Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/o47dPRRiqvv62pHo9BmtYa6u8qQ.roa
File: o47dPRRiqvv62pHo9BmtYa6u8qQ.roa (raw, json)
Hash identifier: dQObZpMJ1I+11FQYnAOWrqqfkVz+ZkJKjkvsc/NOO4U=
Subject key identifier: A3:8E:DD:3D:14:62:AA:FB:FA:DA:91:E8:F4:19:AD:61:AE:AE:F2:A4
Certificate issuer: /CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Certificate serial: 014BCA25
Authority key identifier: 98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/o47dPRRiqvv62pHo9BmtYa6u8qQ.roa
Signing time: Sat 01 Jan 2022 03:55:11 +0000
ROA not before: Sat 01 Jan 2022 03:55:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212396
IP address blocks: 45.84.57.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21744165 (0x14bca25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9868a1992bb8037dde81d0c8cdc0695fcee17c27
Validity
Not Before: Jan 1 03:55:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a38edd3d1462aafbfada91e8f419ad61aeaef2a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bc:b1:6c:ac:ee:c5:a9:bf:52:d5:72:19:75:
9b:1c:23:e5:7b:59:ca:d0:7a:3a:a1:24:0f:66:d4:
d2:9d:8b:d5:80:7c:a0:dc:c1:7a:77:26:e4:d9:b6:
fa:90:84:da:66:0a:ef:c4:fa:bb:8d:45:82:8f:4d:
e9:81:e6:78:5b:36:01:12:6e:39:52:b2:09:fd:6d:
1c:ec:9d:f1:21:e3:ab:cd:ab:bd:3e:3e:f8:37:b1:
6c:30:e4:2a:4f:e2:b5:76:bc:2f:1c:4b:79:42:10:
43:2f:f1:d7:db:be:e8:b0:a0:b2:ab:4c:2f:bc:9b:
ff:33:b2:f8:dc:bc:f9:23:7a:1e:87:02:1f:fe:e2:
3e:f9:84:42:d6:11:08:ee:71:1f:b4:15:39:04:5a:
11:ce:e5:f6:82:41:82:31:0b:f7:97:7a:12:a4:5c:
66:31:47:cc:96:a5:36:cd:ed:0c:6c:d7:5b:d3:e2:
07:a6:d9:fa:ce:45:c9:cd:fe:7a:65:15:18:58:8e:
4d:b1:51:ce:b6:fa:10:63:06:36:18:28:6e:84:20:
70:0c:b7:41:39:e4:96:04:0f:95:db:fc:93:7d:db:
40:eb:b9:89:82:8c:ce:4b:40:1e:55:93:f9:23:92:
13:71:4d:3b:9e:7d:88:d0:7e:8c:db:0a:80:66:cc:
7a:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:8E:DD:3D:14:62:AA:FB:FA:DA:91:E8:F4:19:AD:61:AE:AE:F2:A4
X509v3 Authority Key Identifier:
keyid:98:68:A1:99:2B:B8:03:7D:DE:81:D0:C8:CD:C0:69:5F:CE:E1:7C:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGihmSu4A33egdDIzcBpX87hfCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/o47dPRRiqvv62pHo9BmtYa6u8qQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/6b22e6-352f-4e88-827b-d78d5631d7f6/1/mGihmSu4A33egdDIzcBpX87hfCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.57.0/24
Signature Algorithm: sha256WithRSAEncryption
19:21:04:78:10:b9:f3:ca:62:c4:ff:ec:18:38:b9:fc:2f:8c:
19:fd:ca:e9:ba:10:a6:f1:79:3b:f8:fa:ab:7e:36:2f:46:4c:
be:9b:ce:45:9d:d1:67:6d:3d:39:97:61:a3:a7:b0:e9:c8:ba:
04:70:c2:07:c5:1d:01:3f:4d:cc:6d:ea:c6:b4:83:c6:ca:72:
cf:c5:07:30:32:cb:6c:5c:e0:88:62:5c:fc:cc:02:e1:a6:3e:
93:16:e6:23:24:50:3d:3e:ff:38:bf:ba:5e:9f:37:be:c7:8b:
30:4d:a7:06:cd:82:50:20:c0:59:92:d7:a5:b5:07:f9:e8:f7:
08:61:29:a6:8b:4f:b6:85:b7:8d:f4:fb:69:80:58:1b:f9:94:
d6:bb:0d:86:47:9b:73:7c:4c:a2:cd:a4:1b:0e:6e:71:4c:9e:
61:3e:96:c7:ae:0b:cb:ba:ca:76:09:bc:00:02:9f:5b:4f:19:
09:90:81:cb:46:3e:69:53:ae:f2:89:e0:fd:69:5f:36:c1:08:
08:65:10:e5:ef:a6:8c:7b:27:4b:ee:a2:84:ba:94:b1:1b:8c:
56:53:13:b4:25:f2:05:24:7a:05:37:a6:e6:2d:d9:35:6b:85:
aa:b4:98:21:a9:bb:d9:52:17:72:43:b3:83:0d:9c:66:6f:c3:
f4:8f:42:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:11 2023 by rpki-client on console-ams.rpki-client.org