Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/HaUb3ULWttAyj-HYhWZGaEAD_tQ.roa
File: HaUb3ULWttAyj-HYhWZGaEAD_tQ.roa (raw, json)
Hash identifier: R9ViqhohdRs8ZdBmGO4/UGRMBWAgWEpzCNeRe72Nc/M=
Subject key identifier: 1D:A5:1B:DD:42:D6:B6:D0:32:8F:E1:D8:85:66:46:68:40:03:FE:D4
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 01831E084C6F0E54322A7C29FC05CCD13A59
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/HaUb3ULWttAyj-HYhWZGaEAD_tQ.roa
Signing time: Thu 08 Sep 2022 16:56:43 +0000
ROA not before: Thu 08 Sep 2022 16:56:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.154.158.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1e:08:4c:6f:0e:54:32:2a:7c:29:fc:05:cc:d1:3a:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Sep 8 16:56:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1da51bdd42d6b6d0328fe1d8856646684003fed4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:65:81:36:4f:8a:7f:bd:35:81:70:9f:dc:a1:
22:35:56:56:d0:5e:c9:ce:b5:ce:97:07:3e:ac:fc:
dc:78:30:82:ac:c9:46:74:d2:7f:ec:15:a4:57:6f:
d2:13:07:27:1c:8b:f9:d5:63:69:a5:a6:34:cd:53:
dd:9d:8a:b0:41:9f:8d:c6:f9:b3:09:89:06:3f:46:
cb:10:63:3f:ea:5a:fe:d4:fd:45:b1:47:d4:7d:10:
14:7e:76:18:91:b7:8c:fe:61:a5:58:36:21:8f:4a:
23:f7:7a:ba:b3:12:3a:00:9f:ac:af:b8:a8:0e:5e:
1a:88:99:48:cb:b1:98:ea:4b:1c:cf:28:c7:85:14:
b7:03:81:85:fb:85:a9:21:43:d2:ee:38:08:91:e5:
8a:2e:dc:4e:12:a0:78:b7:96:03:f4:e3:d4:1d:bf:
e1:33:99:0d:fb:f7:60:42:05:bd:a7:f6:64:61:66:
65:35:75:2a:60:a8:bd:c2:67:9c:3e:f4:65:be:ca:
d0:60:80:d6:55:28:7d:d9:12:40:e5:6b:c5:c0:c1:
2c:d8:98:69:c1:ad:3e:00:f0:48:2f:4e:c0:e6:b2:
3b:8c:7a:56:53:68:50:a6:ed:00:b2:d7:ea:33:8a:
1b:f5:8b:b7:9f:04:e3:a3:6a:58:60:6c:54:26:1f:
b9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A5:1B:DD:42:D6:B6:D0:32:8F:E1:D8:85:66:46:68:40:03:FE:D4
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/HaUb3ULWttAyj-HYhWZGaEAD_tQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.158.0/24
Signature Algorithm: sha256WithRSAEncryption
93:91:61:30:f5:84:5d:d1:27:5f:51:33:9a:cc:c2:51:02:f3:
53:27:ee:52:78:1e:f4:1b:3e:98:8f:3d:4c:78:59:ee:91:69:
24:65:8b:2a:a4:6c:62:da:6f:3f:4c:ea:f1:e9:62:36:88:c3:
a0:63:71:7b:39:99:a7:6f:f9:90:1b:97:5d:ff:94:c0:7a:6d:
64:a5:19:42:90:19:56:69:a9:d4:af:ac:a0:37:34:78:e5:3e:
b8:9b:46:11:60:e8:a9:b3:d0:3e:ac:3f:c3:73:3b:e0:24:a2:
53:9a:a3:37:1d:6b:cb:9f:a3:74:c9:35:b1:03:9f:bb:61:ec:
b5:bb:8d:f8:19:68:6e:06:af:4c:4c:44:e6:4e:5d:69:ba:76:
9b:57:68:2a:21:32:5d:ce:f6:6c:e5:1e:3a:97:1c:2e:5e:2a:
13:d9:6e:8d:db:a7:ff:14:cb:5d:15:bc:d3:c2:40:43:65:d3:
21:08:c0:27:d8:01:57:48:d2:c7:63:fe:46:90:3d:4c:fc:ed:
16:14:e1:c5:73:51:e0:9f:e2:1f:e8:13:fe:b3:50:a5:d7:26:
8b:1f:d2:b0:3b:0d:14:ee:ec:0f:77:ce:03:29:c6:cd:21:75:
e6:45:8f:35:27:86:ea:9b:0c:c4:00:4f:e3:5f:6f:85:21:d0:
d9:a3:e4:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org