Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/e7dLfk_Nu6u_t20NXzy_QigjmGk.roa
File: e7dLfk_Nu6u_t20NXzy_QigjmGk.roa (raw, json)
Hash identifier: kdRWuv0pYbfmqCzudB5mEz1PX+L9eJreg2lLJxaCiVE=
Subject key identifier: 7B:B7:4B:7E:4F:CD:BB:AB:BF:B7:6D:0D:5F:3C:BF:42:28:23:98:69
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07A018C9
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/e7dLfk_Nu6u_t20NXzy_QigjmGk.roa
Signing time: Wed 04 May 2022 06:25:30 +0000
ROA not before: Wed 04 May 2022 06:25:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 45.65.112.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127932617 (0x7a018c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 4 06:25:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bb74b7e4fcdbbabbfb76d0d5f3cbf4228239869
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:c0:b7:08:29:8d:ee:c5:b9:bd:34:57:c6:16:
2a:36:fa:30:72:1c:32:c6:3d:7e:7b:b8:ff:b0:6b:
5f:f7:71:30:7a:1a:22:8b:a8:4b:8c:6c:35:90:4a:
1f:f6:ef:cc:01:40:d1:d1:58:80:db:97:73:fc:ac:
18:ea:e3:12:56:cb:3f:e2:4b:7e:6d:e3:d8:97:d0:
cc:1b:a4:58:22:fc:ea:b4:40:36:56:6c:68:00:a9:
34:0d:0c:c8:2b:91:6e:fe:d1:86:13:00:15:fe:88:
9b:71:34:78:e7:01:e1:3e:2f:62:5e:d6:03:71:e3:
09:af:9a:05:b4:6b:f7:52:ec:80:84:e4:0b:cc:a3:
6b:1e:a9:4d:ca:7c:37:ab:7e:2c:87:8f:d4:96:2a:
1f:46:df:37:aa:5f:56:fe:9c:1c:ed:9d:74:dc:9a:
73:04:e8:ad:d5:28:17:d5:b0:56:8e:e7:02:52:de:
4b:46:0b:31:9a:5f:10:da:c2:a0:d5:4b:12:56:10:
45:d5:7c:6a:05:6e:54:9a:1c:e7:a5:ba:bf:9c:53:
08:f0:0b:ff:7f:df:55:46:54:52:ba:e0:0f:5b:97:
b6:ce:5c:cf:50:03:7f:a9:df:a3:22:74:2e:d7:1c:
52:82:07:f1:e5:af:2e:5d:72:dd:bd:07:26:b9:fb:
f9:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:B7:4B:7E:4F:CD:BB:AB:BF:B7:6D:0D:5F:3C:BF:42:28:23:98:69
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/e7dLfk_Nu6u_t20NXzy_QigjmGk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.65.112.0/23
Signature Algorithm: sha256WithRSAEncryption
1f:f5:4f:3d:87:7f:22:54:eb:01:f6:04:cf:12:a2:f9:2c:3d:
63:4a:c4:7b:30:84:a3:19:fb:9f:78:07:c9:88:25:5c:b9:a7:
7b:37:de:a1:24:fc:69:71:f3:08:d5:6d:c1:17:f0:84:e0:f9:
ec:ac:c3:00:6f:f4:d2:75:c9:f2:62:a9:ad:78:c9:ed:3f:4a:
20:15:29:85:e2:66:c5:4a:8d:cc:4d:1f:17:b5:5c:c8:4b:88:
38:63:64:bd:fb:98:e4:65:95:71:37:22:85:a7:c0:e2:b8:23:
2e:66:30:5d:0e:3c:bd:09:c4:43:78:55:a6:00:57:c2:69:e4:
36:9d:ab:2b:ba:58:e5:49:dc:91:fa:3a:0c:fd:fa:c0:60:91:
0c:d6:ad:37:7a:cf:4b:95:60:32:f8:52:24:2e:58:00:5e:ef:
79:2e:da:ba:14:d2:dc:55:d6:7b:ee:fc:fd:d7:27:e6:37:2a:
1f:48:fb:7a:58:31:85:97:6e:21:c7:38:61:eb:68:fe:1e:26:
03:c3:40:6a:4f:88:d3:ce:c8:7b:0c:aa:96:f8:76:f5:cb:d8:
9a:59:63:5c:1a:af:e3:d2:cd:d4:d3:15:bc:c7:1e:eb:4c:dd:
0c:d5:3f:eb:f8:03:2b:9a:79:c6:51:18:98:9b:53:4c:48:1a:
8c:85:b1:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:14 2023 by rpki-client on console-fra.rpki-client.org