Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/8COUfcCzErxJUXDIkVAWtCQCmcs.roa
File: 8COUfcCzErxJUXDIkVAWtCQCmcs.roa (raw, json)
Hash identifier: SXMALMBdokczvPPvQeyqw/EbtB0tMnmZ3ZwhHSoJeHE=
Subject key identifier: F0:23:94:7D:C0:B3:12:BC:49:51:70:C8:91:50:16:B4:24:02:99:CB
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0181D42A92756AF5CF32CA372ED27F86DE1A
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/8COUfcCzErxJUXDIkVAWtCQCmcs.roa
Signing time: Wed 06 Jul 2022 15:39:28 +0000
ROA not before: Wed 06 Jul 2022 15:39:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.140.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:2a:92:75:6a:f5:cf:32:ca:37:2e:d2:7f:86:de:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Jul 6 15:39:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f023947dc0b312bc495170c8915016b4240299cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7b:8c:e3:76:42:57:33:97:1e:b4:75:16:0a:
04:18:bb:3e:4e:c3:21:94:2d:d0:dc:75:6e:ac:a5:
40:44:ae:12:db:30:1d:01:86:d1:62:c0:ce:fc:4d:
3a:50:ab:f6:a2:5a:81:5d:d8:8b:e8:de:62:5b:cf:
4c:91:53:29:66:1e:2d:a8:74:6a:c6:9b:fa:3f:16:
d3:69:a5:3c:4f:34:62:5f:ae:f0:27:d8:1f:51:a4:
fc:ab:3f:7c:88:c4:4d:28:36:a1:a2:85:ee:ed:7b:
3b:47:f2:5a:ea:bf:5d:cc:5a:7e:60:e2:59:3f:49:
dd:78:83:93:06:4b:9b:d3:52:55:76:4a:62:89:cc:
8e:c6:cb:2a:a4:0e:eb:6c:73:e1:fc:db:a5:f4:c9:
cd:c0:29:88:7d:56:c7:ac:56:41:1a:52:8a:ce:7d:
38:90:d5:84:ee:ba:1a:1a:c0:6b:3e:6a:c9:bb:83:
1a:48:ba:c6:0b:ff:b0:ff:98:57:99:ed:86:9d:26:
01:e8:f1:f3:0e:34:d9:38:b4:f8:1b:59:f2:d6:80:
28:d3:4c:39:87:8f:05:9e:54:c0:83:68:38:bb:7b:
d5:48:cd:ef:d3:a8:c2:83:28:d4:a8:a4:98:96:ec:
ee:aa:4d:a5:b6:aa:b7:ea:f4:10:2b:33:88:e5:71:
44:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:23:94:7D:C0:B3:12:BC:49:51:70:C8:91:50:16:B4:24:02:99:CB
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/8COUfcCzErxJUXDIkVAWtCQCmcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.247.0/24
Signature Algorithm: sha256WithRSAEncryption
ac:ae:4a:30:ef:00:5d:65:35:6d:0f:b5:cd:94:79:fc:a7:be:
08:8c:e3:d3:39:09:fa:ff:6c:b7:cd:d0:d9:81:cd:80:fa:fd:
f7:4c:4d:b1:3a:4c:1d:7b:7c:39:1f:8a:9c:5a:6c:55:80:7a:
65:ca:c3:17:a9:59:f3:8b:ba:2a:7a:d5:0c:0d:02:98:1c:db:
79:3b:d8:ab:5c:e6:b7:85:1a:b0:7b:91:a8:f1:64:d6:ed:d2:
06:0a:b1:77:1a:b0:49:df:69:51:d1:26:f9:df:0d:cf:ca:70:
bf:48:c0:43:a6:28:53:ce:cf:39:78:25:c0:70:01:ed:8a:18:
f0:bc:b7:b4:93:f7:c6:06:36:4a:f7:73:9f:61:a6:48:78:0f:
1f:6d:21:13:cf:5e:23:57:e2:bc:78:59:c1:ae:a9:3c:04:b9:
4a:ff:e0:50:1f:fd:d6:59:f6:83:4c:b5:d7:e1:2e:da:ee:66:
d0:19:3f:68:65:eb:ce:9d:91:a3:07:28:7f:d8:34:85:7d:1d:
bd:5e:c7:b7:71:d4:6b:9d:b5:a8:53:1b:41:42:a9:6e:f5:e5:
17:9f:90:e2:73:a4:d4:59:d6:29:1e:d6:bc:cb:b4:e8:75:48:
32:3b:a4:36:f9:34:f1:12:0f:1a:c1:d9:29:f8:b1:0e:26:e2:
41:31:74:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:31 2023 by rpki-client on console-ams.rpki-client.org