Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/kNgOX2vgtpaEFosLmARkI-BLVJc.roa
File: kNgOX2vgtpaEFosLmARkI-BLVJc.roa (raw, json)
Hash identifier: 9aiBEHXgNbg7Boh0iB6yzbk9mKljiROjF/1ojnJTh7M=
Subject key identifier: 90:D8:0E:5F:6B:E0:B6:96:84:16:8B:0B:98:04:64:23:E0:4B:54:97
Certificate issuer: /CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Certificate serial: 015B26D4
Authority key identifier: 99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/kNgOX2vgtpaEFosLmARkI-BLVJc.roa
Signing time: Sat 01 Jan 2022 02:59:22 +0000
ROA not before: Sat 01 Jan 2022 02:59:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210469
IP address blocks: 45.158.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22750932 (0x15b26d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99fee7cbd8e78d1f14a453a04b916f7c1581d204
Validity
Not Before: Jan 1 02:59:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90d80e5f6be0b69684168b0b98046423e04b5497
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:23:8b:8c:44:d1:c4:22:df:45:24:a9:74:f7:
80:45:a1:a2:27:d9:54:e4:1a:93:23:ee:d3:03:04:
2d:ec:72:0c:e0:ea:c0:06:92:6c:94:24:5b:19:70:
c5:a8:07:91:34:19:bc:ec:bd:75:f6:4a:43:7f:5a:
39:86:c4:e7:68:2f:78:93:3c:de:0e:a4:75:e8:f8:
b8:91:15:a0:88:30:36:e5:20:c4:94:1f:79:3c:d4:
2f:11:80:90:97:e8:dc:a8:7d:66:20:41:26:6a:21:
a1:4d:66:1d:39:01:6e:61:e4:0e:74:d2:18:fa:b3:
f3:c8:48:67:55:24:f7:9f:40:9e:19:c2:e7:b9:fe:
10:a6:1b:51:ce:39:d1:55:ba:27:4a:0d:a5:3e:65:
54:32:4c:c9:d8:8f:f3:d0:27:4e:fc:26:0c:26:1c:
40:bb:46:a1:38:47:7b:b2:f6:bf:e0:7b:d1:08:3d:
90:7e:9e:12:88:27:e8:2d:99:5f:90:f3:aa:56:03:
60:f6:5a:1d:1d:cc:62:08:ab:5d:c8:d0:98:70:ca:
e7:15:37:23:d6:e8:16:f0:71:25:06:17:2f:13:c8:
90:54:ac:2d:a7:ee:c0:ef:6d:57:2b:b3:6f:2e:15:
81:0f:46:1f:93:9b:5d:f2:68:b0:ac:d5:cd:a3:ab:
34:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:D8:0E:5F:6B:E0:B6:96:84:16:8B:0B:98:04:64:23:E0:4B:54:97
X509v3 Authority Key Identifier:
keyid:99:FE:E7:CB:D8:E7:8D:1F:14:A4:53:A0:4B:91:6F:7C:15:81:D2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/kNgOX2vgtpaEFosLmARkI-BLVJc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/0dd4cb-1f72-40ed-a657-1c22eff72818/1/mf7ny9jnjR8UpFOgS5FvfBWB0gQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.76.0/24
Signature Algorithm: sha256WithRSAEncryption
31:8a:9a:e8:34:30:97:e8:a5:5f:bf:b7:c6:4b:26:03:2f:e4:
0b:b7:01:23:74:db:19:3a:c6:f2:77:22:bb:07:36:cc:29:15:
5a:d7:24:b3:56:13:7a:b0:17:27:a0:24:af:bb:1b:06:f2:ca:
1d:41:b7:45:f8:48:8b:ae:3d:b7:f0:86:10:f8:db:ff:c4:84:
c0:ed:37:8c:55:c8:e0:50:85:14:bb:00:ab:e5:24:9e:bd:a4:
c9:9f:c7:eb:d6:96:38:7d:8d:00:f0:13:3a:43:61:73:27:11:
51:f8:1e:da:69:97:28:91:c2:af:2c:13:70:19:c6:8e:28:04:
c0:8c:4e:0f:32:94:2b:a8:4e:fd:1f:2c:b7:2a:7b:8e:87:27:
89:39:0b:c9:b1:0f:34:38:5b:6d:4e:62:a5:c5:aa:7e:ea:fd:
90:20:a5:89:3a:62:27:ac:7c:d8:42:c6:e0:da:79:92:1a:15:
d4:7b:66:a5:dc:be:c8:d1:5b:b5:3a:57:39:42:3f:1d:5b:41:
29:e9:b8:83:d5:e8:c7:2f:1f:73:ac:fe:92:ed:bf:58:ad:5d:
75:64:b7:c9:29:4d:6b:43:c6:8b:f7:bb:1a:b2:fe:f9:53:fc:
57:6c:26:f4:77:d7:85:3b:e6:cc:43:39:f3:b8:1b:68:29:1c:
c2:ea:43:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:36 2023 by rpki-client on console-fra.rpki-client.org