f0:62:42:85:28:08:f9:83:23:ef:
d3:c5:c0:cd:4f:d5:53:cb:d3:9c:93:16:40:86:d7:
18:36:1d:fc:5d:40:29:ab:c9:74:8e:90:63:77:4c:
a1:ee:f4:02:af:b7:15:c9:bc:8a:43:86:50:15:e4:
9c:a6:f0:c6:9b:42:b9:13:35:23:30:95:0a:c4:94:
c3:a3:b7:1a:c6:9c:66:dd:ec:ea:3e:cf:61:a1:58:
47:c0:63:56:11:6f:79:21:70:ae:be:51:86:b0:17:
50:08:8f:2f:dd:bf:a9:c9:ae:69:08:c3:76:76:15:
e0:55:d5:97:d8:94:df:b4:27:9e:02:53:45:56:d2:
fa:03:df:d4:57:25:13:cd:65:36:cb:6d:96:e9:79:
d7:40:fe:f3:59:b9:51:d1:f7:4e:a8:68:fe:9b:16:
3f:96:a9:6f:de:36:b5:fd:1f:b6:2e:8e:b0:eb:bc:
c7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:38:AB:03:78:A0:CB:8C:5D:AE:A7:5F:82:F5:BF:48:10:68:55:97
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/MDirA3igy4xdrqdfgvW_SBBoVZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.244.0/22
45.130.68.0/22
45.144.232.0/22
Signature Algorithm: sha256WithRSAEncryption
98:6a:0c:14:7b:c4:06:a1:50:65:12:96:81:0a:b7:5a:1e:b3:
14:f2:d6:a6:90:9c:6f:60:39:44:5a:67:3a:49:66:f8:dd:89:
b7:0f:af:5e:7f:06:9e:8e:9b:31:ef:c5:20:7d:0e:bc:8c:9a:
95:56:3f:6c:a1:0c:eb:d3:91:26:2d:47:bb:9b:b3:a7:0b:f3:
11:e2:81:72:99:fe:1c:6a:84:cd:9f:8e:75:62:df:70:e5:52:
59:4b:d6:2b:3a:c4:14:a9:ca:7e:95:70:b0:74:49:0d:06:aa:
b8:f0:39:bc:d6:43:b6:b3:e4:22:25:5b:e9:10:84:d2:0f:9c:
bc:d1:c2:19:d8:98:b9:e2:69:6a:27:ec:e4:63:80:a3:19:fb:
51:bf:42:36:a7:c5:a4:83:cc:80:ad:fb:95:c6:bf:e2:d0:44:
d7:65:40:08:87:ab:ee:23:bc:44:94:d3:11:5d:5a:98:70:2b:
c7:8c:c6:b0:15:5c:8c:ec:19:f4:cc:14:49:ce:05:15:57:1d:
e7:17:96:80:27:1d:ea:36:9f:20:11:93:61:24:25:5d:db:ab:
71:0f:28:89:0e:2d:b8:88:85:3e:8e:8d:47:20:db:b0:16:dc:
12:2e:a4:b0:f7:86:3e:64:57:ac:c9:f6:f2:da:e5:97:45:79:
8c:f3:c3:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org