Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4VG0H5LKOTahzzqvle9jujZiPOw.roa
File: 4VG0H5LKOTahzzqvle9jujZiPOw.roa (raw, json)
Hash identifier: H3jFTxp+vj0gGvW0kdEVTrjz2VCwZKK2U/OP7c0jWYk=
Subject key identifier: E1:51:B4:1F:92:CA:39:36:A1:CF:3A:AF:95:EF:63:BA:36:62:3C:EC
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14367CBC
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4VG0H5LKOTahzzqvle9jujZiPOw.roa
Signing time: Mon 07 Mar 2022 16:16:34 +0000
ROA not before: Mon 07 Mar 2022 16:16:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 5089
IP address blocks: 45.67.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339115196 (0x14367cbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 7 16:16:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e151b41f92ca3936a1cf3aaf95ef63ba36623cec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c2:a2:1b:d5:88:35:f1:ff:89:a9:f4:2e:96:
c6:fd:b9:36:20:b6:fd:e2:ea:93:64:2c:94:fb:7f:
6f:63:c9:cf:23:4e:46:e0:20:71:28:3f:ee:e0:41:
a7:44:21:1e:04:8f:23:82:98:dd:65:f2:e6:a2:a5:
19:76:24:dc:86:54:4e:4b:d9:78:49:b0:24:a0:d4:
b3:f6:a0:16:61:ca:cf:52:d7:22:d6:a2:a7:e7:a2:
e1:e5:e7:99:02:73:43:a6:b1:ff:da:31:5e:cd:af:
80:57:a8:ba:60:35:70:d0:b0:64:42:ed:d9:10:fc:
ba:b9:55:a7:f0:22:f9:04:1e:21:f5:f3:c6:54:49:
2d:3a:0b:49:59:94:b5:e9:a5:19:67:c6:3d:1d:e2:
7a:8b:54:33:67:00:96:b5:c5:45:05:23:fd:af:11:
43:8b:ca:b4:cb:2e:0c:49:aa:53:ab:0d:c7:2e:f4:
01:9e:f3:b9:6c:39:2c:90:eb:4e:19:b8:ae:67:81:
38:51:1f:d6:c2:ef:b8:f0:14:3a:52:18:04:8d:e5:
cf:c5:da:cf:b8:db:cb:d1:44:34:d3:b2:8e:a8:45:
f7:1f:41:0e:f6:b1:c2:dd:0e:45:98:0c:0f:06:16:
c7:4b:d0:66:54:62:16:d1:c8:2d:ac:88:a3:31:f0:
0f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:51:B4:1F:92:CA:39:36:A1:CF:3A:AF:95:EF:63:BA:36:62:3C:EC
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/4VG0H5LKOTahzzqvle9jujZiPOw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.196.0/22
Signature Algorithm: sha256WithRSAEncryption
25:95:3d:00:8a:7a:34:be:5f:e0:6b:dd:5d:2f:15:f0:66:30:
56:33:50:c1:bb:64:80:db:35:98:46:90:be:a7:34:a8:04:50:
ba:fe:b5:49:ad:d9:d0:c4:1f:ec:69:41:c2:b9:f6:33:28:23:
01:3a:20:cf:9e:6b:b1:0d:fb:75:41:37:f8:0d:b5:79:92:69:
25:43:5e:33:f6:e6:33:28:9d:88:44:d3:8e:d4:52:e0:ab:9c:
eb:5f:8d:9c:6e:ec:54:aa:da:ab:03:10:f3:21:43:e8:94:bb:
84:54:68:63:9e:38:65:af:07:72:29:35:76:66:e1:9f:dd:c4:
87:ef:6a:a3:fb:fd:dc:1e:7e:f7:c1:ea:1f:d2:f4:d5:7f:f6:
f8:4b:ed:c3:7b:95:69:ca:d8:b9:3d:00:0a:92:ba:74:02:85:
91:33:99:49:97:7e:35:93:aa:ad:81:2a:7d:63:f8:32:04:06:
71:bb:df:07:f3:6f:6c:d5:93:9e:d4:00:3c:ed:2d:52:92:f5:
cf:e6:af:f3:a1:2f:35:77:33:6d:b4:ab:f1:21:1d:ff:50:ab:
fc:84:93:4d:32:4e:2e:c2:45:cd:4d:cb:7d:2e:d7:d1:f4:c7:
c0:a7:88:9a:c4:e2:37:ee:e2:93:7e:32:e9:41:ee:89:b3:5a:
ae:78:14:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org