Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/oNoXAZL9s4DprdN3EnVLE3uebDc.roa
File: oNoXAZL9s4DprdN3EnVLE3uebDc.roa (raw, json)
Hash identifier: wMe9xzYwc4Ip3tE0Hu/pNcIv7kGhXupC/BB2tCFzabY=
Subject key identifier: A0:DA:17:01:92:FD:B3:80:E9:AD:D3:77:12:75:4B:13:7B:9E:6C:37
Certificate issuer: /CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Certificate serial: 0181DC1EA090126593000457DED998BDF9B7
Authority key identifier: 28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/oNoXAZL9s4DprdN3EnVLE3uebDc.roa
Signing time: Fri 08 Jul 2022 04:43:23 +0000
ROA not before: Fri 08 Jul 2022 04:43:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 45.150.175.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:dc:1e:a0:90:12:65:93:00:04:57:de:d9:98:bd:f9:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28107ab6921ef8cb2deca3eb766478cff3e5fc6d
Validity
Not Before: Jul 8 04:43:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0da170192fdb380e9add37712754b137b9e6c37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:40:0f:c7:c1:ac:60:81:bd:93:91:57:39:1d:
9f:42:27:59:93:ed:c3:8c:9a:8b:15:92:02:65:1f:
0c:b4:e4:e2:7f:7d:8d:40:0d:b4:bf:65:52:80:dc:
09:99:eb:60:8f:30:18:ef:f2:b2:b4:f8:5b:23:dd:
59:a7:40:f9:d0:cd:38:04:42:50:b5:48:b7:92:6d:
66:64:ba:e4:fa:36:4f:f0:9d:9c:c7:35:71:2b:20:
0f:ea:06:39:69:27:03:d8:c4:ef:4b:7f:4b:3a:eb:
e0:61:0b:e8:2a:69:10:6b:eb:af:f4:fd:b5:2e:0e:
0a:2b:bb:e9:09:1e:f8:64:24:96:0d:56:38:86:b0:
36:2f:76:3c:32:c3:be:1c:92:2b:77:26:37:7b:36:
e7:28:16:fe:2a:28:bc:74:cd:38:c4:71:3e:06:fa:
97:2c:29:6e:82:2a:6c:ef:43:d5:c6:51:1e:88:dd:
68:6f:14:48:6f:52:98:11:ea:0d:da:64:d6:d4:d2:
da:7a:22:4e:64:a9:74:7b:5e:76:73:5e:f4:3c:4e:
35:ac:e2:ea:6e:b5:6b:d0:ab:c7:ce:05:cf:da:68:
fa:e5:c7:69:b9:a2:a3:0d:5b:6f:dc:b4:14:94:0f:
c9:98:36:8f:4a:01:85:b4:ee:a6:f7:2f:59:b2:ba:
a4:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DA:17:01:92:FD:B3:80:E9:AD:D3:77:12:75:4B:13:7B:9E:6C:37
X509v3 Authority Key Identifier:
keyid:28:10:7A:B6:92:1E:F8:CB:2D:EC:A3:EB:76:64:78:CF:F3:E5:FC:6D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/oNoXAZL9s4DprdN3EnVLE3uebDc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/08826e-77d0-437b-a1c2-c0fb3ef7640e/1/KBB6tpIe-Mst7KPrdmR4z_Pl_G0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.175.0/24
Signature Algorithm: sha256WithRSAEncryption
59:d1:36:94:db:04:4e:81:be:67:ab:96:23:4b:24:ae:13:09:
f8:4c:3b:d8:9c:f2:ee:14:bd:1f:25:71:da:ba:5a:5f:69:da:
a8:84:2a:2b:43:77:1b:de:c9:bb:ac:0a:ad:2b:21:48:93:83:
7b:67:87:22:c2:9a:b9:1b:f4:b5:1e:7c:44:47:22:d7:e0:0a:
32:25:9b:92:74:98:02:a8:8b:a9:9f:25:32:fc:89:61:e0:7c:
92:fd:e0:fb:69:0f:37:c9:8d:fb:b4:78:0d:69:96:d5:b8:aa:
1a:5c:fc:76:5a:29:54:26:82:f2:11:4e:35:ff:03:34:c7:c8:
88:f0:8e:94:e0:53:a5:56:03:85:48:5f:2e:8a:23:7a:41:77:
2b:51:3e:cc:c4:de:b4:ac:c8:89:55:0f:bc:bf:ad:92:13:df:
4e:06:af:ae:55:9f:f6:be:e6:db:3a:71:38:46:16:12:8a:ad:
f4:84:91:cb:47:ab:10:f2:3c:40:a9:4e:00:41:9a:29:99:42:
57:86:9f:60:d9:91:0d:57:83:75:6e:7f:73:e3:cf:d2:dd:36:
c5:8b:13:17:fb:08:eb:3b:28:91:81:2f:a4:5d:25:81:58:68:
0f:07:85:8b:ad:16:ed:52:4a:9c:72:55:49:64:65:3f:91:f5:
84:f3:66:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:15 2023 by rpki-client on console-ams.rpki-client.org