Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Dp1n9L7LcwikHWEHK-KHIh6S-lY.roa
File: Dp1n9L7LcwikHWEHK-KHIh6S-lY.roa (raw, json)
Hash identifier: Fa6AVDQLrX+SEoVGT9I2lTfzf3/3U2/tAUZESWjkfhc=
Subject key identifier: 0E:9D:67:F4:BE:CB:73:08:A4:1D:61:07:2B:E2:87:22:1E:92:FA:56
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 018356A61CFC6C52978BE13E2A96A6F4B1CC
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Dp1n9L7LcwikHWEHK-KHIh6S-lY.roa
Signing time: Mon 19 Sep 2022 16:47:50 +0000
ROA not before: Mon 19 Sep 2022 16:47:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.139.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:a6:1c:fc:6c:52:97:8b:e1:3e:2a:96:a6:f4:b1:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Sep 19 16:47:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e9d67f4becb7308a41d61072be287221e92fa56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:71:91:f7:79:29:ba:b4:70:42:75:78:9e:f8:
bc:d8:d7:48:a3:f4:68:c0:71:79:75:52:c9:85:38:
92:ff:c1:39:5a:2f:85:3b:32:10:70:1a:a9:8d:0d:
e8:ec:be:47:55:93:d4:9b:81:d0:3a:45:5c:b9:8c:
71:d4:bc:01:71:54:03:54:10:c6:98:55:e8:b7:d8:
69:a9:8c:27:a2:75:17:c1:99:85:58:93:4f:7f:9c:
b3:84:ec:67:a0:34:3a:dd:93:34:41:df:57:31:3d:
fd:de:4c:09:cf:70:97:da:63:8a:d5:a0:b2:28:51:
7b:21:87:5f:ff:b2:33:83:45:87:7a:6e:58:5b:c2:
b6:df:db:d9:05:4d:c7:1e:ed:bb:d6:c7:79:cb:1d:
c5:9f:40:56:52:27:a1:64:6c:78:aa:4f:51:be:9a:
8c:6b:cc:e3:d0:14:75:59:6a:ef:47:1a:1c:fd:3e:
77:d5:e1:fb:7c:bb:6b:68:08:51:0d:e7:16:20:4d:
d4:a5:32:33:df:45:72:8a:9c:fb:24:22:10:b0:40:
c3:05:95:38:6a:cc:c8:b7:c9:6c:d9:35:67:d4:83:
c7:70:b3:3c:52:84:4d:eb:90:cc:93:ce:57:8e:50:
d1:46:e7:87:12:c7:20:67:44:c0:96:3f:6c:38:54:
cf:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:9D:67:F4:BE:CB:73:08:A4:1D:61:07:2B:E2:87:22:1E:92:FA:56
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/Dp1n9L7LcwikHWEHK-KHIh6S-lY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.196.0/22
Signature Algorithm: sha256WithRSAEncryption
13:0a:65:b8:c1:ce:15:3d:f4:5e:e7:a2:2a:00:e7:a8:7f:17:
a0:61:fe:46:bc:17:77:dc:9e:cc:1c:f0:e8:4b:57:58:b3:f1:
a3:9b:2f:c9:2b:0c:f7:66:10:02:8a:49:34:28:57:e0:16:2b:
f3:a9:8b:0d:6d:2f:fb:b5:3c:e7:2a:2e:7a:71:b2:db:b5:25:
9e:3a:e0:fc:08:09:19:18:f2:ee:fd:58:76:66:4c:53:e2:95:
b3:30:5f:82:a6:95:12:c4:56:92:12:4f:fe:d0:da:46:76:4e:
03:40:74:da:7e:f9:25:b0:01:e6:5e:79:46:7d:47:89:12:a7:
51:ec:1f:b0:ab:a4:6e:4d:c8:3e:09:fc:12:28:99:19:cd:86:
88:06:9f:03:f6:76:b2:11:79:4f:cb:d8:77:cd:b4:b3:37:2d:
8b:e0:e3:60:c3:88:ad:f7:43:55:9b:00:fb:ae:14:f5:2c:27:
ec:37:83:24:dc:82:13:b1:ab:4d:fe:e9:06:a5:5e:b7:b5:16:
86:30:62:8a:fa:27:36:aa:c7:66:fa:9f:ac:b8:1c:43:c8:69:
71:03:64:3a:db:13:8c:95:f3:25:ac:80:a4:fb:c0:6a:b2:d3:
3b:c2:eb:a2:52:5f:ec:89:f0:81:f6:5c:a7:1f:34:4e:47:23:
8d:e8:2c:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org