Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Smdiks-mxzho-gPpQvumucB8VKw.roa
File: Smdiks-mxzho-gPpQvumucB8VKw.roa (raw, json)
Hash identifier: 89BtJTkeKfEOeYlk3n1kUO+6mW1rDA3H7kXsK61f6w4=
Subject key identifier: 4A:67:62:92:CF:A6:C7:38:68:FA:03:E9:42:FB:A6:B9:C0:7C:54:AC
Certificate issuer: /CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Certificate serial: 01F8D1ED
Authority key identifier: 0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Smdiks-mxzho-gPpQvumucB8VKw.roa
Signing time: Fri 24 Jun 2022 09:02:47 +0000
ROA not before: Fri 24 Jun 2022 09:02:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396356
IP address blocks: 45.134.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 33083885 (0x1f8d1ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d2999042c5e2006bd5aeb7a05de1e96a5e73664
Validity
Not Before: Jun 24 09:02:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a676292cfa6c73868fa03e942fba6b9c07c54ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:79:09:92:18:c3:36:d3:37:0d:a5:a1:22:81:
3b:fc:7f:bb:17:cd:dc:b7:ee:6e:4e:a1:e4:0c:30:
76:0b:b9:e0:ad:4e:c5:e8:4a:db:8e:a3:f2:05:05:
81:8d:3c:4c:85:28:3f:8d:5c:b6:42:19:a6:5f:ae:
d9:d1:66:54:52:b9:a1:61:95:7a:15:d7:7b:2e:d5:
1f:87:44:6b:64:ca:e5:64:4f:bc:1a:06:e4:19:c3:
c6:9a:34:1d:06:a8:a3:d9:ad:45:9c:c6:ce:c1:6e:
d3:d7:22:83:46:0c:f5:e2:c4:6c:bb:0c:af:0f:6e:
27:7e:db:63:f3:c2:b0:83:82:e5:8b:0c:30:90:05:
ae:27:c5:3a:9c:b6:4b:01:72:af:15:ad:10:fc:cf:
90:fe:04:00:df:ea:40:58:47:03:ee:c3:15:1b:03:
86:98:89:11:45:4a:2f:f2:50:2e:1d:67:ea:3b:f0:
73:18:98:be:da:81:30:aa:99:e5:23:fb:cf:e2:9e:
33:b6:b3:68:7d:6a:89:9a:92:25:ab:86:12:3e:bf:
0d:00:35:63:f8:2f:c3:3d:60:77:7a:5e:2b:ea:a9:
a4:9f:f9:5a:b6:15:e5:c7:a3:c5:94:fe:a4:32:07:
8c:90:6d:9e:15:36:9a:03:a9:77:05:09:77:af:c2:
93:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:67:62:92:CF:A6:C7:38:68:FA:03:E9:42:FB:A6:B9:C0:7C:54:AC
X509v3 Authority Key Identifier:
keyid:0D:29:99:04:2C:5E:20:06:BD:5A:EB:7A:05:DE:1E:96:A5:E7:36:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/Smdiks-mxzho-gPpQvumucB8VKw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/2c3316-efc7-4952-9efe-8c153965bac9/1/DSmZBCxeIAa9Wut6Bd4elqXnNmQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.20.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:1b:34:15:30:ee:8c:61:44:81:1c:30:67:fb:0b:64:61:5c:
e0:7c:cb:2e:d2:9b:60:50:a4:9b:40:16:b8:db:af:8f:16:99:
e8:7d:f5:0c:e5:72:73:ce:9f:99:2c:48:62:c9:46:35:b4:89:
6d:5e:ce:23:04:9d:5d:04:fa:a4:4c:89:a8:9e:9c:57:75:7e:
a4:b7:91:79:0e:8e:bc:c5:52:b0:28:22:05:8e:f9:45:01:06:
03:7e:c9:b5:66:25:7c:06:64:6e:c2:74:32:12:c3:7b:b2:65:
40:58:ab:37:e8:b0:ae:a5:4b:ff:64:c9:78:a5:d7:5c:a7:53:
99:2c:66:e9:d0:9b:89:a1:e8:2a:19:fb:dd:e6:3c:04:4e:b7:
db:86:2b:88:dc:0e:d5:b5:26:e6:a0:0a:0e:de:c3:d9:fa:2f:
80:1f:3e:28:a5:3d:77:73:53:07:05:63:15:68:48:7c:d5:67:
46:3e:80:ae:85:3c:f2:fb:e8:6a:5a:f0:25:85:aa:1f:14:e8:
72:22:86:fb:05:d6:35:ca:5d:b9:91:8d:51:e5:d2:49:d0:61:
c9:2b:65:6e:ec:65:dc:88:db:e8:fe:f9:c0:96:bd:9b:27:8e:
68:b4:d9:4b:9a:50:bd:99:a5:4b:1d:6d:b2:8d:9f:9d:b5:6f:
c3:0c:9b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:51 2023 by rpki-client on console-ams.rpki-client.org