Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/eczSiBSv12DeITXsXPd3tPoXhAs.roa
File: eczSiBSv12DeITXsXPd3tPoXhAs.roa (raw, json)
Hash identifier: 7nyiNOh4L8CsivML0iWnti4es82UtspcIzOdBUkZvsk=
Subject key identifier: 79:CC:D2:88:14:AF:D7:60:DE:21:35:EC:5C:F7:77:B4:FA:17:84:0B
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 0340B08E
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/eczSiBSv12DeITXsXPd3tPoXhAs.roa
Signing time: Sat 01 Jan 2022 00:57:59 +0000
ROA not before: Sat 01 Jan 2022 00:57:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208226
IP address blocks: 45.140.164.0/24 maxlen: 24
45.140.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54571150 (0x340b08e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 1 00:57:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=79ccd28814afd760de2135ec5cf777b4fa17840b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c5:58:1a:22:8c:2f:80:e2:7e:df:dd:b8:79:
63:a2:9a:e5:94:33:20:be:6f:1e:c0:81:2a:52:82:
4a:20:14:f6:45:8f:4c:92:28:d3:35:f9:97:ef:b0:
70:f9:03:c9:c1:05:b1:2c:41:fd:2d:83:0b:83:a7:
9b:85:df:b7:18:7a:9d:a7:8f:17:e4:ac:03:e4:f6:
1a:52:3b:70:35:36:01:88:82:46:34:e4:46:54:93:
5a:6e:c2:39:46:74:40:26:f0:b8:85:4e:fe:fb:70:
93:db:5f:f2:d7:7c:bb:dd:79:e6:a7:2d:83:ed:0b:
38:45:91:3c:79:86:ba:03:90:a9:07:82:4e:df:cf:
4d:45:5e:2e:39:f3:13:b5:39:d4:03:96:5e:c0:24:
d4:90:77:54:82:50:17:5e:46:e0:3d:d3:49:2d:5c:
b1:b5:93:e1:d5:34:73:8c:90:58:66:8f:e5:19:5d:
5e:4e:0a:81:74:3b:50:5b:f8:4b:ce:cf:a1:61:82:
9c:78:e8:a1:79:48:2b:a1:ec:26:e3:b2:0d:00:c6:
5c:de:63:1a:f2:0e:9e:4f:e8:71:15:00:14:86:52:
78:90:82:9a:6e:85:3c:43:74:00:cb:c3:75:6f:a5:
ae:c6:c1:2e:92:5d:0c:cd:ac:a4:78:4b:93:ec:34:
d7:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:CC:D2:88:14:AF:D7:60:DE:21:35:EC:5C:F7:77:B4:FA:17:84:0B
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/eczSiBSv12DeITXsXPd3tPoXhAs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.164.0/23
Signature Algorithm: sha256WithRSAEncryption
27:83:e5:a5:b2:12:20:b6:c2:aa:de:0a:59:41:43:1e:7f:94:
e2:2b:4e:75:a6:86:39:f1:c4:31:13:69:07:53:96:93:ce:c2:
cd:c9:70:72:cf:b8:d1:9e:d4:ac:26:d5:69:0d:9a:19:c3:1e:
14:e5:27:e3:84:d3:23:5c:22:93:5f:1d:5a:7b:16:4b:72:e0:
1e:fa:b5:21:30:58:20:e3:8e:4a:35:d3:8c:5c:11:a2:6d:25:
9e:60:b7:b2:d4:16:b5:79:bf:15:35:be:e4:0c:de:27:80:02:
fc:31:ed:3a:58:36:ce:a4:b3:08:95:5a:1c:fd:cb:2c:08:e6:
86:6f:cf:f4:08:bd:e2:da:e5:54:00:8b:51:db:73:3b:93:47:
d9:5a:6b:a0:82:fd:cb:ff:d6:42:a4:e6:76:fb:c0:5e:d1:02:
10:1d:1c:5e:9a:63:83:74:55:a2:78:99:db:38:90:d6:d1:3c:
e5:76:5a:9c:ac:69:1d:c9:ea:d7:d7:a8:19:32:ca:dd:2c:67:
4e:d1:d8:74:60:6f:e8:e3:24:b7:99:42:0e:4b:c3:a4:71:06:
32:1e:20:ca:d7:b9:43:1d:8b:75:b1:b3:49:64:3c:45:1f:64:
89:32:d5:36:e3:ab:8f:04:24:ec:92:cd:9c:29:51:9e:53:ae:
c1:6a:89:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:11 2023 by rpki-client on console-ams.rpki-client.org