Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Ht7KNDxvEDZL6Cz6ZhGFGzu5ICc.roa
File: Ht7KNDxvEDZL6Cz6ZhGFGzu5ICc.roa (raw, json)
Hash identifier: paVXfnQMtHt1FmLx/EjAh6u6Qcu8DveZWRrOB4Ud3kc=
Subject key identifier: 1E:DE:CA:34:3C:6F:10:36:4B:E8:2C:FA:66:11:85:1B:3B:B9:20:27
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1387DF66
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Ht7KNDxvEDZL6Cz6ZhGFGzu5ICc.roa
Signing time: Sat 01 Jan 2022 05:56:17 +0000
ROA not before: Sat 01 Jan 2022 05:56:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201813
IP address blocks: 45.67.196.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 327671654 (0x1387df66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1edeca343c6f10364be82cfa6611851b3bb92027
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:49:43:37:ae:aa:4c:e0:04:d7:93:35:fc:9a:
03:ff:33:05:78:95:8e:3a:4b:32:e7:4d:84:95:36:
52:cc:64:94:de:a6:88:f6:c8:d9:c1:1f:b0:56:67:
ed:7c:f3:0f:14:51:17:45:e5:54:52:f8:83:a3:93:
c9:8c:c4:b9:c6:17:1f:c0:16:e8:6c:e6:3f:75:74:
78:f3:ce:2e:37:03:2d:87:02:3d:03:78:1e:e3:a6:
65:6a:1e:1d:5f:b4:06:15:26:44:24:ad:62:01:50:
a9:5d:d2:dd:f8:57:3e:3d:92:29:a9:d5:80:ba:d3:
3d:ae:e3:8c:a2:4c:42:18:1c:0e:4e:31:93:89:93:
3c:e3:6d:cb:8a:ee:c0:3d:52:41:5d:b6:37:3b:2f:
6f:58:b0:57:d9:b0:fe:2c:d4:ac:43:c7:a7:eb:fc:
fc:f4:44:d0:e6:6f:1a:ca:f7:3a:f2:c2:ba:0b:28:
e4:9b:95:78:b2:6b:ca:6c:41:54:4f:bb:a5:57:47:
99:45:b7:75:02:d4:33:a7:6d:07:5b:7e:8e:ed:50:
6f:3b:4e:df:1e:b8:ae:2a:41:aa:76:42:f2:c7:1a:
9f:7b:52:e5:d2:a9:91:d0:83:d1:57:f8:93:d5:cc:
87:ad:eb:33:85:67:39:b2:dd:0a:65:02:cb:5f:fa:
05:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DE:CA:34:3C:6F:10:36:4B:E8:2C:FA:66:11:85:1B:3B:B9:20:27
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/Ht7KNDxvEDZL6Cz6ZhGFGzu5ICc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.196.0/22
Signature Algorithm: sha256WithRSAEncryption
26:7f:0b:b9:11:94:04:00:0c:61:e2:ad:40:3b:a7:a9:d7:b8:
3b:72:c1:6e:dc:1f:f6:03:fa:26:8b:fa:5c:43:40:70:2c:4e:
4e:ca:fb:d0:a8:15:96:95:2f:5a:8b:b8:be:98:73:05:9b:f0:
4d:ab:02:2a:90:a1:7d:4f:97:bd:c9:88:ac:e6:b4:4d:3d:06:
64:68:82:0e:97:2b:3e:32:33:59:73:a4:ca:29:9f:09:f3:a6:
31:1b:a6:0f:e3:86:3b:b1:b3:3b:b8:0f:e7:9e:70:af:77:02:
ae:31:ac:bb:24:5f:eb:c8:1f:54:f6:2f:e8:27:e8:ec:dd:6c:
60:de:5f:5e:b4:24:57:77:c0:91:d5:bf:ea:6a:a7:dc:21:28:
06:82:b5:0a:d6:17:5b:be:27:7f:ac:de:41:47:99:0e:85:1e:
83:a8:d8:fc:ed:d7:0e:d3:f6:44:2d:3f:96:62:14:70:5c:6d:
c0:09:9d:13:bc:67:08:03:57:dc:03:5f:2f:df:25:df:46:5e:
29:8e:96:9e:28:e9:d2:a4:1b:98:60:31:c6:79:fa:16:4d:b7:
a5:fb:64:82:39:29:5e:86:4f:94:44:94:f5:b2:00:5d:12:d8:
7a:4f:b3:f7:d7:91:01:22:59:5e:34:35:25:39:3e:1b:e4:db:
db:69:52:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org