Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/0N0KgMxfFPOfG2qFJDdiK6nl0ys.roa
File: 0N0KgMxfFPOfG2qFJDdiK6nl0ys.roa (raw, json)
Hash identifier: 0goWSJQuooZbzd9tpR46DxVoVoYVEhuucBzXZNBiLD8=
Subject key identifier: D0:DD:0A:80:CC:5F:14:F3:9F:1B:6A:85:24:37:62:2B:A9:E5:D3:2B
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 0183022A305043350FC32A0AFF96CB5F870E
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/0N0KgMxfFPOfG2qFJDdiK6nl0ys.roa
Signing time: Sat 03 Sep 2022 07:04:22 +0000
ROA not before: Sat 03 Sep 2022 07:04:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 271320
IP address blocks: 45.84.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:02:2a:30:50:43:35:0f:c3:2a:0a:ff:96:cb:5f:87:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: Sep 3 07:04:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d0dd0a80cc5f14f39f1b6a852437622ba9e5d32b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:ff:b1:ea:41:20:ee:6b:e6:cf:32:28:1a:de:
78:25:bc:9f:89:4c:5e:d6:28:48:75:54:7e:21:05:
83:6a:ee:b3:70:d9:00:93:a1:cd:fc:ad:24:ad:ca:
67:3f:a4:8e:d3:21:40:78:f4:d5:7d:0e:f1:4f:b6:
1c:1a:da:e9:f7:c5:1b:04:dc:34:9c:fa:c3:d2:d9:
16:34:78:52:b9:97:89:ff:27:cf:60:6b:79:d1:a1:
d0:1c:3f:56:7f:e4:87:d5:81:cc:3c:20:bb:c7:71:
00:d0:93:57:ed:1c:16:7b:a4:64:f2:f2:44:67:8b:
c7:6e:b0:6b:48:8e:c5:bd:88:f7:4f:a5:b9:ae:76:
d1:33:c7:da:b2:55:90:9e:19:7d:c1:43:b6:c4:e6:
06:ed:f7:39:a4:7b:b0:31:db:21:a2:bc:31:04:fc:
9c:b7:89:52:82:81:f1:99:f6:9d:52:d6:6b:9e:67:
10:a6:c7:fb:52:43:23:82:05:5e:f6:95:4b:0e:94:
da:c4:58:96:86:e1:db:a9:dd:c9:d3:00:9e:8e:39:
2a:96:bb:89:44:02:47:b3:3e:83:67:ff:5c:fb:5c:
5b:bc:db:f5:4e:2f:d8:b8:01:4a:02:43:a1:be:ff:
74:78:70:aa:0f:a1:21:29:47:e6:a9:49:8c:12:5f:
28:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:DD:0A:80:CC:5F:14:F3:9F:1B:6A:85:24:37:62:2B:A9:E5:D3:2B
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/0N0KgMxfFPOfG2qFJDdiK6nl0ys.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.243.0/24
Signature Algorithm: sha256WithRSAEncryption
12:7b:a9:45:5f:c4:7a:2c:02:04:b6:ea:c8:e4:5b:fd:68:e1:
7b:ba:27:1b:d1:06:34:bd:90:2f:72:11:d8:6d:cb:04:01:e3:
b5:7d:e0:b2:92:57:f4:fb:ee:ee:6a:7f:e2:91:e0:c0:14:1f:
06:d3:7f:74:01:d6:7d:0c:d1:97:9c:e5:3f:a5:0a:f6:d5:56:
ad:0d:b2:fe:fe:7a:6f:3c:22:ce:cf:d0:eb:a0:83:21:71:9d:
dd:93:63:c9:c0:ab:53:99:0c:30:e7:5e:d3:74:58:34:33:9f:
bf:bf:63:df:02:ec:c4:13:1c:f1:f8:74:3a:73:15:6e:81:f3:
29:e5:0e:9c:63:21:dc:c6:a4:c2:c3:7e:72:77:e7:c5:23:7e:
d7:65:11:a7:6f:ad:35:6b:5d:40:6a:fa:64:b8:cf:da:48:47:
07:9d:73:cb:f2:11:49:39:33:b7:46:10:5e:29:41:ee:66:33:
f8:42:79:c8:a5:71:da:0d:0e:de:c3:ac:ed:af:67:d1:b8:af:
00:bc:47:2b:39:5c:d7:3e:e8:4e:65:da:92:14:34:0d:59:a3:
78:a7:82:7b:a3:f7:64:a3:5b:77:ac:12:4d:0a:06:9d:20:76:
90:f5:5e:cb:50:1c:b7:25:f1:c3:a8:04:dc:20:c2:76:9d:20:
06:84:70:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org