Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/b-kipdRVQVYnAS9ye7HL93oEn0Q.roa
File: b-kipdRVQVYnAS9ye7HL93oEn0Q.roa (raw, json)
Hash identifier: JRkr2Q7XOu9kyrcYctcSkF0hKleBH40H2DIa6N0dg8o=
Subject key identifier: 6F:E9:22:A5:D4:55:41:56:27:01:2F:72:7B:B1:CB:F7:7A:04:9F:44
Certificate issuer: /CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Certificate serial: 018287303DD9E83A409A9B92093B89BCA47F
Authority key identifier: 38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/b-kipdRVQVYnAS9ye7HL93oEn0Q.roa
Signing time: Wed 10 Aug 2022 09:57:41 +0000
ROA not before: Wed 10 Aug 2022 09:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198385
IP address blocks: 45.147.41.0/24 maxlen: 24
2a0f:c800::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:87:30:3d:d9:e8:3a:40:9a:9b:92:09:3b:89:bc:a4:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=38b59daedd43cc9575ac35953e3f396e21bb6d80
Validity
Not Before: Aug 10 09:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fe922a5d455415627012f727bb1cbf77a049f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:16:57:3d:e0:55:93:e9:e0:b8:23:2a:fc:bb:
23:66:7b:0e:b9:08:ad:ca:5e:05:06:90:c7:3f:16:
e5:77:85:01:98:63:92:b2:c5:f1:a3:a1:8a:94:49:
cd:13:5d:48:dd:a0:25:8b:d2:72:05:cd:90:e4:fd:
04:cd:0b:4c:f2:48:37:e8:87:ef:21:33:65:4e:14:
20:68:33:37:69:d6:24:7e:bd:49:17:85:fd:e6:38:
44:d9:d9:9d:fb:fb:97:5f:44:f1:82:03:e9:f1:76:
60:ec:5c:e0:46:42:66:cf:35:64:2d:fa:9f:07:9c:
9b:fd:92:23:45:26:fb:ae:f2:b1:95:3c:7c:96:58:
f2:c7:6a:fd:e9:ea:94:b7:df:49:a3:10:0e:6f:83:
ef:e7:80:12:f2:83:cf:c4:ed:ee:77:56:d3:75:73:
b2:ec:a6:55:86:07:16:66:cb:36:c1:26:5c:79:9a:
79:44:a9:db:dc:3c:89:a8:ed:7a:36:0c:cf:44:83:
29:0d:00:0e:f2:46:d5:90:44:2d:6e:94:84:99:24:
c9:30:2a:71:38:f1:3a:d2:99:6c:68:fa:31:c3:15:
e9:bf:db:5c:fe:77:57:45:e1:38:0c:b6:58:12:22:
70:0b:a9:af:09:59:88:2b:20:bc:55:45:5d:fa:f9:
17:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E9:22:A5:D4:55:41:56:27:01:2F:72:7B:B1:CB:F7:7A:04:9F:44
X509v3 Authority Key Identifier:
keyid:38:B5:9D:AE:DD:43:CC:95:75:AC:35:95:3E:3F:39:6E:21:BB:6D:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OLWdrt1DzJV1rDWVPj85biG7bYA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/b-kipdRVQVYnAS9ye7HL93oEn0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/433127-e2cf-41a1-9913-7a0f72cbb2d5/1/OLWdrt1DzJV1rDWVPj85biG7bYA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.41.0/24
IPv6:
2a0f:c800::/29
Signature Algorithm: sha256WithRSAEncryption
26:7a:c0:46:49:c1:27:f9:1f:f5:f9:e4:67:b1:40:2f:dc:64:
00:61:65:b9:90:84:7f:35:67:20:05:b9:bc:9f:e2:65:aa:13:
a7:9e:85:76:13:b8:37:ab:1e:6c:87:90:8e:e2:1a:40:41:e8:
23:b0:ee:7a:7f:99:78:44:f4:de:e8:c4:5d:63:5a:59:8d:12:
c3:d7:c0:ce:bf:67:bb:cd:46:29:1f:f5:60:7b:c4:28:9c:cc:
3d:a4:ef:88:c4:b2:7a:18:78:3c:04:9d:1e:79:39:98:8e:56:
04:f5:c4:87:0d:08:f0:7d:bb:23:37:02:c2:c3:02:72:4f:58:
66:34:2c:2b:48:77:12:c9:ed:77:5e:27:34:c4:1b:d5:99:c4:
b8:8d:ec:40:96:23:11:52:b6:c6:ab:94:b7:f6:c0:09:a5:e9:
b2:ee:92:c2:49:b3:f1:16:50:ae:35:b2:d6:c3:07:5d:1c:fa:
5d:7d:ba:4d:1b:da:2f:e1:5f:f3:fa:33:70:6f:e5:32:3a:e0:
b9:88:b2:89:29:5e:20:53:b0:58:38:bd:4e:46:d5:c5:dc:63:
58:3d:dd:cf:53:d1:a0:20:4b:e2:2c:56:d1:4e:0d:ae:78:63:
7b:7b:90:53:90:bb:51:2b:d1:17:e8:fe:b5:7e:c1:7e:f0:75:
2e:88:73:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:59:23 2024 by rpki-client on console-ams.rpki-client.org