Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/AgjrEGvWn4VjihVxn94n4W02Fs0.roa
File: AgjrEGvWn4VjihVxn94n4W02Fs0.roa (raw, json)
Hash identifier: LzlkYpzLqfsATCkrIivEzFDbScLNMZCZmo/2iO3nc9s=
Subject key identifier: 02:08:EB:10:6B:D6:9F:85:63:8A:15:71:9F:DE:27:E1:6D:36:16:CD
Certificate issuer: /CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Certificate serial: 0116151B
Authority key identifier: D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/AgjrEGvWn4VjihVxn94n4W02Fs0.roa
Signing time: Sat 01 Jan 2022 06:56:22 +0000
ROA not before: Sat 01 Jan 2022 06:56:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.145.176.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18224411 (0x116151b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d2ba2618ab4b6042ee25c4679e0775e4306d71c6
Validity
Not Before: Jan 1 06:56:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0208eb106bd69f85638a15719fde27e16d3616cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:46:e2:00:3f:7b:c6:e5:f4:28:ba:16:85:77:
bc:d6:e5:bb:2f:c5:3e:5c:73:88:2e:d2:c1:e5:48:
bd:ee:29:52:7d:19:02:0b:dd:44:0c:50:b9:93:49:
cb:43:50:15:89:4e:53:ac:a2:70:5a:30:02:d0:c9:
e4:9b:b5:87:75:8c:30:10:9d:02:af:57:93:14:0a:
72:c5:f3:0b:73:1c:1f:9d:0f:e0:d8:0b:bb:cc:d5:
2a:48:fa:4f:9d:40:4c:2e:3b:8a:98:2b:f9:35:b5:
ac:da:14:f9:78:99:12:40:95:fe:97:80:a1:84:99:
96:e1:cd:f4:db:0c:1b:e5:84:44:d3:57:96:b2:2a:
a4:f4:a0:6c:a4:7d:0e:68:87:00:88:73:37:8a:7c:
fd:d3:95:b0:1a:0f:6b:32:48:d1:5b:97:05:2e:a1:
29:b8:8e:18:6d:d7:1f:31:ce:2a:bb:b1:0d:da:3d:
f8:8f:6f:3c:d9:5c:e9:6a:77:e5:79:29:94:f0:80:
00:b9:1f:db:5f:2d:54:8c:76:19:ca:f6:ab:ff:56:
91:f2:53:6a:25:81:07:29:9f:d4:df:d4:e3:99:54:
5e:0b:ca:e5:4e:a9:35:99:3e:0f:ab:ec:1f:80:dc:
ee:6a:6c:af:9c:0b:89:c3:71:ba:9f:ae:8d:64:0c:
fb:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:08:EB:10:6B:D6:9F:85:63:8A:15:71:9F:DE:27:E1:6D:36:16:CD
X509v3 Authority Key Identifier:
keyid:D2:BA:26:18:AB:4B:60:42:EE:25:C4:67:9E:07:75:E4:30:6D:71:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0romGKtLYELuJcRnngd15DBtccY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/AgjrEGvWn4VjihVxn94n4W02Fs0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/a67996-54f1-4f1e-a760-8e0d5293aac8/1/0romGKtLYELuJcRnngd15DBtccY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.176.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:1e:7d:a3:b9:6b:24:db:13:d9:b2:97:05:76:5f:b5:79:76:
8c:0f:ba:06:29:ae:95:95:61:34:b4:b4:4f:f3:c0:21:c3:c3:
fa:a9:cc:5a:48:15:6a:a0:9f:23:69:a4:85:cc:e5:9a:e1:44:
41:03:4c:57:fe:6f:e8:f2:40:3a:84:cc:25:95:ad:3b:8d:91:
40:db:ec:87:ba:a7:ae:46:79:dd:4e:6c:0d:56:f3:a1:b2:2c:
ed:60:2e:03:4a:7d:3f:cc:62:88:43:ab:9a:eb:14:ed:e8:ca:
82:fa:96:5f:44:5b:8f:6f:69:21:2d:2b:23:e9:8b:11:d7:45:
69:14:dc:ac:59:9e:d2:6a:6d:13:ce:8a:86:c8:8c:77:9f:17:
3e:9b:24:50:b5:a1:d8:02:78:8c:0f:30:35:7c:6f:34:0a:91:
16:3b:3f:c3:d8:e7:4e:37:5d:8b:de:ae:12:f6:35:aa:79:3a:
7b:21:ff:14:ef:95:c0:0b:61:93:e1:55:ec:23:84:ab:43:33:
c1:6c:1f:07:57:d5:14:30:72:6c:55:93:87:ce:96:7d:8e:9d:
52:bb:5b:3e:26:d3:b3:9f:9f:ce:76:27:3b:54:ea:98:1a:6b:
25:9b:53:17:f1:ca:dc:a8:1e:b5:4f:cf:2f:d1:00:4a:4c:ee:
1d:89:f4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:26 2023 by rpki-client on console-ams.rpki-client.org