Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/qBgUE0RkLr-rqYpE28wqzv4e_fg.roa
File: qBgUE0RkLr-rqYpE28wqzv4e_fg.roa (raw, json)
Hash identifier: DRptqfaB65AiyF7VGWzxN8M0cVMSc8YkyPfxW1OoFDg=
Subject key identifier: A8:18:14:13:44:64:2E:BF:AB:A9:8A:44:DB:CC:2A:CE:FE:1E:FD:F8
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 137D6149
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/qBgUE0RkLr-rqYpE28wqzv4e_fg.roa
Signing time: Sat 01 Jan 2022 05:56:13 +0000
ROA not before: Sat 01 Jan 2022 05:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43818
IP address blocks: 45.67.116.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 326984009 (0x137d6149)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 1 05:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a818141344642ebfaba98a44dbcc2acefe1efdf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:ec:de:a6:3b:39:2b:fd:8c:05:db:60:94:e6:
d8:2f:c9:de:0e:39:e0:96:a7:11:92:69:54:e1:ef:
e6:ac:38:03:85:5f:36:0e:a2:df:89:69:33:3a:9c:
20:fd:25:5f:20:38:fa:29:90:08:86:ad:97:d9:e8:
2c:78:e0:a7:b5:b4:72:5b:5b:6d:7c:21:0d:eb:8c:
e7:6b:17:2f:b9:80:e2:6f:c2:80:aa:10:a7:d5:9a:
72:3e:bc:93:fc:b1:2f:e7:03:5e:6e:84:58:e7:ac:
73:1d:ab:21:7f:43:32:cb:84:aa:a8:e9:b0:f0:92:
1e:91:e8:14:ae:fc:6e:de:7d:fb:6b:da:6f:df:34:
b7:0d:6c:6d:66:21:10:63:ec:f0:98:a9:bd:2c:13:
af:13:7b:10:fa:51:e3:a7:e6:0d:c4:36:3e:ef:32:
f1:cc:1a:71:87:f5:85:f2:0f:c9:e3:76:f6:2a:27:
b2:70:7c:b4:d3:f5:a9:20:46:fe:6f:e8:74:18:e0:
23:21:e1:cd:8d:bd:a5:73:35:20:44:40:55:71:43:
c2:82:6b:bf:cc:cb:b4:17:4c:37:15:23:cc:fe:fc:
99:e6:79:a2:13:91:36:f0:b6:dc:80:ce:0e:e9:b4:
9a:bd:de:40:83:84:09:e2:65:82:0f:12:6c:a6:87:
b5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:18:14:13:44:64:2E:BF:AB:A9:8A:44:DB:CC:2A:CE:FE:1E:FD:F8
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/qBgUE0RkLr-rqYpE28wqzv4e_fg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.116.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:e7:7a:0c:a5:e2:46:e2:cb:89:ac:bc:57:d2:02:50:58:79:
62:3e:47:2d:54:f2:c9:51:d5:b6:84:1a:41:2e:90:08:c0:98:
56:97:4f:02:e2:65:b8:56:38:05:a6:ac:c1:45:01:4e:c4:a7:
64:05:03:8b:e3:20:8b:94:4b:e7:cf:ae:7b:48:3e:81:60:97:
82:f7:f2:33:3c:7b:db:2f:84:10:34:be:b3:03:2a:9a:43:3f:
a9:b1:c7:42:81:5d:ca:cf:f7:bf:4e:7c:01:ec:81:34:47:e3:
13:3d:68:a2:52:2a:d8:32:26:e9:eb:cb:c0:49:aa:ba:f7:2d:
b1:92:3f:f2:d2:5c:b5:91:2b:1d:99:9c:5f:b2:c0:ab:b8:fd:
1c:61:06:84:a0:d2:ba:6a:89:c4:4c:50:01:de:e9:f8:72:3f:
76:89:33:df:70:e1:70:e5:54:c3:4e:4a:6e:ec:ef:76:bc:ff:
79:4c:a3:e4:89:5b:64:11:d0:7b:ae:ff:7c:28:73:af:34:43:
bb:e7:25:cd:ad:2a:cf:6a:94:72:bf:ef:81:52:8d:df:ad:8e:
d3:46:7b:8a:3f:fa:a0:eb:fc:de:fa:ba:80:9f:ce:d4:8f:4f:
ce:6c:f1:7f:8d:92:f5:db:89:7b:fa:9b:da:0a:79:fe:92:1a:
8c:5b:ce:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:27 2024 by rpki-client on console-ams.rpki-client.org