Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/U72hVPAq-bHYT19g-BmwVL7O2nk.roa
File: U72hVPAq-bHYT19g-BmwVL7O2nk.roa (raw, json)
Hash identifier: Oe/TIa247MW/lDQ1QMohPDZymaMzrp98w0qVjWaYDRw=
Subject key identifier: 53:BD:A1:54:F0:2A:F9:B1:D8:4F:5F:60:F8:19:B0:54:BE:CE:DA:79
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14843543
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/U72hVPAq-bHYT19g-BmwVL7O2nk.roa
Signing time: Tue 29 Mar 2022 05:38:48 +0000
ROA not before: Tue 29 Mar 2022 05:38:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43818
IP address blocks: 45.67.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 344208707 (0x14843543)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 29 05:38:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=53bda154f02af9b1d84f5f60f819b054beceda79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:5f:24:b2:0a:31:6e:cc:b8:77:8e:4e:3b:f5:
8a:7e:f2:13:ae:f6:ab:e1:61:6a:3f:68:69:33:e7:
9d:1f:9c:58:10:7e:98:93:87:fd:f3:88:95:7b:fd:
10:78:fe:fc:d8:fe:ae:e7:1e:44:26:97:f6:e9:b5:
b8:e0:9f:a6:7d:59:de:a6:79:c6:a5:84:a7:6a:cb:
ef:3a:bc:92:d8:f5:ba:0a:82:b6:52:3b:cc:d6:ba:
9a:a4:2d:61:8a:56:ff:97:d2:b8:ee:42:90:a5:92:
88:45:44:e5:21:2d:ce:0f:91:12:c4:50:34:68:bd:
6a:79:5e:0b:a2:ef:e9:bf:d3:2f:6d:79:46:1d:81:
d3:7b:bc:c3:93:43:f0:36:dc:24:d0:8f:c8:6f:81:
35:e3:41:35:a0:55:34:f9:30:a2:90:93:a5:a7:da:
8c:b4:db:1b:af:c2:3b:aa:d2:44:b3:c7:9f:9e:6a:
9e:a1:87:94:81:3d:4f:6c:f7:ee:72:5f:57:ce:73:
73:11:be:cb:51:6e:ec:65:c2:c9:4c:40:ab:d4:ab:
cc:d4:72:de:4a:ef:fe:d4:42:d6:7a:5b:59:80:47:
5f:59:41:9b:f3:0e:56:9b:62:03:de:15:bd:63:77:
29:e3:c5:12:45:a6:93:f6:2e:ae:83:f7:32:3a:8f:
11:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:BD:A1:54:F0:2A:F9:B1:D8:4F:5F:60:F8:19:B0:54:BE:CE:DA:79
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/U72hVPAq-bHYT19g-BmwVL7O2nk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.116.0/24
Signature Algorithm: sha256WithRSAEncryption
02:45:fd:ef:62:e0:74:e9:ef:27:8d:05:63:90:5c:f5:82:84:
2d:87:ec:bf:4b:2e:67:72:c7:18:3b:d3:6a:d3:f1:6f:10:1e:
c5:bf:15:28:ec:fc:4d:8d:18:2b:ef:3b:da:56:ce:eb:ef:43:
70:9c:6b:9a:de:a7:73:f6:a1:02:7e:94:0a:43:1c:b1:7b:77:
14:34:06:1e:43:b1:f6:d1:4f:08:34:f2:da:82:75:e9:1f:96:
2b:10:06:d6:c5:5d:38:d5:f3:45:f9:65:72:d1:2f:e6:93:79:
7e:46:a0:fd:9c:7b:0b:21:bc:ef:5c:07:a7:bc:92:f1:f0:69:
4d:4c:e5:bd:4f:7f:e9:cd:33:28:42:1a:2b:98:3a:cf:04:57:
88:4d:cb:b7:c9:d7:57:bb:45:50:4c:3d:5c:d6:8f:1a:d5:0f:
42:1d:84:56:47:c8:b6:a2:ec:23:11:ce:72:1c:7a:91:9b:77:
b9:18:fc:50:27:64:b2:a6:a3:0a:dd:b4:ac:d2:a9:3f:26:cc:
47:de:46:0f:3c:9f:7e:e6:0e:8c:0e:d8:fd:fc:06:af:c3:8a:
2a:3c:0c:05:a3:ed:99:56:3c:fd:1d:bf:93:df:02:bf:86:3d:
06:57:c9:26:6e:5e:33:c8:c5:90:2e:a9:d5:a8:0d:17:4b:6e:
8e:cd:06:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org