Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/v4ktHIUQLjZNh00RQ22Xu5cZ_6U.roa
File: v4ktHIUQLjZNh00RQ22Xu5cZ_6U.roa (raw, json)
Hash identifier: p7AQ4A1lDIvmNM6j29fKgPggBFSzmE0iz3zqghcuu7U=
Subject key identifier: BF:89:2D:1C:85:10:2E:36:4D:87:4D:11:43:6D:97:BB:97:19:FF:A5
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 139F6DB3
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/v4ktHIUQLjZNh00RQ22Xu5cZ_6U.roa
Signing time: Tue 04 Jan 2022 16:54:44 +0000
ROA not before: Tue 04 Jan 2022 16:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205835
IP address blocks: 45.15.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 329215411 (0x139f6db3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jan 4 16:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf892d1c85102e364d874d11436d97bb9719ffa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:26:af:4b:a0:d2:5f:9b:77:60:dd:43:3b:f0:
42:1a:20:6b:71:04:ca:5c:03:dd:39:bf:24:02:59:
c1:41:c2:aa:46:0e:8e:ec:4a:0d:ce:2b:81:40:8d:
5a:cf:56:96:8b:cb:27:37:2e:69:1c:7c:ec:47:dc:
d0:9d:63:3e:85:4e:ea:35:c7:51:a3:63:97:e5:cf:
5a:a9:72:b7:38:66:0a:a1:3e:e1:92:72:00:28:e6:
1d:9a:29:4e:0c:b1:42:cc:03:a4:f8:65:da:b5:31:
9f:69:cb:fe:91:55:40:5a:9e:24:d9:d9:38:0e:14:
7d:1e:40:70:a1:b6:04:73:74:63:68:2b:c4:da:d8:
9f:e0:62:44:8d:d7:d2:71:8c:0a:1e:4a:46:4a:bb:
c0:bc:d0:4e:1c:a0:7e:8a:f8:9f:55:e9:fe:f2:17:
18:4e:04:3e:2d:61:0a:94:1a:5c:70:eb:28:e7:c9:
32:04:0a:7c:09:3f:d9:0f:5d:38:6e:4c:8f:ca:c8:
14:24:49:44:df:61:70:ce:06:6a:af:b6:03:f2:23:
82:dc:30:b0:65:06:1d:47:39:d5:c1:b7:41:ca:f2:
95:a0:cd:45:c8:bf:eb:26:c3:90:f0:ad:e4:2b:5b:
6f:72:5c:67:fd:78:4d:55:17:b1:e0:02:ad:36:79:
86:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:89:2D:1C:85:10:2E:36:4D:87:4D:11:43:6D:97:BB:97:19:FF:A5
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/v4ktHIUQLjZNh00RQ22Xu5cZ_6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.64.0/22
Signature Algorithm: sha256WithRSAEncryption
63:3e:08:16:f9:8d:5e:76:42:50:3a:e0:55:20:68:84:d4:f3:
b8:8b:96:46:ff:5e:8c:8b:98:70:37:58:7c:e6:6c:a3:e9:19:
38:2a:59:da:4f:42:83:74:71:5e:78:21:d2:4d:79:58:9d:5b:
2e:90:96:ad:02:ad:f3:0c:47:e0:46:b6:fa:da:e0:cf:d2:37:
ad:4c:03:08:d5:b2:ad:4d:4f:15:be:af:25:31:5b:d0:4e:f3:
3e:e5:41:09:26:ba:af:8c:1f:eb:08:a9:8d:0f:cf:ff:56:ff:
53:e6:d1:e8:54:c8:a2:50:69:59:e8:f3:cd:20:33:28:ac:73:
64:3e:2a:50:99:4a:10:74:87:c6:ac:c8:64:46:aa:0a:fa:2c:
99:41:23:f0:2e:c4:54:79:a4:60:ca:76:1b:06:3b:c3:e1:d4:
a2:2d:85:1b:cb:6f:fa:00:23:c2:45:b5:a0:d4:e6:9b:e9:47:
14:53:1e:64:09:b5:f7:04:5d:26:14:a8:36:a9:e6:f6:5f:1c:
f5:73:c3:28:63:a0:92:b0:1e:a4:b1:43:e5:83:e9:7b:67:46:
45:dd:d9:90:9d:a6:22:24:fe:aa:b4:f3:67:50:35:cb:c8:d8:
de:69:c2:00:5c:08:41:26:dd:72:8b:b4:92:43:0f:e8:34:37:
2c:6f:ab:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:36 2023 by rpki-client on console-ams.rpki-client.org