Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/r1pFx-rTuJE-CTSSeu_k9EH-elU.roa
File: r1pFx-rTuJE-CTSSeu_k9EH-elU.roa (raw, json)
Hash identifier: Qa+Qvt16WF5/PDbMmwvu+C7ZP1F2bCL6lmIvnqrueEg=
Subject key identifier: AF:5A:45:C7:EA:D3:B8:91:3E:09:34:92:7A:EF:E4:F4:41:FE:7A:55
Certificate issuer: /CN=29be02dea0a086e9880f564c86872bbc597cc672
Certificate serial: 0184AA154164F0D9615527F5FC79D6E89559
Authority key identifier: 29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/r1pFx-rTuJE-CTSSeu_k9EH-elU.roa
Signing time: Thu 24 Nov 2022 14:40:30 +0000
ROA not before: Thu 24 Nov 2022 14:40:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210203
IP address blocks: 139.45.198.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:aa:15:41:64:f0:d9:61:55:27:f5:fc:79:d6:e8:95:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29be02dea0a086e9880f564c86872bbc597cc672
Validity
Not Before: Nov 24 14:40:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af5a45c7ead3b8913e0934927aefe4f441fe7a55
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:7c:df:e8:2e:02:3e:91:2e:89:31:bb:1d:36:
5c:05:03:bf:d6:d0:b3:c3:fd:8d:a7:5e:82:1d:00:
13:bc:c7:14:bc:b5:a4:fe:51:81:ec:09:1f:55:d5:
27:95:10:63:f6:e6:23:18:ee:7a:72:6c:9b:a4:2b:
36:df:a6:45:60:ed:55:9a:70:5b:1d:6e:4a:58:ba:
6b:91:cf:d4:6b:20:bc:53:29:dd:e6:2f:bb:0b:90:
65:b2:d1:24:b0:e5:f7:68:34:02:27:9f:f3:38:3d:
e4:8c:93:b7:c7:6c:7d:39:70:bb:b0:b0:4e:64:9b:
48:b0:83:d9:d1:38:fa:6d:d9:ad:fe:5e:d4:85:53:
f9:fb:a3:a4:1e:bd:0b:25:81:77:eb:6c:26:91:da:
7c:e3:e9:b6:35:91:32:96:57:4c:b0:d7:93:e8:d5:
75:92:a3:da:e0:66:a7:7e:ea:0d:2c:84:fc:db:30:
a1:ee:70:95:87:5b:ee:01:69:3b:b4:03:c4:01:5f:
fe:57:f1:62:2b:ca:06:d3:08:f9:fa:95:c8:e8:48:
d1:81:77:83:1f:b7:0c:24:ae:83:5b:9f:12:ee:a3:
83:34:68:41:68:dd:98:73:f9:05:f9:26:06:2c:fa:
bf:89:bd:6a:5d:35:8b:e2:41:9f:05:1c:b0:b7:8c:
ce:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:5A:45:C7:EA:D3:B8:91:3E:09:34:92:7A:EF:E4:F4:41:FE:7A:55
X509v3 Authority Key Identifier:
keyid:29:BE:02:DE:A0:A0:86:E9:88:0F:56:4C:86:87:2B:BC:59:7C:C6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kb4C3qCghumID1ZMhocrvFl8xnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/r1pFx-rTuJE-CTSSeu_k9EH-elU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/ea1cff-ae8f-4719-89b3-003a1568bf3f/1/Kb4C3qCghumID1ZMhocrvFl8xnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
139.45.198.0/23
Signature Algorithm: sha256WithRSAEncryption
79:d1:50:ca:2d:b0:5f:48:37:5d:cb:21:d5:b7:90:a2:82:32:
a9:51:64:2f:94:09:4d:40:f5:36:5d:8e:cd:19:7a:a2:4b:da:
ab:f9:d7:8d:d9:3c:fa:5a:a4:36:90:1d:af:17:eb:7f:78:95:
bf:29:8a:36:c7:d6:10:67:f1:1d:90:43:c3:6f:55:e7:b1:52:
1d:9e:36:3b:fe:32:87:2d:16:cf:da:83:d1:87:4e:48:2b:31:
f1:7e:cb:f7:00:b2:a9:23:1c:1a:fe:22:0d:ab:68:3a:a9:dd:
41:b3:50:d0:7d:fd:5a:52:bd:07:46:63:f3:46:a0:21:e5:bb:
45:f6:86:cb:9e:a4:a6:56:6c:28:df:fd:53:13:35:75:24:1b:
d2:34:85:fd:d2:79:ff:5f:90:85:27:17:58:15:95:af:18:5b:
5a:ba:b8:8b:41:ae:2a:2b:b7:6f:c8:f6:ad:9a:95:db:e3:58:
93:1f:aa:5f:8d:d8:e9:80:f8:82:e3:1f:19:52:40:40:9f:77:
51:59:64:98:a2:4d:3e:31:b1:64:14:6f:e5:29:07:72:10:6e:
a8:f6:a2:97:b8:48:c4:08:37:ca:2b:7a:72:4e:79:15:ad:bc:
6a:11:12:84:fa:dc:a7:92:92:ed:25:05:02:fa:b8:fe:89:30:
2c:4e:2b:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:21 2023 by rpki-client on console-ams.rpki-client.org