Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/O-f656EQdFxT28IcAl_JEcsaKLg.roa
File: O-f656EQdFxT28IcAl_JEcsaKLg.roa (raw, json)
Hash identifier: 6uQjAzQ6HzOiP1LmwgSsNCDp/GuQFK0uTtBlzse+d3Q=
Subject key identifier: 3B:E7:FA:E7:A1:10:74:5C:53:DB:C2:1C:02:5F:C9:11:CB:1A:28:B8
Certificate issuer: /CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Certificate serial: 081F7613
Authority key identifier: F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/O-f656EQdFxT28IcAl_JEcsaKLg.roa
Signing time: Sat 01 Jan 2022 04:03:38 +0000
ROA not before: Sat 01 Jan 2022 04:03:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15879
IP address blocks: 45.80.232.0/22 maxlen: 24
2a0e:4980::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136279571 (0x81f7613)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4c64994e24d4aefdc42a8831fe0dce20d604689
Validity
Not Before: Jan 1 04:03:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3be7fae7a110745c53dbc21c025fc911cb1a28b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:78:e3:e2:3b:1a:bf:12:a0:f5:d3:07:f6:15:
91:9d:d3:f2:7b:e3:81:87:d1:60:89:d2:d1:8e:d6:
45:01:ca:8f:23:6a:a6:67:ae:8d:7b:2e:0c:71:02:
c2:24:89:90:ab:fc:74:26:7d:9e:88:4d:c7:6c:fe:
3a:03:c9:02:81:1f:28:2a:12:5d:e0:74:58:4e:09:
69:50:f2:98:d0:42:a9:2c:aa:3d:a8:b2:8d:7e:85:
60:1f:65:58:9a:39:5a:4c:87:c4:a7:4d:59:c0:25:
92:eb:b0:d2:4f:d9:32:36:01:ed:f2:2c:60:79:76:
3e:0f:ff:42:cf:1e:29:eb:1e:cf:bf:d7:57:85:b2:
a5:cb:86:3c:9e:b3:51:74:56:29:9c:e0:2f:d0:8d:
f7:88:77:0e:5b:9f:fc:c7:ab:6c:cc:51:ba:e2:b5:
b1:79:3b:22:e6:8a:9c:96:32:8d:57:e2:6c:44:31:
91:d6:05:fa:1a:e4:d8:8a:ae:d4:8c:55:6a:01:0d:
ef:29:89:59:0e:de:5e:0e:ec:b2:af:00:08:02:b8:
5e:d0:a0:c2:d4:48:f6:1f:b1:33:b5:99:b2:1f:ec:
08:0b:94:51:7c:c9:c7:00:de:22:27:6a:7a:27:a8:
4b:bf:d2:73:82:ba:3b:19:93:4e:95:93:e2:88:2d:
4f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:E7:FA:E7:A1:10:74:5C:53:DB:C2:1C:02:5F:C9:11:CB:1A:28:B8
X509v3 Authority Key Identifier:
keyid:F4:C6:49:94:E2:4D:4A:EF:DC:42:A8:83:1F:E0:DC:E2:0D:60:46:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9MZJlOJNSu_cQqiDH-Dc4g1gRok.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/O-f656EQdFxT28IcAl_JEcsaKLg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/64658d-d5eb-489b-bc15-3855698fb57f/1/9MZJlOJNSu_cQqiDH-Dc4g1gRok.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.232.0/22
IPv6:
2a0e:4980::/32
Signature Algorithm: sha256WithRSAEncryption
95:cf:53:dc:85:34:bd:be:1b:bc:6f:ca:e7:1e:05:7d:ad:8e:
bf:d7:b7:1a:f0:0d:af:e4:95:2e:9c:96:16:99:c0:23:e8:42:
8e:26:02:27:11:13:23:8d:4c:de:1c:10:8d:3f:e4:d3:df:5d:
32:22:89:01:89:02:71:af:51:45:31:3c:a0:9e:87:7d:76:0f:
a8:5a:dd:cc:fe:27:18:8f:3a:8c:57:c8:ad:56:a9:ff:6e:e1:
1f:fb:6b:1d:3d:50:a6:3a:d8:1a:00:e5:b7:c4:18:75:75:da:
23:a0:72:12:c8:fb:23:0f:54:54:14:e0:1a:1a:83:14:24:99:
15:6d:22:5f:47:e0:41:e9:0d:b1:dd:a8:4c:e1:d6:05:ab:68:
e7:ba:39:01:cf:ac:e7:7a:3a:c8:88:77:fc:e4:f5:b2:c7:09:
04:6f:3e:c7:a2:5d:ba:78:23:8e:e6:d7:f0:20:c5:2c:fa:e8:
e2:a5:b6:7d:30:55:6e:d5:e0:39:02:2b:de:b4:45:ac:56:ff:
b1:5e:ef:da:d0:41:3e:51:30:dc:32:c8:e2:d1:d8:76:21:1d:
ca:63:f3:27:15:9f:20:d9:83:8f:cf:05:fb:f2:cc:be:3f:ca:
c4:be:c8:0e:64:09:6c:9f:b1:d3:ff:60:d7:44:e2:b5:56:f8:
37:d4:49:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:02 2023 by rpki-client on console-ams.rpki-client.org