Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/7YSdMtD8GpCGjdgV14byo4rOwLM.roa
File: 7YSdMtD8GpCGjdgV14byo4rOwLM.roa (raw, json)
Hash identifier: aZnd7GoOPAO4Z1T8on0usSpXE9OlUhsZvhV+akM5wUA=
Subject key identifier: ED:84:9D:32:D0:FC:1A:90:86:8D:D8:15:D7:86:F2:A3:8A:CE:C0:B3
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0184AA8CE4072A62CD905FAF18C13013871E
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/7YSdMtD8GpCGjdgV14byo4rOwLM.roa
Signing time: Thu 24 Nov 2022 16:51:10 +0000
ROA not before: Thu 24 Nov 2022 16:51:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199366
IP address blocks: 45.139.199.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:8c:e4:07:2a:62:cd:90:5f:af:18:c1:30:13:87:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Nov 24 16:51:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed849d32d0fc1a90868dd815d786f2a38acec0b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:3e:43:3e:7e:0e:86:7c:49:02:ea:ae:e3:01:
da:05:be:52:09:44:3d:f7:db:fe:bf:fd:e2:fa:fb:
f1:9f:ce:67:8d:22:a2:d9:51:c0:d5:b8:d7:67:c9:
0c:64:8c:21:98:cd:b1:5a:49:fe:2c:1b:32:b9:bb:
57:04:e3:4e:a9:ed:b8:fa:cd:6f:33:4c:e6:66:13:
70:ed:43:12:a5:98:52:a1:76:b9:51:e2:5f:c5:2f:
a3:02:f9:44:3c:b0:d8:5d:21:29:2c:06:f7:53:29:
da:2c:f0:4d:80:e8:3e:bb:8c:d7:a6:44:75:73:7a:
7b:92:26:8d:3b:3a:41:2a:57:dd:c4:cf:69:b8:9e:
16:e6:80:e1:b9:14:1a:63:84:a6:64:95:d4:62:35:
13:4f:bb:1f:65:3e:ee:01:a3:b1:b8:c4:97:01:3e:
30:83:ae:01:59:74:c3:9f:25:24:4b:0c:0c:ab:96:
49:f4:e8:94:fe:88:bc:b0:da:c4:57:ff:24:af:ac:
58:ad:26:ac:45:85:70:c4:27:2d:8c:56:14:74:77:
85:8e:fb:a9:26:ae:7b:1d:76:14:fa:e9:a1:c6:ac:
75:5e:29:e4:dc:9b:6c:2b:9a:69:91:f4:20:95:67:
1b:15:a0:41:21:3e:a7:2f:2b:91:ed:61:e2:08:31:
41:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:84:9D:32:D0:FC:1A:90:86:8D:D8:15:D7:86:F2:A3:8A:CE:C0:B3
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/7YSdMtD8GpCGjdgV14byo4rOwLM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.199.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:3c:53:f0:a5:00:31:7b:05:8e:36:ad:b4:42:0a:fd:86:8b:
65:9b:c4:11:da:98:a9:ec:dc:1f:7e:bf:66:b9:ff:cb:e9:b6:
16:dd:e4:92:51:31:f1:e1:92:eb:eb:ff:29:91:66:1a:07:3e:
9f:a8:5c:79:51:5e:fd:61:2e:9f:2d:7a:db:f0:71:eb:6f:9a:
7c:74:91:a8:5a:dd:ea:d1:b6:30:b0:d6:3a:50:f0:3f:5f:c2:
b6:06:e5:4f:02:e3:92:77:db:31:06:77:99:08:6a:d6:b4:08:
94:f1:5d:f3:1a:22:bd:34:4e:b1:b7:59:f6:fe:3c:67:4f:a5:
bb:ad:07:f4:2a:fc:c1:e8:0e:5c:22:9e:8d:24:ec:eb:0e:59:
11:2a:af:58:b0:61:dc:66:a0:b6:d3:ed:c9:91:77:25:40:e9:
a4:83:c4:5c:fa:85:2f:8e:ea:f6:ab:fa:59:43:8e:bd:85:84:
6b:89:5b:26:08:f5:f2:33:e7:17:cf:f0:90:6e:87:e7:42:e3:
61:77:47:e7:d9:e1:1b:ec:30:5f:4b:e1:d4:33:21:80:1b:65:
1a:9d:2b:8d:d4:76:53:5a:e4:a3:98:05:36:3f:a9:61:33:61:
0c:21:22:44:8c:c3:b9:0b:ef:75:d2:ad:cc:2f:40:67:ef:7a:
ab:2a:88:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:43 2024 by rpki-client on console-ams.rpki-client.org