Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/oLlW9dmtD85OkRP8oZa0qRfdhH8.roa
File: oLlW9dmtD85OkRP8oZa0qRfdhH8.roa (raw, json)
Hash identifier: SN6yO4Ezadfk7V7xodM3i1ZsgcEaZlmx7A2+gAfUPvo=
Subject key identifier: A0:B9:56:F5:D9:AD:0F:CE:4E:91:13:FC:A1:96:B4:A9:17:DD:84:7F
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0841B82C
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/oLlW9dmtD85OkRP8oZa0qRfdhH8.roa
Signing time: Wed 09 Mar 2022 13:55:49 +0000
ROA not before: Wed 09 Mar 2022 13:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 45.145.130.0/23 maxlen: 23
45.80.104.0/23 maxlen: 23
45.140.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138524716 (0x841b82c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Mar 9 13:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0b956f5d9ad0fce4e9113fca196b4a917dd847f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:db:3c:00:8b:a7:2b:fe:4b:a2:58:35:10:75:
bb:d4:0a:51:69:2d:12:3e:68:31:b1:2c:27:6b:f4:
aa:a4:f1:33:1a:41:9a:33:a7:68:87:b5:ad:f8:8d:
ad:60:34:e5:01:9e:29:80:d2:2f:b4:09:57:3f:d1:
75:9d:7c:05:8e:4b:1c:ec:65:19:5d:47:81:be:a7:
6e:8d:93:24:7e:cc:ab:c8:18:0d:05:22:8a:21:04:
e0:4d:68:46:02:fb:8e:8d:64:f1:35:6a:cc:b8:61:
ab:79:d4:fa:4f:de:ea:43:ac:66:fa:fb:fb:35:38:
94:b0:58:32:50:6f:51:eb:37:9e:e7:c4:20:10:8c:
c0:57:b9:c9:00:da:6a:68:5b:09:f0:73:6c:ed:4a:
8c:a3:3c:31:45:a5:09:16:fa:34:fa:b0:13:24:41:
85:05:61:40:22:c5:30:92:02:dc:8f:a6:31:96:12:
92:cf:15:0f:48:79:f2:bf:32:2a:44:08:ea:8e:05:
d7:1a:55:a9:a4:bf:0c:e8:92:cf:35:20:27:ad:47:
52:50:6b:bc:67:33:8a:20:42:66:88:7a:41:ae:d3:
68:d1:62:bb:42:99:32:34:84:73:0e:82:23:88:9a:
e1:d6:90:07:53:74:e9:03:e4:bf:a0:ce:90:40:bf:
6e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B9:56:F5:D9:AD:0F:CE:4E:91:13:FC:A1:96:B4:A9:17:DD:84:7F
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/oLlW9dmtD85OkRP8oZa0qRfdhH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.104.0/23
45.140.206.0/23
45.145.130.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:70:13:cf:38:45:66:2e:76:ff:76:8d:0d:ba:e6:1a:93:b0:
5f:99:90:9e:22:28:11:21:31:7d:c2:28:94:9a:5c:ea:1a:ca:
5c:f4:a5:1b:d9:63:b2:e4:99:fb:04:9f:fe:ca:8a:a4:b7:eb:
0e:b8:05:8d:cf:a3:5b:4e:85:c7:f3:2d:a0:b2:52:d0:7a:a5:
c3:94:83:5e:52:27:19:27:20:d3:15:e7:6e:5c:47:22:ee:25:
22:f1:70:0e:83:e1:e8:e7:78:4d:65:89:6d:68:e1:3b:90:12:
47:0f:cb:88:03:65:37:ad:67:da:df:11:b8:ec:25:bb:f8:c0:
1d:33:6a:b4:6a:08:9f:6a:f9:3d:51:de:17:12:56:a3:30:a8:
e4:da:e8:ab:36:c9:88:11:13:34:81:44:e6:cd:18:19:44:27:
23:bc:0a:0f:0b:fd:17:23:ac:ef:fa:e5:c9:dd:95:30:b8:71:
95:95:eb:43:c9:17:0e:df:4e:de:2d:1d:d5:1a:67:bf:ee:55:
f4:a1:39:4a:0d:f0:b8:66:21:40:62:c6:cd:85:1c:4a:34:55:
12:f3:f1:de:57:77:0e:73:ab:74:73:82:bc:05:41:99:45:4e:
f7:9c:80:cd:d8:ac:fc:2a:95:f9:de:5d:27:75:eb:93:f7:34:
e1:3c:1e:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:59 2023 by rpki-client on console-fra.rpki-client.org