Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/OWtdoHcKjAmDz2xpoiG2lPkcs-4.roa
File: OWtdoHcKjAmDz2xpoiG2lPkcs-4.roa (raw, json)
Hash identifier: FmCkk2eAfVJq8jV5dY+zyXndMTQMT79Wi34ubvM6bwI=
Subject key identifier: 39:6B:5D:A0:77:0A:8C:09:83:CF:6C:69:A2:21:B6:94:F9:1C:B3:EE
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 02927442
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/OWtdoHcKjAmDz2xpoiG2lPkcs-4.roa
Signing time: Tue 22 Feb 2022 14:25:53 +0000
ROA not before: Tue 22 Feb 2022 14:25:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 45.140.244.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43152450 (0x2927442)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Feb 22 14:25:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=396b5da0770a8c0983cf6c69a221b694f91cb3ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:6c:33:a8:50:3c:2d:28:37:1a:eb:d2:31:2a:
9a:66:51:03:95:73:88:5b:45:70:6f:57:94:41:cd:
c0:49:a4:5a:32:69:80:cb:6a:51:c0:60:3f:0a:0f:
9b:5b:66:4f:dc:59:50:c7:5d:12:8b:73:8e:ab:30:
a3:9d:fd:c3:51:02:8a:84:3d:35:99:7f:39:22:c8:
a8:d9:84:d6:02:cf:f7:a0:d3:7a:91:b7:9f:75:60:
a8:15:dd:59:ef:d0:cf:75:3f:17:99:4a:52:de:17:
f9:e9:39:be:3b:d7:73:84:7d:9b:85:07:53:58:c8:
4f:2e:f3:1c:04:e3:d7:da:a6:3f:e1:16:d8:63:e4:
1e:08:da:11:81:47:29:b2:2f:4a:15:85:03:ba:5c:
eb:6a:24:7f:e4:31:22:99:dd:30:e3:c8:44:76:e3:
6e:ca:84:e3:1f:a8:6b:b4:56:89:73:3c:ac:25:8c:
fe:af:d0:be:27:b6:08:1b:2a:4a:aa:ab:53:f1:5c:
6a:64:70:b4:d7:03:83:bc:9b:9d:de:90:af:e3:8e:
f7:bd:b0:14:89:34:c7:a6:9e:3c:de:04:04:9b:41:
8c:3c:44:d1:54:74:5b:7f:65:01:f5:b4:bb:05:f5:
38:95:a2:17:10:f4:86:2f:19:88:fa:a0:15:ae:30:
a0:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:6B:5D:A0:77:0A:8C:09:83:CF:6C:69:A2:21:B6:94:F9:1C:B3:EE
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/OWtdoHcKjAmDz2xpoiG2lPkcs-4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.244.0/23
Signature Algorithm: sha256WithRSAEncryption
45:b6:cc:45:d6:b7:0f:ab:00:1e:7a:75:6d:40:1c:d4:a1:33:
23:2d:8c:07:3f:48:f0:a8:7f:26:00:e5:dd:0e:74:37:35:bb:
9c:84:f6:5c:d6:8c:fa:d0:f0:b0:6d:ec:55:d4:cc:68:f8:4b:
c3:23:84:36:ca:26:8e:fd:04:2e:07:e1:d5:e0:97:df:95:5f:
03:7e:a4:14:de:a9:ef:03:10:3a:92:42:b1:44:6a:39:9e:22:
f2:4a:01:5d:0f:c8:ff:95:f1:25:23:52:f2:f4:43:d8:77:6b:
78:e1:bb:85:64:b4:d7:bf:3d:a2:28:6a:d2:18:e8:36:a9:9c:
bf:81:22:de:91:b3:c7:2f:07:38:c5:9c:a9:f9:3c:00:d0:1d:
02:7e:42:6d:bc:8c:a0:c0:35:88:70:5a:bd:50:3f:48:0c:0b:
2f:13:70:13:05:a4:d7:3a:6d:0f:1f:3b:97:ee:be:b6:9f:eb:
b9:3b:e0:26:ec:5b:be:af:bc:78:d7:99:f1:31:16:60:61:7c:
3a:0c:72:89:2e:56:ee:59:50:f7:43:b1:34:f5:ce:3d:07:02:
53:d9:e4:a9:45:7d:17:00:7e:17:93:e4:91:92:b9:ff:68:aa:
67:f9:11:82:1d:8b:80:01:18:d3:9e:38:44:d0:49:e4:75:63:
94:09:ce:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org