Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/UZi2u_4LOTRgVUjhVTSPAO1MyAg.roa
File: UZi2u_4LOTRgVUjhVTSPAO1MyAg.roa (raw, json)
Hash identifier: +W/8F804oMSSd1b6NmORlSUMk+6+NYpJhO9y8rQROoI=
Subject key identifier: 51:98:B6:BB:FE:0B:39:34:60:55:48:E1:55:34:8F:00:ED:4C:C8:08
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 033E677F
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/UZi2u_4LOTRgVUjhVTSPAO1MyAg.roa
Signing time: Sat 01 Jan 2022 00:57:57 +0000
ROA not before: Sat 01 Jan 2022 00:57:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51248
IP address blocks: 45.140.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54421375 (0x33e677f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 00:57:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5198b6bbfe0b3934605548e155348f00ed4cc808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:54:61:58:01:28:25:3f:3b:c8:ea:3a:c5:dc:
f4:22:da:ad:84:2b:b2:e5:9f:fa:5a:e1:fd:7a:0e:
fe:f6:99:ed:13:97:02:cc:fe:8a:6e:f2:ee:69:a6:
a4:e2:66:07:14:30:e7:78:ac:c2:ad:b7:4d:16:f9:
fe:24:2c:bb:b0:0d:ef:88:5a:ce:90:9e:64:9e:c1:
f3:26:4e:97:6b:a7:12:de:b1:ad:3e:ec:86:96:97:
c1:d9:76:26:93:76:70:44:d5:88:f6:9d:24:3a:01:
94:b0:16:f6:9e:6c:f0:ee:f0:33:40:f8:e1:42:36:
e7:4a:00:34:46:ff:2a:9e:53:2e:d8:88:f8:c9:cb:
22:98:d3:7f:27:b7:31:73:58:be:f0:cc:8c:25:b7:
a4:cf:1e:16:15:79:83:39:62:e6:ac:b5:4d:ee:88:
4d:2f:74:c7:c2:65:b1:1a:da:87:82:e6:d0:c8:05:
21:57:19:7e:60:b9:9a:28:bb:51:c3:97:ec:bf:5c:
86:83:96:e2:47:ff:10:47:cd:77:ed:93:38:3a:a1:
56:ab:01:d6:17:f8:5c:84:79:02:0e:9d:16:88:bc:
49:32:4d:c2:fa:18:41:fa:36:12:ad:47:0b:83:45:
09:ee:1c:a4:bf:e7:eb:e9:51:cc:e9:42:63:96:d0:
27:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:98:B6:BB:FE:0B:39:34:60:55:48:E1:55:34:8F:00:ED:4C:C8:08
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/UZi2u_4LOTRgVUjhVTSPAO1MyAg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.167.0/24
Signature Algorithm: sha256WithRSAEncryption
67:e3:37:0a:4a:2a:a7:5b:80:17:60:83:24:f2:ea:d8:86:ef:
7f:de:2f:9b:9d:44:81:32:88:89:d2:25:4b:c2:81:54:72:45:
c6:f6:3b:4a:49:5b:f5:7e:d0:1e:07:ad:03:c7:7e:2d:0a:da:
ce:dc:49:fb:00:a0:c5:3a:5e:f5:86:31:3c:59:38:23:8f:ad:
3e:c4:b0:c1:2e:ea:59:4f:1c:cd:0f:6a:71:a2:7f:d2:63:a4:
a4:3e:a6:aa:f0:a5:12:5b:22:84:fd:1e:6a:7d:b6:95:88:9a:
79:9d:31:a4:54:95:21:0a:68:53:21:78:42:54:e0:ab:48:0f:
9d:e8:40:6b:90:55:b0:fe:09:7a:64:a5:3b:c5:6c:e0:55:34:
aa:3c:d8:b1:6e:24:4f:09:93:a4:bf:1c:03:ec:3f:95:f2:66:
73:f1:e8:df:d6:a9:77:f3:bb:b6:b5:60:12:88:88:d1:53:a0:
31:6d:5d:fd:25:ae:94:59:a9:d5:e1:f0:ab:4d:ad:44:2b:a0:
8e:08:43:fa:f8:0d:e0:22:e3:6a:9f:1f:8e:01:e1:18:a4:48:
39:f2:c1:cf:d9:1e:c3:af:d7:0b:a9:70:13:65:20:d7:a7:40:
07:2c:94:8c:f6:7e:cd:ed:53:0a:83:19:b8:da:a9:44:47:60:
f1:4b:b2:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:11 2023 by rpki-client on console-ams.rpki-client.org