Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/R9RDmvoyUWic0Wf3yVsLyTHpE8k.roa
File: R9RDmvoyUWic0Wf3yVsLyTHpE8k.roa (raw, json)
Hash identifier: DC128np7IKnCJb0UqgLuEoe8bU+ffyp+bpaCepVgaAY=
Subject key identifier: 47:D4:43:9A:FA:32:51:68:9C:D1:67:F7:C9:5B:0B:C9:31:E9:13:C9
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 0183B7FC7F66D8392068A7FEBFE8F9069511
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/R9RDmvoyUWic0Wf3yVsLyTHpE8k.roa
Signing time: Sat 08 Oct 2022 14:25:21 +0000
ROA not before: Sat 08 Oct 2022 14:25:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.133.104.0/22 maxlen: 22
5.134.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b7:fc:7f:66:d8:39:20:68:a7:fe:bf:e8:f9:06:95:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 8 14:25:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47d4439afa3251689cd167f7c95b0bc931e913c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:b8:fc:9f:79:a7:66:a8:ca:b0:df:05:59:26:
c9:5b:21:e9:91:39:68:b8:4d:b0:de:5c:d0:1a:9f:
29:02:48:ef:a0:3e:00:13:9d:97:72:ea:38:22:6e:
95:9f:9a:8c:39:00:52:19:1a:77:8a:d1:40:02:7d:
bb:5b:65:a6:d8:4f:27:e2:3b:5c:ba:5d:1f:14:f6:
03:b0:4a:92:cc:49:9a:15:87:f6:0b:fb:f0:a7:c7:
41:8d:39:39:9d:17:d2:8d:36:7c:06:2b:5e:c4:45:
3d:1a:6b:74:d5:59:10:36:70:40:58:f8:64:3a:75:
8b:69:78:e1:5b:63:5f:41:fc:53:cc:c0:0f:a4:8a:
64:ec:71:4a:c0:2f:7a:3a:59:99:a3:bb:94:c3:29:
ec:90:3a:7e:f6:85:e6:3c:91:a0:b9:32:01:93:59:
5e:e4:c1:c0:4c:6a:eb:cf:99:2b:48:cc:58:71:00:
22:69:f4:57:a7:66:92:a2:83:00:a5:38:47:4f:51:
c5:0a:d7:fd:4c:2c:59:61:4a:97:d2:18:23:e7:f3:
8b:92:da:59:89:8e:7c:c5:02:d7:19:92:eb:4e:fc:
f6:87:e6:5a:7e:9f:dc:2d:70:23:c2:d8:94:81:0a:
20:f1:1d:e0:88:40:91:8d:c6:66:5f:41:c2:82:88:
49:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:D4:43:9A:FA:32:51:68:9C:D1:67:F7:C9:5B:0B:C9:31:E9:13:C9
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/R9RDmvoyUWic0Wf3yVsLyTHpE8k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.134.84.0/22
45.133.104.0/22
Signature Algorithm: sha256WithRSAEncryption
a8:7c:af:80:6d:e1:7f:41:44:a1:48:6c:14:5d:38:5a:af:be:
75:75:32:42:a4:ae:d2:5d:e3:99:5e:3b:97:9e:a4:c8:18:62:
11:6c:50:0d:b8:ba:5b:db:71:68:65:2e:a1:58:5d:43:57:c6:
80:6c:35:8c:bf:19:82:26:a0:df:43:11:91:c2:48:7a:bd:bd:
75:bc:69:ca:6b:ae:3c:46:82:34:dc:50:46:ad:09:f5:3a:78:
30:5c:6f:de:f0:4f:9a:4b:a5:ac:f7:7d:70:f0:0e:44:4d:03:
7b:7b:96:24:17:ad:70:76:40:e3:63:54:ce:c4:6f:a3:c2:20:
12:36:f9:01:a5:20:a5:49:dc:b3:e8:24:b6:63:29:77:2e:4b:
3b:c9:5e:39:b7:d1:10:ad:80:03:6a:35:6c:be:cb:93:68:5f:
59:4c:77:cd:bd:cc:b3:ec:0b:12:d4:de:66:90:f0:15:7c:76:
43:04:1a:3b:06:7a:7d:6b:a7:ac:74:75:f2:e7:a1:c1:f7:ea:
84:85:d0:15:85:57:e6:7f:fa:45:7d:c6:34:6e:a2:6d:25:3b:
ef:f9:5b:fd:fc:d2:a5:fa:2e:55:7c:1c:7a:7e:e3:28:fa:87:
4a:7f:8f:57:2a:28:28:43:a4:ed:e4:ae:21:37:d6:16:a3:b5:
19:bf:eb:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org