Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/kksKfARhoTjmK0OFx_nbR6qjA-E.roa
File: kksKfARhoTjmK0OFx_nbR6qjA-E.roa (raw, json)
Hash identifier: lefjqdMn+iuFnpSenWctKXeHXnOn2vJBSAUTItMVLs8=
Subject key identifier: 92:4B:0A:7C:04:61:A1:38:E6:2B:43:85:C7:F9:DB:47:AA:A3:03:E1
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 018266D09AA271FA1914E4F7EEBA80B4EA26
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/kksKfARhoTjmK0OFx_nbR6qjA-E.roa
Signing time: Thu 04 Aug 2022 03:05:23 +0000
ROA not before: Thu 04 Aug 2022 03:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.140.246.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:66:d0:9a:a2:71:fa:19:14:e4:f7:ee:ba:80:b4:ea:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Aug 4 03:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=924b0a7c0461a138e62b4385c7f9db47aaa303e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:ae:7b:8b:ab:93:5c:00:19:74:73:6f:67:d3:
c1:41:a6:4b:f9:12:d2:2b:81:55:c9:14:f1:65:2c:
5c:2c:44:d3:1f:a2:b9:ef:52:d4:79:dd:a6:50:61:
1b:50:62:3e:c0:dc:09:d1:2f:99:98:6f:74:d9:75:
43:cd:95:0f:db:e8:79:b5:d5:e9:79:0f:e6:7c:48:
b3:19:a9:92:bd:6d:48:d9:39:b9:c9:3a:d9:49:cf:
39:7d:a7:2f:23:8e:dd:98:04:4f:73:8b:ed:5b:d7:
17:aa:81:8b:9f:1b:2f:b9:a0:08:3b:d0:eb:08:bc:
43:50:e6:83:f8:09:2f:ef:8d:27:bd:dd:0c:a1:71:
b8:11:d5:20:5d:9b:e0:5c:de:a9:41:e1:0b:22:72:
c5:67:d4:c1:84:77:f0:78:71:ed:4c:03:44:91:28:
dd:1b:39:b5:9d:c9:e6:31:7f:aa:d4:f8:4f:81:d7:
f2:89:71:31:32:0e:9a:3d:d2:0d:90:63:76:4f:16:
c2:2d:d2:41:52:2e:0d:a9:37:f3:12:d9:05:5a:6f:
57:8a:20:74:e8:ad:d8:66:d0:af:e3:80:5e:36:e9:
4e:ef:e6:4d:c1:d2:97:40:1e:77:b4:af:2c:85:69:
dc:31:2b:80:d2:c6:a3:6b:49:a0:78:ca:9b:aa:c3:
01:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:4B:0A:7C:04:61:A1:38:E6:2B:43:85:C7:F9:DB:47:AA:A3:03:E1
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/kksKfARhoTjmK0OFx_nbR6qjA-E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.246.0/23
Signature Algorithm: sha256WithRSAEncryption
39:81:26:c3:ab:ba:72:0c:24:4f:01:c4:d0:6f:0d:09:29:b2:
26:1b:6d:72:6b:ee:ad:96:69:8a:ca:6a:e2:4c:fa:26:5a:cc:
9b:f7:8c:99:78:80:b1:5e:0b:21:49:bf:44:39:66:97:dd:52:
25:af:bf:e3:c3:e7:9b:c4:51:9b:5d:3a:e7:09:a1:36:8f:52:
02:c6:c1:7f:00:84:75:93:55:f6:c1:54:29:c5:22:ac:53:38:
1b:c3:9b:4c:85:93:8f:23:e0:9d:3e:c0:a3:67:80:af:bc:af:
d3:74:2c:7d:d0:c8:19:68:cd:1a:5c:fc:62:b5:0e:9d:bb:e9:
7d:d3:f5:19:e5:8f:6b:5e:96:a5:29:55:60:a6:ed:7c:28:2e:
af:c8:00:35:3c:8e:74:fc:a0:51:a0:4a:ad:ea:5e:2c:41:fd:
fa:69:9c:11:8b:a2:8d:79:74:f8:f8:6e:ce:03:30:a1:e5:f2:
a7:d6:fa:81:25:fa:96:33:7e:d9:e6:da:9c:58:84:6c:83:99:
ba:9f:57:08:dc:af:af:b5:37:68:99:c1:77:b9:74:0d:b8:b6:
6c:46:d5:bd:cb:81:b6:8a:52:5d:5c:9b:0b:e9:c8:2b:ae:19:
16:d7:cf:22:72:9e:41:46:fa:7c:19:5c:c4:9f:ad:d4:ff:15:
74:1f:58:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:48 2023 by rpki-client on console-fra.rpki-client.org