Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/Ib1IoNz_3pp3CtXGBwZ61PBYFUI.roa
File: Ib1IoNz_3pp3CtXGBwZ61PBYFUI.roa (raw, json)
Hash identifier: Z7a3ymaJO5V0gxs+FJxNUqlomSo9hDuyWksYuYXjDfU=
Subject key identifier: 21:BD:48:A0:DC:FF:DE:9A:77:0A:D5:C6:07:06:7A:D4:F0:58:15:42
Certificate issuer: /CN=a1a01f76a42be8717befdce1676215988a4dfc73
Certificate serial: 01B12D6B
Authority key identifier: A1:A0:1F:76:A4:2B:E8:71:7B:EF:DC:E1:67:62:15:98:8A:4D:FC:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaAfdqQr6HF779zhZ2IVmIpN_HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/Ib1IoNz_3pp3CtXGBwZ61PBYFUI.roa
Signing time: Mon 13 Jun 2022 02:23:03 +0000
ROA not before: Mon 13 Jun 2022 02:23:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205960
IP address blocks: 45.142.153.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28388715 (0x1b12d6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a01f76a42be8717befdce1676215988a4dfc73
Validity
Not Before: Jun 13 02:23:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21bd48a0dcffde9a770ad5c607067ad4f0581542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:cf:89:9e:3a:fd:17:f6:7f:e4:83:dc:19:e6:
d3:69:b3:82:fd:ca:b1:cc:ea:60:94:e8:0f:a5:e7:
5c:3d:a4:a6:b7:83:7f:91:87:bf:68:07:78:a5:fe:
10:3d:00:c1:e7:b8:9e:4b:0f:a6:d5:d9:12:69:26:
18:2a:e4:f2:48:5e:55:2b:63:49:af:50:4c:ee:38:
df:7b:dc:d5:b1:d4:76:de:5e:63:7f:39:e8:26:75:
45:05:d8:58:07:b2:56:d9:e3:a4:83:1b:c6:5f:a7:
55:05:c0:f1:a4:72:0f:8a:5e:60:21:8b:ba:40:bb:
8d:0c:29:f4:6a:67:33:8a:73:40:97:36:ee:d9:dd:
a3:d9:31:37:1b:e1:3f:87:a6:4d:d0:99:b8:d3:a5:
ba:3b:5d:f5:8f:00:57:73:82:38:72:a1:00:f6:4f:
52:63:44:b6:67:3a:c3:f1:26:e6:ce:f0:cb:40:a1:
fd:0f:db:cc:42:2e:b2:08:01:0a:3c:4e:60:ed:88:
e1:24:4e:cc:d5:c5:3d:36:75:c0:b7:7b:da:4c:95:
59:b5:87:2d:24:36:8d:97:1b:de:0b:18:d8:d0:69:
eb:35:cc:16:7e:05:c4:b6:9a:3a:56:af:4b:79:a1:
08:df:67:ef:58:42:3c:79:a1:03:0c:33:f9:8b:75:
5d:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:BD:48:A0:DC:FF:DE:9A:77:0A:D5:C6:07:06:7A:D4:F0:58:15:42
X509v3 Authority Key Identifier:
keyid:A1:A0:1F:76:A4:2B:E8:71:7B:EF:DC:E1:67:62:15:98:8A:4D:FC:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaAfdqQr6HF779zhZ2IVmIpN_HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/Ib1IoNz_3pp3CtXGBwZ61PBYFUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/oaAfdqQr6HF779zhZ2IVmIpN_HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.153.0/24
Signature Algorithm: sha256WithRSAEncryption
64:04:60:cf:f6:fd:cd:0d:d8:23:41:ef:df:21:e2:14:f9:48:
84:19:a9:6c:82:9a:56:20:e2:9f:97:ad:e9:11:13:25:92:68:
7b:45:7c:96:43:bf:16:d3:a8:dc:ab:d5:26:71:60:b4:60:51:
8a:a3:aa:06:a6:9e:57:6b:c1:ad:9b:65:4a:79:f5:13:16:ab:
2d:00:0b:24:40:e9:2d:97:68:2f:f0:43:96:ad:aa:35:ba:fc:
17:18:5a:c3:d4:5f:f4:9a:89:d1:d1:a1:5e:1f:e0:bc:d2:c3:
b3:23:02:92:d0:48:9c:b0:9a:11:57:c6:98:75:e2:9a:21:3c:
b2:85:72:de:68:4e:52:22:4f:cd:f0:b8:a9:58:53:10:16:5d:
ea:88:f0:33:11:4a:ed:60:fa:12:32:cd:d4:2d:f5:9a:d2:35:
ee:25:8e:48:13:74:33:ae:65:83:26:f4:d8:9f:2b:b7:55:29:
db:48:b7:d5:66:5a:db:64:c0:4b:87:4f:8d:61:ce:67:72:22:
db:77:60:37:8a:26:33:43:57:55:e8:83:1d:cb:b4:66:24:b6:
0c:c6:14:a9:df:dc:9b:97:7b:c3:64:52:2e:c0:6f:21:51:ce:
68:1e:34:59:3f:5d:ac:ed:86:ef:56:f1:9c:a5:8e:bd:05:8c:
42:27:d9:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:58 2023 by rpki-client on console-ams.rpki-client.org