Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/CXKqu6DvArKNfr3i38P-0IswP98.roa
File: CXKqu6DvArKNfr3i38P-0IswP98.roa (raw, json)
Hash identifier: XHoZ/2Zb2sxC7O/7+eJxhs8qhLQU+FHvK8exCavKDU0=
Subject key identifier: 09:72:AA:BB:A0:EF:02:B2:8D:7E:BD:E2:DF:C3:FE:D0:8B:30:3F:DF
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 01834C7914DD5256C6DF0536FC23DEC6AF08
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/CXKqu6DvArKNfr3i38P-0IswP98.roa
Signing time: Sat 17 Sep 2022 17:22:27 +0000
ROA not before: Sat 17 Sep 2022 17:22:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203355
IP address blocks: 45.150.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4c:79:14:dd:52:56:c6:df:05:36:fc:23:de:c6:af:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 17 17:22:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0972aabba0ef02b28d7ebde2dfc3fed08b303fdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:61:63:9a:4b:da:0d:5c:a8:f0:3f:e7:a0:94:
33:c1:e3:b0:9e:dc:d9:7b:4e:56:26:f4:0a:2c:a8:
59:1f:a5:29:3a:c3:19:8c:c4:4c:45:c7:0d:4e:78:
d4:bb:b3:d4:78:a7:b3:2d:f1:b8:93:4a:6d:75:31:
41:67:5f:89:34:61:5d:73:82:07:ea:6e:17:4e:3c:
f4:64:b5:60:60:8d:c1:6b:0a:44:a3:75:98:f4:c8:
15:82:ec:45:b4:99:ca:32:c4:5b:55:33:12:b0:b5:
02:93:a1:d2:44:ee:ff:f5:8d:12:5c:93:20:af:80:
40:17:c9:c8:8f:0f:3a:35:4a:5a:f2:0f:d2:97:92:
73:05:41:ef:51:28:ea:b5:89:c6:64:0c:e3:8d:3b:
c9:fc:70:7e:73:5c:d8:34:1e:ee:95:1b:c7:12:d6:
94:07:38:63:da:b7:ef:f3:e1:87:76:6d:b8:9c:c0:
99:c2:cc:12:b5:8c:7c:f6:5d:61:ac:5c:01:64:cf:
65:19:45:02:ff:a0:82:b2:46:c9:5b:90:d2:98:fc:
84:be:ec:3a:eb:82:eb:b3:6c:dc:5a:f8:9a:03:62:
09:e7:9a:03:5a:3b:ac:6d:1f:7b:cb:14:38:1c:a4:
22:e9:e4:11:fd:28:10:6e:ee:cc:66:c1:b9:41:df:
95:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:72:AA:BB:A0:EF:02:B2:8D:7E:BD:E2:DF:C3:FE:D0:8B:30:3F:DF
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/CXKqu6DvArKNfr3i38P-0IswP98.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.175.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:5c:82:97:a5:1c:b5:03:3d:96:d3:aa:05:64:ce:93:03:5f:
15:72:04:17:0c:a0:ab:34:83:b4:0a:72:5e:fa:11:75:34:70:
23:fe:47:e3:97:d8:c6:f9:e1:e2:59:a7:ab:0e:2c:8e:04:5d:
5c:87:6f:83:21:e9:eb:8b:5a:4c:96:11:9b:2b:71:bb:9c:27:
72:58:e2:0e:f2:85:85:fc:04:e2:28:6a:37:3f:5e:93:23:43:
c5:a3:f0:b2:8e:90:b5:1a:85:5a:63:06:ca:fd:2e:55:2d:4a:
a0:02:39:90:fb:8d:c3:bc:85:75:b7:4a:ee:37:43:48:b4:23:
80:a5:a2:e8:27:6d:39:a5:3e:5d:27:a9:a7:16:69:4e:11:a6:
e5:7a:b7:a9:2d:04:46:3b:d0:a6:e9:40:a9:0f:35:28:2b:ff:
5c:d0:c4:10:74:83:f9:f4:70:8b:63:32:10:2c:c0:62:44:72:
93:72:de:3e:28:ab:9f:d3:52:18:c9:d0:0a:17:70:57:2d:4e:
2b:6c:bb:c3:57:8f:72:4f:4b:d2:0a:ed:bb:00:8d:2a:4a:fa:
88:06:1a:5d:1f:ba:88:f7:a4:6a:2e:73:0a:78:dc:87:7b:b4:
02:bb:57:f4:db:4c:06:2f:2d:c3:bd:2d:c0:8e:f7:ce:1b:63:
6c:70:30:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:14 2023 by rpki-client on console-ams.rpki-client.org