Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/GUJzRZ9YbvJKqHUES2wngp68_H4.roa
File: GUJzRZ9YbvJKqHUES2wngp68_H4.roa (raw, json)
Hash identifier: ikTA6qKD8yovo+74kY64uZKZa+jBUeNs65C0Cnps/po=
Subject key identifier: 19:42:73:45:9F:58:6E:F2:4A:A8:75:04:4B:6C:27:82:9E:BC:FC:7E
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 153F3211
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/GUJzRZ9YbvJKqHUES2wngp68_H4.roa
Signing time: Sat 04 Jun 2022 10:18:44 +0000
ROA not before: Sat 04 Jun 2022 10:18:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39690
IP address blocks: 45.143.44.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 356463121 (0x153f3211)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jun 4 10:18:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=194273459f586ef24aa875044b6c27829ebcfc7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:0f:0e:40:dd:0c:d6:ef:7d:b9:0f:ef:4f:d5:
15:cc:41:b0:78:18:b5:7e:c4:65:70:37:f0:66:95:
aa:b9:d9:8a:21:23:2b:fa:94:62:54:b9:9f:57:9f:
56:ee:30:dc:07:27:80:24:22:15:ff:2c:6d:8d:9a:
d1:2e:a8:58:af:bf:94:38:87:5f:2b:a4:e8:df:74:
da:5e:b9:da:18:e8:d8:69:ea:ba:7c:7b:f0:b2:63:
68:f8:6d:1e:5f:69:91:49:de:42:21:95:b8:2e:7f:
00:ec:6f:50:ca:3b:64:37:35:71:6e:fe:6b:c1:12:
90:fe:27:6c:72:a3:75:53:b0:74:64:ce:e6:44:e5:
f4:aa:81:bb:a2:ea:73:e9:a1:94:87:0f:19:14:5e:
d2:ee:e6:ec:25:48:c0:7a:54:e3:c8:bb:0c:92:0f:
60:0c:f5:b4:f2:f2:4e:2b:bc:ee:c6:09:a9:2a:24:
13:87:af:bf:d1:0b:1c:f5:4b:47:b4:ca:ed:96:c2:
e7:49:68:3d:aa:8c:71:2d:7f:83:e4:6f:e2:b7:27:
e8:6a:6b:27:14:16:2b:3a:a2:c8:41:d2:80:7c:74:
00:ed:3b:7d:ea:48:19:4f:60:3c:f6:86:0e:47:37:
13:44:7d:ae:ed:1c:7d:c2:4a:25:6f:17:42:ef:9a:
4e:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:42:73:45:9F:58:6E:F2:4A:A8:75:04:4B:6C:27:82:9E:BC:FC:7E
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/GUJzRZ9YbvJKqHUES2wngp68_H4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.44.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:2e:84:36:1d:df:4e:b6:8a:9d:89:9b:18:61:d6:61:cf:54:
16:5d:25:79:c8:7c:b4:10:45:a0:ef:92:71:84:ea:e0:0a:73:
57:cc:cb:a2:b2:c8:19:c4:b9:8c:1b:92:98:e8:8c:3f:0f:22:
1b:7b:aa:b2:8f:c9:85:4c:cd:a0:a2:25:91:9f:0b:94:76:a2:
4d:6b:8c:ef:e8:f7:21:2a:2b:c7:fc:88:d7:74:e8:5e:69:9b:
40:e0:d5:5d:b0:dd:01:d2:bc:55:8d:31:b3:3b:c9:cc:4e:b1:
73:55:b8:81:47:be:3f:ef:67:7b:fd:b5:ca:e0:b1:45:bc:1f:
73:c4:e2:8f:38:3b:4f:be:9c:e2:e2:78:e2:43:b7:6d:c5:32:
78:74:81:3d:b4:ca:16:20:27:3c:14:54:1a:be:9b:08:b2:f2:
1e:83:76:77:33:bd:cc:79:9f:5d:2b:1f:29:83:80:e6:8a:3d:
fb:01:8f:e8:b0:92:71:22:33:0d:23:45:1c:24:60:9b:07:94:
ed:bc:85:a2:b5:43:ca:f2:ff:9e:16:b5:74:dc:bc:a3:65:a7:
1b:ba:61:05:f4:27:60:11:2e:6a:d0:f0:2b:2c:01:3d:2a:10:
b7:13:71:77:e6:fb:a8:05:0c:5e:19:79:0c:64:a7:13:3f:19:
4b:52:85:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org