Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/RdG-EvY7so7SW3DzjAYKNmdqWf8.roa
File: RdG-EvY7so7SW3DzjAYKNmdqWf8.roa (raw, json)
Hash identifier: ddN2pX/TnbHsHN59hWveDDSV1iOGGkStbW0mYm5azoA=
Subject key identifier: 45:D1:BE:12:F6:3B:B2:8E:D2:5B:70:F3:8C:06:0A:36:67:6A:59:FF
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 030B3F1B
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/RdG-EvY7so7SW3DzjAYKNmdqWf8.roa
Signing time: Mon 11 Apr 2022 22:25:40 +0000
ROA not before: Mon 11 Apr 2022 22:25:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.140.245.0/24 maxlen: 24
81.199.28.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51068699 (0x30b3f1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Apr 11 22:25:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45d1be12f63bb28ed25b70f38c060a36676a59ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:2e:15:b5:01:74:ed:dc:da:17:60:28:fe:d0:
d6:a5:2e:37:98:fa:a4:44:ee:30:d2:01:c3:4e:b2:
03:a3:7a:1d:ee:ab:4e:04:95:c8:48:cc:d7:02:aa:
e0:d2:2b:5d:cc:d3:90:3f:28:77:5a:9c:d9:ed:e5:
6d:14:32:9a:45:6d:57:86:cc:76:f9:92:a1:82:9a:
6e:fb:90:ad:5b:04:02:ed:8f:cb:1d:aa:78:e1:99:
53:7d:28:1b:a9:0a:16:bf:ae:45:84:c6:c7:16:f1:
e6:fe:39:89:98:c5:27:17:0f:13:f2:a1:74:07:af:
ed:1f:b7:7c:de:f7:c3:a5:e0:c9:b4:65:dc:96:fb:
cd:30:09:2b:03:57:0a:c3:ed:36:43:fd:b7:56:ce:
7a:65:92:ff:53:d1:f2:a4:e3:c3:22:e5:aa:cb:86:
d4:14:5f:8d:70:a3:5d:fc:98:d7:e1:f7:7d:90:97:
06:a6:d2:45:4e:d5:c1:d6:96:1d:57:74:b4:cb:ad:
5c:3d:2e:aa:ec:b6:00:43:17:33:b7:74:25:de:d5:
b3:66:24:29:b5:60:21:e4:78:66:cf:26:12:7b:0c:
b1:f4:1c:1e:b8:bb:c8:38:b9:bd:0f:8d:f7:ab:3d:
fa:0f:58:d2:1c:a3:a4:b5:29:cd:a4:22:4f:24:45:
28:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D1:BE:12:F6:3B:B2:8E:D2:5B:70:F3:8C:06:0A:36:67:6A:59:FF
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/RdG-EvY7so7SW3DzjAYKNmdqWf8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.245.0/24
81.199.28.0/22
Signature Algorithm: sha256WithRSAEncryption
3b:31:1e:19:15:69:f6:ae:14:0a:f8:23:0e:2b:9e:d3:a5:08:
03:9f:bc:82:de:f6:e6:f5:c9:c2:92:e6:93:d9:6a:88:16:fe:
f5:85:84:61:6b:da:63:f5:67:c7:db:b2:0c:ae:5c:5d:6f:6e:
2c:94:6c:18:46:6a:87:69:ee:09:cf:4c:32:bb:84:71:02:7e:
60:1d:67:e6:90:6c:41:4f:f2:ff:90:f6:54:10:26:e0:26:f3:
14:0d:d7:6c:60:37:8f:61:55:da:16:9c:00:60:ec:41:5f:5d:
2b:2b:9b:15:43:b8:d0:75:4a:0f:c3:70:65:83:71:22:6e:d3:
b8:e2:f6:9e:0b:be:16:81:1f:35:f2:41:93:55:52:66:9e:22:
30:e1:54:ec:46:25:1d:85:cd:89:25:8d:78:7c:a5:cf:cf:dc:
3f:54:2a:5b:bb:cb:80:f2:bd:77:57:21:b1:61:ab:39:7d:93:
9a:2c:ee:7f:77:4b:2e:eb:b5:2e:e3:4b:86:9b:ce:96:8d:db:
17:55:b1:99:40:9f:c7:d4:0b:e8:1d:77:16:fa:82:d0:da:70:
81:b5:17:d9:2e:f7:97:7f:2f:1c:ed:ec:f6:1f:9b:ee:1b:1d:
c2:37:d6:72:5e:c2:a5:fa:ac:0e:68:f1:fa:99:85:ca:84:2d:
a2:ea:1c:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org