Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/iurVWt_QUUq_J9ideA8PloAFuFI.roa
File: iurVWt_QUUq_J9ideA8PloAFuFI.roa (raw, json)
Hash identifier: 93Gv+gfvPi5qb8ekIqo+opJUnD4dngec0S4kBDQx6ls=
Subject key identifier: 8A:EA:D5:5A:DF:D0:51:4A:BF:27:D8:9D:78:0F:0F:96:80:05:B8:52
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0182D4D949C2B74441147D2BA3912973F2C2
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/iurVWt_QUUq_J9ideA8PloAFuFI.roa
Signing time: Thu 25 Aug 2022 11:53:06 +0000
ROA not before: Thu 25 Aug 2022 11:53:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200590
IP address blocks: 45.159.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:d4:d9:49:c2:b7:44:41:14:7d:2b:a3:91:29:73:f2:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Aug 25 11:53:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8aead55adfd0514abf27d89d780f0f968005b852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ff:27:d3:ec:d6:2e:e2:fd:fe:a0:6b:e2:98:
f1:28:ea:bd:00:4c:e4:3c:82:30:ca:f1:79:75:c7:
47:5f:60:3a:46:65:42:fb:16:dd:b1:60:b3:7b:ed:
05:02:27:3f:ce:b3:f2:00:0c:0b:c3:15:ca:6d:b2:
87:37:cf:d1:ee:0b:2d:10:d2:a2:28:c8:8e:0d:98:
6b:c2:0a:71:ec:ff:18:f4:c9:06:5e:7f:e8:e0:c1:
7b:6d:55:b0:7f:3b:36:1d:cc:31:ca:65:61:9b:57:
b7:8a:33:25:f9:69:28:da:32:9e:b9:24:3f:11:64:
93:f3:d0:af:fa:f5:12:9f:de:6b:33:c7:84:1b:5a:
b7:e6:60:01:0d:8e:4d:03:ec:db:74:48:79:3e:94:
ca:cc:1c:6a:d2:77:95:6c:77:5c:85:52:bf:5d:65:
57:c1:df:54:d4:8c:dd:b1:d2:65:69:7d:95:7c:39:
1b:c0:e1:7b:a5:e9:70:5b:84:22:cd:3b:0a:2b:22:
1c:24:a9:98:bb:96:94:1f:ec:39:4b:01:83:70:32:
55:5d:ff:a1:fb:8a:fc:57:82:63:17:ba:2f:37:1e:
2a:89:7a:40:53:ed:44:b4:01:b9:63:a3:07:e7:9d:
67:7c:4a:90:b7:45:e5:6c:ba:5f:0e:bc:2f:fe:62:
b6:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:EA:D5:5A:DF:D0:51:4A:BF:27:D8:9D:78:0F:0F:96:80:05:B8:52
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/iurVWt_QUUq_J9ideA8PloAFuFI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.250.0/24
Signature Algorithm: sha256WithRSAEncryption
df:2d:ac:36:ff:5d:24:69:8d:48:1b:98:4c:d4:ef:f0:55:89:
77:6c:85:ef:7e:54:31:98:5a:d0:22:33:0b:d6:73:78:f6:74:
21:ab:94:d9:f6:93:13:80:a8:5b:13:1c:71:42:b7:17:6f:dd:
8b:4a:42:79:ac:33:45:2e:23:e2:4d:cc:83:78:d9:49:f1:aa:
ca:94:1e:0a:21:3c:2b:66:62:fd:0f:4f:11:f1:33:86:f6:74:
53:21:9b:18:5e:3c:1f:7d:d8:60:f2:80:75:e9:6c:c7:47:de:
97:57:2c:cf:dc:cb:84:d8:a2:dc:b5:c6:4e:58:56:88:d7:83:
6e:95:0e:e2:55:19:f7:2a:07:8d:01:75:63:35:da:1d:54:c5:
13:23:9b:0f:a1:d4:11:5b:85:0a:65:44:d9:a7:f8:0e:00:3f:
00:3e:c0:dc:07:28:47:b8:48:7a:0b:85:0d:77:66:58:8a:a4:
f5:49:0d:f9:97:62:41:86:f6:c6:e8:61:eb:d8:7d:1e:24:52:
b7:82:0d:ea:61:77:70:f5:94:cf:63:b3:bd:95:1b:df:db:5c:
ae:0a:95:c3:3f:eb:36:d9:8a:94:ac:97:2e:11:08:4f:ca:3b:
61:71:bf:ef:ec:94:c7:09:5c:01:c2:01:15:19:b1:49:36:e7:
bc:03:7a:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org