Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/Tz7PEuCMj4hP8ZPC-XbhqbWblRo.roa
File: Tz7PEuCMj4hP8ZPC-XbhqbWblRo.roa (raw, json)
Hash identifier: IBGaGR66XanGDldc5DQlEYm7uXSIH73USlTd75Q5Wb0=
Subject key identifier: 4F:3E:CF:12:E0:8C:8F:88:4F:F1:93:C2:F9:76:E1:A9:B5:9B:95:1A
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 07EDA03A
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/Tz7PEuCMj4hP8ZPC-XbhqbWblRo.roa
Signing time: Mon 31 Jan 2022 20:41:21 +0000
ROA not before: Mon 31 Jan 2022 20:41:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 45.140.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133013562 (0x7eda03a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 31 20:41:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4f3ecf12e08c8f884ff193c2f976e1a9b59b951a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8e:47:c5:6e:69:c4:f5:0a:f3:15:74:be:b1:
04:88:29:8b:b4:b9:bf:38:a2:6a:94:75:24:e8:b7:
39:3f:23:d5:8c:05:2c:0a:44:19:6a:e2:db:b8:d8:
c0:b2:37:b4:d9:7e:a4:e4:10:f8:76:e0:15:53:0b:
da:7c:57:db:9e:0f:05:9b:29:68:ce:5f:0b:0c:c9:
58:ad:f0:1c:47:07:24:c2:1e:cb:29:33:a2:82:fe:
1f:4a:8f:37:c3:79:07:c2:38:73:73:8d:83:e7:1c:
da:08:bf:e7:1c:53:37:b3:fd:52:80:be:a8:30:94:
f6:78:50:0c:44:9f:7f:dc:b9:0e:88:30:e1:c1:f7:
ad:56:e5:43:63:cf:26:72:ba:5f:91:a5:6b:ec:c0:
10:4e:2a:72:47:01:e4:16:ae:eb:42:05:fc:6a:95:
4a:53:d9:d7:e8:13:b9:40:0e:9c:0f:24:fc:b6:d9:
e8:8a:81:b7:29:68:fd:c2:a1:9e:99:00:69:5d:8d:
3f:31:e2:b8:63:cc:18:e4:a7:04:62:13:be:92:f0:
da:44:c1:4f:50:c3:1c:c3:d1:95:93:c6:13:e0:ba:
e7:c3:5e:31:06:64:17:4e:b0:de:94:55:ec:bd:c4:
b0:ec:08:d5:07:ba:56:49:fc:53:18:0c:05:75:a5:
a8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:3E:CF:12:E0:8C:8F:88:4F:F1:93:C2:F9:76:E1:A9:B5:9B:95:1A
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/Tz7PEuCMj4hP8ZPC-XbhqbWblRo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.206.0/23
Signature Algorithm: sha256WithRSAEncryption
60:db:5a:7b:99:9c:5b:23:d5:de:49:55:fe:e0:4b:a4:28:6b:
2b:39:b1:ff:89:11:85:6e:64:f0:80:ec:95:9d:c2:2a:ab:86:
77:fd:54:30:7d:65:5b:1e:01:10:d2:44:51:3e:16:11:7b:2c:
f5:3a:d2:a7:38:e5:e3:b8:6d:eb:54:87:a5:07:ec:6d:7a:ba:
f8:b3:4a:20:33:f3:5c:87:d3:22:d7:9f:f9:e8:d7:13:bf:ed:
ba:7b:39:8f:39:55:b9:a3:39:b8:97:90:81:69:b0:2a:30:f7:
a8:44:eb:cb:e5:36:54:f8:8b:b4:56:b6:ff:1c:3b:32:d6:d8:
d2:45:07:44:4d:ea:ab:dc:2c:39:59:b7:e3:56:a9:a0:e2:53:
57:ae:c5:5e:dd:a2:eb:72:ec:cb:fe:d3:08:d8:11:ca:6c:43:
55:ae:4d:97:32:d3:09:69:2b:f6:72:5e:c5:3b:11:5c:ff:31:
16:86:0f:a6:4b:ee:39:be:ee:ae:b0:0c:85:37:11:ce:39:e1:
55:7a:0c:ca:ab:ed:83:f0:58:89:57:c6:28:73:bd:4a:15:7e:
de:45:ad:e7:a2:f3:ce:1c:74:20:9c:7a:d8:fe:bc:5a:6a:e4:
e9:a3:cc:b5:67:2c:0d:d6:86:08:5a:b3:4e:f8:1f:de:89:eb:
5a:cb:d4:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:59 2023 by rpki-client on console-fra.rpki-client.org