Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/da_lVvCA_qsp3UXcsVv3wB3XnCc.roa
File: da_lVvCA_qsp3UXcsVv3wB3XnCc.roa (raw, json)
Hash identifier: a8ODlMQTzVBPjT0LKu3YdhyqJWPFP303XuyKTGT5wLg=
Subject key identifier: 75:AF:E5:56:F0:80:FE:AB:29:DD:45:DC:B1:5B:F7:C0:1D:D7:9C:27
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0183CD52C222D6091DCC960078F6F5A89781
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/da_lVvCA_qsp3UXcsVv3wB3XnCc.roa
Signing time: Wed 12 Oct 2022 17:51:36 +0000
ROA not before: Wed 12 Oct 2022 17:51:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.155.166.0/24 maxlen: 24
45.155.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cd:52:c2:22:d6:09:1d:cc:96:00:78:f6:f5:a8:97:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Oct 12 17:51:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75afe556f080feab29dd45dcb15bf7c01dd79c27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c8:7f:cd:8e:2f:36:9d:1c:fd:1e:d3:30:12:
55:94:d5:ca:f4:fe:81:7a:9a:b4:b6:38:16:f0:4a:
90:8a:97:e4:8b:b9:ed:e4:04:2a:d3:2f:a7:0c:c7:
da:ed:00:14:13:e0:4c:6e:60:2b:68:34:79:f0:12:
2e:50:f3:e6:aa:5c:81:94:59:19:99:cc:ee:a5:44:
e4:8d:63:68:23:cc:23:00:84:fd:54:ba:b2:76:57:
31:03:b7:db:7d:a9:13:63:35:0b:48:02:02:71:9b:
a6:1e:a7:21:4e:9e:80:ea:1f:1c:a0:0d:75:4b:f9:
34:2d:88:36:a8:b2:53:94:4f:d2:80:a2:3a:7e:f3:
02:68:94:e6:40:45:59:13:36:b4:1c:86:b1:43:11:
60:77:8a:f9:42:30:c4:c9:8b:87:ee:e4:f4:d8:95:
8a:b9:b8:39:4c:bc:bf:c2:8d:5e:ad:f1:7c:70:1e:
db:20:01:fe:79:af:85:05:1a:3d:0b:57:28:25:43:
25:78:4e:62:8a:de:57:83:5e:81:02:ff:84:c9:d2:
85:cd:f4:11:86:a6:b1:8c:6a:86:39:41:86:ce:55:
9a:93:5c:eb:b5:af:e0:64:1d:7f:f4:48:69:01:ea:
56:44:4a:e1:f7:f9:dd:ea:41:b5:27:1f:b0:99:f9:
07:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:AF:E5:56:F0:80:FE:AB:29:DD:45:DC:B1:5B:F7:C0:1D:D7:9C:27
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/da_lVvCA_qsp3UXcsVv3wB3XnCc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.166.0/23
Signature Algorithm: sha256WithRSAEncryption
27:d5:42:d3:e5:a0:64:17:3b:3f:fe:1b:ca:3e:f8:8d:6e:5d:
38:2c:6a:84:ed:ee:ab:60:e3:0d:7e:45:80:24:23:bf:d0:63:
f2:77:2e:53:7d:1d:fe:34:34:85:d5:14:8e:f9:54:c3:95:2c:
53:48:61:09:7e:cc:6d:c5:b9:5c:a8:ab:3e:64:54:e5:f0:41:
b0:99:71:3d:56:5d:93:a5:59:6a:1d:a4:7e:bd:cc:1e:05:76:
0c:8c:d8:8e:28:36:e4:5d:9a:a6:6e:fe:c0:6e:21:10:b8:76:
08:8e:8e:1a:86:dd:2c:46:09:e8:79:7a:ca:f0:c1:9a:34:bc:
44:44:11:d7:0b:c8:d2:19:4c:26:92:6b:ee:dd:f9:09:a1:09:
f5:b1:37:91:59:1d:54:fb:07:33:a5:80:36:35:b5:5d:15:93:
27:50:a1:14:2d:0d:ca:64:15:3e:d7:a5:d3:02:5a:9c:26:d0:
a3:99:28:f5:df:41:92:e0:f3:d5:e4:d5:57:82:67:49:30:c3:
70:1b:7e:24:bb:2e:48:74:11:d9:80:5e:4b:48:e5:bb:69:a8:
e5:50:6d:b8:7a:1e:7b:f9:9c:13:94:b5:25:2f:9d:0f:a0:bb:
8b:1a:3b:0d:67:01:0b:5f:22:6e:fb:9b:d3:ee:87:e7:c0:45:
87:a4:6a:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:08:15 2024 by rpki-client on console-ams.rpki-client.org