Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/8IyurLpumjz65V30atFRU5I68c4.roa
File: 8IyurLpumjz65V30atFRU5I68c4.roa (raw, json)
Hash identifier: zYMGYqmy4KTZPL0FNBHgoYN0iJmRW7Cd3jW53VTqimg=
Subject key identifier: F0:8C:AE:AC:BA:6E:9A:3C:FA:E5:5D:F4:6A:D1:51:53:92:3A:F1:CE
Certificate issuer: /CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Certificate serial: 17E488B6
Authority key identifier: 05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/8IyurLpumjz65V30atFRU5I68c4.roa
Signing time: Sat 28 May 2022 17:27:46 +0000
ROA not before: Sat 28 May 2022 17:27:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.84.240.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 400853174 (0x17e488b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0551605b675ece4e0fce7175ae31a93fa8272ba6
Validity
Not Before: May 28 17:27:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f08caeacba6e9a3cfae55df46ad15153923af1ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:2a:85:2e:31:f9:e3:d0:a9:e1:ce:a4:d9:a8:
04:d1:2d:8b:c9:67:5e:dd:4a:fa:98:e8:af:07:35:
d3:d3:9d:96:d4:23:e1:cd:92:29:3b:21:58:82:0b:
ff:f2:87:43:c0:12:6d:dd:1b:f7:d4:e8:db:b0:3a:
84:16:50:b9:9f:4b:70:d2:c4:4e:3e:69:17:f1:47:
6e:b3:16:e7:69:a9:e2:43:36:82:8e:b9:1f:b8:c1:
06:46:f4:ab:a3:64:22:37:a9:2a:5f:33:88:03:f0:
13:0c:43:18:59:b9:ac:ee:62:5f:e0:bf:44:c6:a7:
5e:d9:f9:4e:a6:b6:64:b2:d5:dd:35:6d:94:6c:ea:
fc:2e:71:12:7b:2d:b6:3d:14:50:e4:ae:38:52:fa:
04:23:6c:0c:b9:cf:66:ca:e9:fd:e2:aa:8c:f0:5f:
47:4e:0e:77:16:ab:fe:d7:8c:07:eb:00:69:94:0c:
4e:8d:4d:35:82:a5:b8:8e:67:ae:d5:fb:df:99:0b:
fc:16:50:5b:1a:f0:ec:dc:2f:04:10:a6:1e:aa:a7:
de:7f:f3:15:bc:c0:c6:a4:44:4d:4e:cc:69:81:d7:
49:52:39:0b:f4:0e:d9:ee:41:a4:b4:22:88:07:77:
4d:b3:5c:ac:48:d0:75:7e:6b:ce:6b:00:a4:25:65:
b8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:8C:AE:AC:BA:6E:9A:3C:FA:E5:5D:F4:6A:D1:51:53:92:3A:F1:CE
X509v3 Authority Key Identifier:
keyid:05:51:60:5B:67:5E:CE:4E:0F:CE:71:75:AE:31:A9:3F:A8:27:2B:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BVFgW2dezk4PznF1rjGpP6gnK6Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/8IyurLpumjz65V30atFRU5I68c4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/28ea45-7d30-46df-8f2a-0779f48ecea0/1/BVFgW2dezk4PznF1rjGpP6gnK6Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.240.0/23
Signature Algorithm: sha256WithRSAEncryption
3a:e7:30:33:3a:13:57:fa:2f:fc:ce:48:3a:51:c2:ca:81:b1:
55:7e:b0:50:ca:04:e3:80:5e:fd:cb:59:0b:c9:b3:34:66:6f:
19:5b:d1:0e:d5:54:9e:9c:c1:81:6f:92:be:cf:1d:2a:8e:b5:
7a:a6:fd:f5:b7:46:95:f4:a4:11:2a:e9:ac:ad:72:de:f7:4c:
d1:1b:e7:e5:d0:7a:cb:34:96:82:6f:ec:2b:76:cd:6d:99:87:
73:e7:9b:4b:69:23:b9:d6:f8:9c:53:30:29:df:32:cd:74:fe:
72:66:6d:d1:fd:92:7c:af:c1:67:71:7e:63:24:c9:76:b8:4f:
c6:42:ba:1f:ba:41:cd:96:59:6f:ae:e4:90:49:f1:9c:dd:5b:
7b:e4:2b:3b:35:f3:c2:bf:ff:35:39:d4:cc:35:43:5e:e6:ed:
aa:ac:60:7a:e0:11:48:f2:6d:8e:a0:96:51:8f:24:a5:7a:e7:
3b:ca:9f:e7:9b:36:47:b3:92:32:f1:23:75:15:02:88:95:bd:
cb:17:0e:6b:b0:31:13:dd:19:c7:a6:35:c9:09:83:dc:95:16:
66:8e:05:54:d5:c9:3a:ec:8d:8c:0c:b7:3b:93:cd:a7:ed:9f:
bf:6d:d5:ef:21:94:21:31:34:f3:86:5d:b6:af:e5:cf:2b:03:
8f:d4:34:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org