Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7c3IV4gq3roVhV9RwrCZroG2IUw.roa
File: 7c3IV4gq3roVhV9RwrCZroG2IUw.roa (raw, json)
Hash identifier: 2n1TN4uDgGRr7Z6VDZbTHDPysWO//32oYiNUiG/P14I=
Subject key identifier: ED:CD:C8:57:88:2A:DE:BA:15:85:5F:51:C2:B0:99:AE:81:B6:21:4C
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14D18B6E
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7c3IV4gq3roVhV9RwrCZroG2IUw.roa
Signing time: Tue 26 Apr 2022 14:38:41 +0000
ROA not before: Tue 26 Apr 2022 14:38:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 10753
IP address blocks: 45.86.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 349277038 (0x14d18b6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Apr 26 14:38:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edcdc857882adeba15855f51c2b099ae81b6214c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e6:d0:bd:b9:7f:59:20:96:8c:e0:59:55:65:
94:10:0b:69:50:4b:92:7e:70:73:8a:e6:2d:df:27:
d6:3a:22:1c:7c:30:3f:ed:80:90:e4:7f:71:f4:68:
34:e4:bc:b8:28:77:b9:10:38:24:bf:02:30:d9:65:
40:8b:27:6c:ce:fd:ac:b2:e0:b9:d7:dd:7b:69:ac:
ef:a2:71:26:05:f2:5c:d0:9b:c1:17:67:3a:20:f1:
d8:61:a9:3f:54:84:a8:59:0f:4d:fc:d4:c7:8b:43:
ec:a0:2b:3e:e4:85:c2:20:8d:cb:b2:9d:b3:81:f0:
31:1d:a5:57:c8:9a:4c:fc:44:bf:f8:3a:41:34:22:
88:66:3d:eb:2f:87:5f:b6:3a:fb:f2:b7:e8:4c:0f:
36:db:d6:4a:16:24:1a:ec:b6:46:42:f3:db:3e:34:
b3:26:ae:c8:d5:ac:12:b3:d4:e8:d4:e1:45:2f:4e:
44:9c:2b:53:16:b7:d6:2e:90:38:ac:41:f8:7e:03:
52:e1:48:b9:de:ae:a4:12:f3:a2:aa:dc:c9:32:63:
76:dd:00:a8:39:dc:28:b4:b6:46:97:1b:22:35:8a:
5e:f3:26:04:42:a0:ef:72:a6:e2:5e:13:95:b8:36:
e9:8d:4d:c1:da:f9:02:73:09:10:18:d4:55:62:e0:
7a:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:CD:C8:57:88:2A:DE:BA:15:85:5F:51:C2:B0:99:AE:81:B6:21:4C
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/7c3IV4gq3roVhV9RwrCZroG2IUw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.20.0/22
Signature Algorithm: sha256WithRSAEncryption
8c:76:fe:e5:3c:dd:ce:de:39:a1:17:c8:d4:b0:c8:2c:46:9e:
da:28:27:c5:36:1f:56:db:94:31:c3:c2:00:ad:0c:9a:61:8d:
ee:cb:2b:c4:bf:9d:8f:29:46:1d:d8:b3:7f:ec:e0:88:35:d4:
84:56:b0:65:f2:be:88:0f:42:9a:e7:3c:35:53:2b:40:6e:b4:
32:bb:7b:eb:20:70:6f:7e:46:f1:13:d7:94:56:f6:b0:25:2a:
da:6c:72:3d:64:17:fe:20:2e:da:6c:2a:ce:89:d5:09:49:85:
ff:22:f8:90:34:75:55:0b:89:5f:c8:ec:2a:83:44:82:8c:f8:
cd:36:97:85:d2:7e:9e:91:d8:65:e7:22:5b:d7:75:b5:41:37:
4c:ae:f0:8f:9b:66:40:06:d1:74:0d:f8:8a:d8:2d:e0:57:b1:
34:a0:3c:87:71:0f:25:95:a3:05:de:4f:9b:89:07:f2:9d:b7:
f5:41:f1:ef:f7:6c:7d:d9:4d:94:1d:c4:68:9a:03:ad:23:b7:
b9:eb:c0:fc:e0:96:38:41:f0:c5:71:38:cb:b6:73:a8:5c:a3:
da:b8:35:33:c1:2b:bb:90:bf:5a:54:0a:77:f8:ec:a1:6c:91:
b6:33:fd:0e:0e:ba:b7:33:95:8b:30:c9:da:de:4c:5b:65:79:
75:a0:f7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org