Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/skydh7FeiDAbPRLOWHJ0numu3As.roa
File: skydh7FeiDAbPRLOWHJ0numu3As.roa (raw, json)
Hash identifier: HlPmJwFi/XRH5E5MVDyGqCZjp1j1hNJ8rpkYHAiLtys=
Subject key identifier: B2:4C:9D:87:B1:5E:88:30:1B:3D:12:CE:58:72:74:9E:E9:AE:DC:0B
Certificate issuer: /CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Certificate serial: 01840EFF6F20539FC5D3FE7B9A2B03B9E82F
Authority key identifier: 93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/skydh7FeiDAbPRLOWHJ0numu3As.roa
Signing time: Tue 25 Oct 2022 11:55:31 +0000
ROA not before: Tue 25 Oct 2022 11:55:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204968
IP address blocks: 45.133.104.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:ff:6f:20:53:9f:c5:d3:fe:7b:9a:2b:03:b9:e8:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93e8f4ed5dd06301c423988e786dabf51c5f5674
Validity
Not Before: Oct 25 11:55:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b24c9d87b15e88301b3d12ce5872749ee9aedc0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:2b:c1:7a:d3:07:85:be:35:93:70:1b:9d:4e:
0d:cd:0b:e3:38:9b:c0:0e:01:7d:ee:d2:bb:cc:cc:
f5:b8:22:b8:9f:27:09:6b:29:7f:79:84:77:b8:c9:
c7:6a:34:45:ff:c9:85:d1:2c:64:91:4f:ca:34:60:
64:46:32:76:7c:a5:39:a4:40:12:c0:ef:78:88:0c:
8c:1c:fc:5a:30:14:f4:5c:a5:57:d9:fa:ac:de:b4:
15:4a:13:f4:52:20:e9:3d:c9:55:78:51:94:05:db:
d7:03:f0:d7:b2:c2:4f:b6:f5:d0:a4:07:9e:08:0f:
74:a8:4a:e5:ae:bd:37:f3:bf:da:f3:ea:85:2e:86:
74:03:9f:e6:a4:ca:f9:aa:3e:d4:17:79:c4:b6:d2:
d7:72:ed:04:67:66:77:3e:13:dc:d6:d9:3c:5f:6e:
f7:e0:2a:12:67:45:f6:dd:43:ac:08:ec:a0:89:eb:
10:36:18:2d:35:57:b4:87:b6:f1:fd:96:b2:29:5e:
88:97:9a:9b:f3:64:73:86:95:94:8a:1a:29:f6:9e:
c5:cf:bd:4c:bd:e1:6d:81:45:54:63:c6:d2:c6:c7:
17:66:62:67:e5:00:89:38:b8:1e:18:fe:5e:63:14:
d1:a9:4c:68:6c:b2:0b:e5:40:21:95:3c:fb:98:54:
0d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:4C:9D:87:B1:5E:88:30:1B:3D:12:CE:58:72:74:9E:E9:AE:DC:0B
X509v3 Authority Key Identifier:
keyid:93:E8:F4:ED:5D:D0:63:01:C4:23:98:8E:78:6D:AB:F5:1C:5F:56:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k-j07V3QYwHEI5iOeG2r9RxfVnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/skydh7FeiDAbPRLOWHJ0numu3As.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a78979-dd24-4be7-8194-1fc19ea73a2a/1/k-j07V3QYwHEI5iOeG2r9RxfVnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.104.0/23
Signature Algorithm: sha256WithRSAEncryption
6c:7e:44:b8:77:93:ac:e1:88:71:9a:47:58:31:a7:73:8b:b9:
6c:1e:47:3e:23:d1:96:2a:2f:d6:3a:96:f2:f8:8d:1b:90:11:
32:7b:13:57:42:87:13:b4:6e:f2:d2:27:bd:88:77:63:71:d4:
fd:f4:5e:d6:4b:56:fb:8b:30:15:b0:20:6c:f1:36:36:8d:22:
ce:1a:58:16:ba:ee:2d:24:41:d1:fd:3d:69:13:35:d7:53:c6:
7d:70:fb:a6:29:e2:04:65:1d:f0:f1:7a:d2:5e:7e:ee:c8:96:
f1:26:e3:3d:a2:35:a6:16:64:f6:75:b0:79:4f:9b:c6:64:7b:
e2:9d:f0:79:3b:42:58:25:04:c1:02:a6:7b:c1:98:e3:ec:ba:
86:1a:34:e3:65:a3:c6:d4:34:0a:13:d4:bd:ec:65:0b:00:4c:
6f:06:56:44:5c:7e:d3:df:25:d7:16:fa:af:25:d9:b7:2c:7a:
f6:37:ba:c5:ec:5b:46:31:b0:ca:91:51:c0:85:17:bb:2f:07:
db:15:f9:62:0c:6c:38:cd:bb:54:c1:eb:71:31:93:d8:d2:15:
a6:41:aa:42:84:15:a3:1b:7a:d4:03:b3:71:77:e1:82:0d:bb:
f5:bd:d1:f0:d2:80:b5:fe:b6:c6:7e:2a:55:0c:c0:9e:3d:cf:
b7:f8:31:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org