Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/9CNGtwrWVhDIW6Tn9UzEnNyOJss.roa
File: 9CNGtwrWVhDIW6Tn9UzEnNyOJss.roa (raw, json)
Hash identifier: pLvRziiAWnQvFhREW/+fz88yQE6w4jHW+QDqqYZ3HqI=
Subject key identifier: F4:23:46:B7:0A:D6:56:10:C8:5B:A4:E7:F5:4C:C4:9C:DC:8E:26:CB
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 138F6604
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/9CNGtwrWVhDIW6Tn9UzEnNyOJss.roa
Signing time: Sat 01 Jan 2022 05:56:23 +0000
ROA not before: Sat 01 Jan 2022 05:56:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204872
IP address blocks: 45.15.244.0/22 maxlen: 22
45.150.180.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 328164868 (0x138f6604)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f42346b70ad65610c85ba4e7f54cc49cdc8e26cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:67:af:07:64:a4:8f:ac:7d:aa:07:f1:84:6e:
52:b0:3a:b7:4c:2b:77:08:c4:a9:ba:a2:7f:d1:7e:
86:6a:df:5f:1f:27:60:60:26:45:fb:ad:d0:ce:19:
bc:e9:0a:bd:c6:5b:83:06:18:46:40:49:c9:22:b5:
4e:0f:a0:de:75:3c:77:b1:a1:0a:86:3b:01:b4:0d:
7d:28:82:f4:55:66:28:95:40:36:8a:9c:eb:fd:40:
3b:4f:f3:a9:4b:2e:d5:30:82:dd:77:31:e2:cc:3d:
3f:07:00:2b:92:01:52:df:d2:b0:1c:be:41:91:86:
b9:8e:d6:3d:11:b5:67:2a:30:0f:fd:16:22:f2:7e:
9f:2a:14:2c:7d:2a:ba:9e:47:63:1a:7a:b8:76:2f:
21:6f:28:33:8e:0c:ba:c0:c3:1e:4d:09:db:4f:85:
d9:71:84:14:51:54:04:a2:c8:0b:87:50:4f:cd:ec:
8c:97:1e:a9:b0:7d:d0:19:de:d5:a0:5b:db:37:73:
ee:99:6d:7f:c7:b0:dc:e5:ee:cc:aa:fd:01:11:22:
3f:46:aa:59:cb:da:88:eb:12:32:41:8e:8c:42:41:
9d:6c:59:11:b4:6f:8f:9f:52:a3:22:d2:65:2f:87:
09:dd:87:61:0b:0c:ff:50:f4:9d:92:3d:da:29:f0:
db:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:23:46:B7:0A:D6:56:10:C8:5B:A4:E7:F5:4C:C4:9C:DC:8E:26:CB
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/9CNGtwrWVhDIW6Tn9UzEnNyOJss.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.244.0/22
45.150.180.0/22
Signature Algorithm: sha256WithRSAEncryption
68:89:d5:26:39:c1:8d:fb:1e:0b:b5:33:de:00:47:42:5a:b2:
cb:10:9b:0a:31:d9:42:6e:3e:db:59:35:91:31:c5:0c:48:28:
6f:e8:0e:54:fc:87:53:ec:0e:7a:a0:64:e9:1b:bd:54:6e:2e:
9d:7b:c7:62:a5:19:1f:1e:7e:1c:d8:77:cf:19:57:5e:d6:a1:
23:99:f8:88:c9:e7:d9:66:47:e0:c3:d0:d0:b2:09:7a:1d:f3:
24:59:e6:20:f3:00:2c:80:57:e0:b1:28:d9:d5:23:0f:68:1e:
80:45:de:2e:25:16:cc:9a:22:05:f7:c0:f6:18:04:58:4e:ea:
12:0f:00:cf:00:98:11:cb:09:1b:2e:2b:85:cd:c7:1f:e8:ad:
1b:3d:6e:96:11:8c:46:61:34:6b:26:47:c2:59:3f:36:c2:7a:
c8:bc:c6:56:bc:5e:74:aa:47:74:71:f9:51:3a:8c:40:c4:e1:
f5:e3:f2:2a:f6:14:ca:70:3b:57:c9:4b:60:39:78:15:bb:59:
e6:b6:9c:42:87:2b:c9:e7:8c:d4:75:00:df:82:72:c4:64:dc:
fc:44:92:5e:83:96:74:87:f7:43:b2:a1:a3:d0:2b:d8:4d:97:
d1:14:3d:a5:55:e0:f1:56:6f:e3:49:61:11:ef:f1:35:12:6f:
03:8f:13:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org