Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/b7NiQXadHNW7WJNymtwGbg6uYWQ.roa
File: b7NiQXadHNW7WJNymtwGbg6uYWQ.roa (raw, json)
Hash identifier: SL/84u/hd3dWBu+t/beEZv3fPgHtWrV2EfaSdBAsb9w=
Subject key identifier: 6F:B3:62:41:76:9D:1C:D5:BB:58:93:72:9A:DC:06:6E:0E:AE:61:64
Certificate issuer: /CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Certificate serial: 018424FF230785A0AE6857AB7A6BFB9D3EAA
Authority key identifier: 62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/b7NiQXadHNW7WJNymtwGbg6uYWQ.roa
Signing time: Sat 29 Oct 2022 18:26:51 +0000
ROA not before: Sat 29 Oct 2022 18:26:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.94.112.0/22 maxlen: 22
185.251.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:24:ff:23:07:85:a0:ae:68:57:ab:7a:6b:fb:9d:3e:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=626a28b7c63ef6ab214a52cfa7c3e78db9a40823
Validity
Not Before: Oct 29 18:26:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6fb36241769d1cd5bb5893729adc066e0eae6164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:11:ea:cd:c6:f2:ee:d9:8f:29:49:a7:ff:1e:
9d:eb:c6:b1:86:a0:a7:6d:30:8c:f8:7c:35:6e:ba:
03:47:7e:c4:a7:e7:de:f2:2e:d7:42:99:d2:fc:4a:
62:d0:53:94:39:e3:88:01:f4:a4:46:c8:2f:7b:57:
98:84:a7:b5:22:95:a7:aa:db:fc:3c:bf:27:af:39:
b7:f8:ac:26:3b:ac:30:48:28:af:9c:d4:d3:11:46:
6c:8a:d6:50:bb:93:d7:1e:c2:00:9a:83:d0:be:08:
13:81:e2:fa:66:03:2a:e1:0e:c9:5c:ac:43:72:06:
ad:93:0f:e5:30:1e:84:ba:b8:2e:a7:b4:9d:82:79:
00:8e:f2:a9:0f:4c:33:1d:1c:d4:ba:08:2b:82:9b:
b7:5e:f6:d6:c4:ab:56:b2:9f:b7:8f:43:a0:90:c6:
0a:bd:b6:a2:8a:f3:04:2b:8f:f3:f5:c0:f8:65:12:
77:c2:b0:68:3c:1b:0c:f2:f4:d9:ab:bb:db:bb:3a:
df:2b:fb:a6:6d:37:28:30:78:8a:37:51:47:20:c4:
d4:ea:5d:f5:09:de:a2:1b:33:ac:6e:62:91:96:53:
bc:c9:13:55:85:32:22:67:8e:9c:36:6e:16:1d:5a:
6c:bb:35:11:f2:ec:22:c1:42:13:84:c9:8b:ed:d5:
4d:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B3:62:41:76:9D:1C:D5:BB:58:93:72:9A:DC:06:6E:0E:AE:61:64
X509v3 Authority Key Identifier:
keyid:62:6A:28:B7:C6:3E:F6:AB:21:4A:52:CF:A7:C3:E7:8D:B9:A4:08:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ymoot8Y-9qshSlLPp8PnjbmkCCM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/b7NiQXadHNW7WJNymtwGbg6uYWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/3c0785-b273-4072-a635-d2cd26b69df1/1/Ymoot8Y-9qshSlLPp8PnjbmkCCM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.112.0/22
185.251.21.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:45:27:17:88:22:07:ab:59:66:ac:38:fe:df:24:5e:36:66:
10:36:eb:2f:2f:1b:04:d2:e0:cc:cc:db:6d:fb:27:4f:76:68:
49:1d:f6:c8:7c:45:30:3e:88:eb:da:22:b0:80:8e:f9:fa:41:
f2:ed:c5:16:68:ac:1d:da:51:9d:c8:aa:5e:6d:10:bf:fb:4d:
08:fe:92:d9:75:2e:5f:df:ee:66:a9:ba:cc:de:71:5f:c4:f2:
cd:74:cc:83:e0:8e:b7:e1:13:46:3f:59:d8:08:1a:aa:fe:64:
1f:bd:07:27:ba:f7:33:eb:6c:44:e6:3d:6f:1a:69:66:b5:0b:
74:74:eb:7f:5f:b3:9f:3d:8b:a6:b5:4c:d6:ef:95:8e:81:4a:
eb:e4:ed:4d:11:02:d4:b2:6e:ee:4d:69:80:2a:e6:70:0e:6b:
bc:f2:de:35:48:45:f4:54:8b:28:67:3c:f0:d1:29:12:d7:62:
9e:f7:79:d4:3c:90:40:48:9e:e3:6a:1d:ac:ba:18:29:00:76:
e8:0f:71:f8:03:5c:38:46:a1:63:66:d7:a9:a6:30:39:3f:21:
be:8a:de:20:7c:26:92:63:ce:aa:e1:a4:6f:05:78:3f:90:04:
d1:28:a4:41:51:96:d8:80:f9:51:b2:51:24:ad:a5:77:64:40:
49:4e:1f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:41 2023 by rpki-client on console-ams.rpki-client.org