Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/vVY9nvgTYJoRrcTgKNA3PswQ-IY.roa
File: vVY9nvgTYJoRrcTgKNA3PswQ-IY.roa (raw, json)
Hash identifier: t4NV4sPHQgnOYZePjsJ1kWOpULr0iR2VHWXdS1jo1Yg=
Subject key identifier: BD:56:3D:9E:F8:13:60:9A:11:AD:C4:E0:28:D0:37:3E:CC:10:F8:86
Certificate issuer: /CN=8b2e0d184ff553375c847c38d4dfcdcde1219fd3
Certificate serial: 015B43A8
Authority key identifier: 8B:2E:0D:18:4F:F5:53:37:5C:84:7C:38:D4:DF:CD:CD:E1:21:9F:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iy4NGE_1UzdchHw41N_NzeEhn9M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/vVY9nvgTYJoRrcTgKNA3PswQ-IY.roa
Signing time: Mon 10 Jan 2022 16:14:29 +0000
ROA not before: Mon 10 Jan 2022 16:14:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39522
IP address blocks: 45.138.222.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22758312 (0x15b43a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8b2e0d184ff553375c847c38d4dfcdcde1219fd3
Validity
Not Before: Jan 10 16:14:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bd563d9ef813609a11adc4e028d0373ecc10f886
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ac:fd:05:52:3d:84:87:c5:2c:ae:18:ee:e2:
33:4d:27:7d:b5:1a:07:52:b4:75:55:29:6e:f9:00:
5e:0e:a0:cf:5c:26:22:3d:f2:86:33:0d:fb:ed:7c:
1b:72:b2:82:82:f0:b8:57:21:53:79:ca:11:80:95:
c8:01:32:f1:09:e8:c3:05:f5:29:ba:d4:4e:65:b4:
be:df:2d:83:20:81:dd:73:cb:10:a6:7c:cc:ef:54:
99:21:b6:31:d3:4a:89:66:a8:f7:28:ae:61:4e:24:
c5:64:d2:28:92:0c:a1:0e:04:87:54:48:79:9b:95:
7c:e4:1c:63:a7:24:41:94:b0:00:b6:0a:da:e7:e1:
1b:ee:33:a0:52:32:c9:db:d1:f7:7b:66:e8:c1:67:
1b:86:25:b3:14:2c:dc:20:02:32:84:67:a1:e9:08:
62:05:e2:82:32:f1:33:9d:da:8e:b1:5e:e0:f3:4b:
c2:7e:7e:0e:4c:2d:a3:36:f0:4f:01:9b:d2:fa:a6:
1b:b1:cb:dc:b5:e6:a6:ac:ed:67:6b:a9:ee:6c:c9:
f4:2b:27:0d:88:9b:ca:ba:a0:19:1d:b1:56:2d:13:
51:ae:f6:aa:6f:69:69:99:0a:75:4f:5b:7c:5c:26:
85:7a:29:24:c2:cc:e9:9c:85:0e:2b:5f:ec:d6:41:
dd:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:56:3D:9E:F8:13:60:9A:11:AD:C4:E0:28:D0:37:3E:CC:10:F8:86
X509v3 Authority Key Identifier:
keyid:8B:2E:0D:18:4F:F5:53:37:5C:84:7C:38:D4:DF:CD:CD:E1:21:9F:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iy4NGE_1UzdchHw41N_NzeEhn9M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/vVY9nvgTYJoRrcTgKNA3PswQ-IY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/0fcd8e-1034-4a75-a070-699f3cd850fa/1/iy4NGE_1UzdchHw41N_NzeEhn9M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.222.0/23
Signature Algorithm: sha256WithRSAEncryption
65:21:7c:be:44:ed:1b:e2:6d:a7:ce:9f:c4:af:bb:c3:79:c2:
cd:31:bd:09:a9:4e:2f:0d:b3:8f:c5:43:f6:a4:0c:7c:7f:c9:
12:01:45:ee:cb:46:ce:96:c8:ea:ef:d4:d1:04:f0:7e:19:29:
7d:bf:1e:da:9d:23:e0:59:a0:eb:06:30:84:cd:d6:4c:6a:8f:
9e:f5:10:3d:e2:ff:da:6f:de:12:23:a2:8b:0d:97:80:d9:95:
7d:f0:5b:c5:0b:8f:c4:3c:e8:be:f2:a6:97:ea:8b:ee:e3:a3:
ac:50:e6:93:79:ad:aa:35:7c:c8:a9:a9:d7:e5:e7:b0:90:c7:
8f:4a:35:ba:02:6d:f3:f5:67:a1:26:17:44:3c:5a:46:ec:1f:
8c:2e:9a:b9:5d:91:8f:e0:2c:f1:ef:25:e2:0f:a1:80:78:35:
10:93:2e:b3:3b:fa:16:5f:b6:bc:f8:8b:f3:8d:06:3c:31:34:
37:17:50:4f:ca:6b:ee:27:e5:32:14:2f:ab:2a:14:86:48:ad:
a8:7a:eb:1f:ed:be:65:40:c7:bd:52:0c:b3:06:25:6a:f4:54:
bd:dd:3b:02:ce:b9:9d:6c:ad:a3:26:73:09:5b:28:09:c0:36:
2e:ab:6c:0f:08:78:df:9c:51:61:96:5e:01:19:19:e0:d5:3e:
8b:59:93:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:35 2023 by rpki-client on console-ams.rpki-client.org