Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tSzpBNK9PmRd62QyUvFfg5b_5WU.roa
File: tSzpBNK9PmRd62QyUvFfg5b_5WU.roa (raw, json)
Hash identifier: EfjDE251rTTALgVGcK58UAqUXKZrcFON/cnPaLetT7Y=
Subject key identifier: B5:2C:E9:04:D2:BD:3E:64:5D:EB:64:32:52:F1:5F:83:96:FF:E5:65
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 07A2A827
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tSzpBNK9PmRd62QyUvFfg5b_5WU.roa
Signing time: Sat 01 Jan 2022 05:52:58 +0000
ROA not before: Sat 01 Jan 2022 05:52:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46844
IP address blocks: 45.80.106.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128100391 (0x7a2a827)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Jan 1 05:52:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b52ce904d2bd3e645deb643252f15f8396ffe565
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:51:07:5d:c1:20:d4:ab:e0:0c:f0:ab:18:
2b:f7:68:ed:cd:fd:c2:dc:5d:37:00:40:f4:2d:cf:
0e:96:c4:75:51:2f:67:1b:cd:ef:2a:b7:50:12:9a:
a4:6c:17:31:a8:ff:13:d4:3d:cd:28:16:51:e2:90:
2b:f7:3a:12:69:6b:3e:b0:bb:c4:d2:31:e4:5e:28:
5e:96:2b:36:29:5f:a5:57:10:13:e0:fc:df:2f:83:
33:6a:49:fa:2a:b7:59:3d:fa:26:0a:ce:31:7e:4f:
3e:fd:24:d6:91:10:60:fc:cc:5f:23:87:74:2b:60:
e8:9b:5c:39:c3:12:fd:d8:ad:b0:5a:77:29:8c:7a:
ed:ca:b0:bc:4b:93:70:e2:a0:d3:fc:e4:f2:54:a9:
81:d5:05:2f:54:d5:f1:05:21:7b:83:77:5f:e0:47:
77:9a:ab:d0:07:01:3d:3f:6b:ef:92:82:be:23:99:
b8:f8:6b:eb:b7:f3:eb:1e:61:50:eb:48:70:42:cc:
92:1d:4a:72:f1:58:d8:c1:6a:1d:ed:44:c8:68:03:
75:b4:f8:7e:7e:83:e0:d9:b5:7f:9d:2f:41:81:b2:
fd:f2:e1:e2:b7:7c:48:8f:f1:0f:17:f6:6e:cb:a5:
5f:13:a9:b8:02:cc:b6:b5:fa:b2:98:1b:e7:f2:fc:
3d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:2C:E9:04:D2:BD:3E:64:5D:EB:64:32:52:F1:5F:83:96:FF:E5:65
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/tSzpBNK9PmRd62QyUvFfg5b_5WU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.106.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:50:a1:a2:a1:65:2d:3d:08:34:86:88:70:9b:3d:dd:1f:7c:
33:63:ad:f5:85:9c:7a:4b:99:49:8d:3c:94:2b:4a:fe:36:96:
8e:33:41:0c:85:4d:6c:4b:b5:8b:0e:94:20:c5:7c:51:3a:91:
21:29:3a:83:b2:7f:40:26:5d:c3:25:e8:8f:ed:c3:da:c1:c4:
80:24:9a:37:1d:6a:88:ba:35:fc:cd:0b:a2:84:29:48:04:46:
10:94:a7:82:ce:f2:c5:b7:cb:aa:50:ae:fe:f1:a8:8b:d7:6b:
7d:75:59:ae:1f:bb:98:95:22:0d:81:15:5e:79:2c:bc:33:26:
59:bd:d5:ce:8c:c3:05:bb:23:77:32:e8:10:f5:11:6b:c5:96:
57:96:3b:54:4e:0f:b1:c0:59:12:56:75:89:fa:2f:c3:4f:be:
a0:15:2b:cc:c2:67:2a:e5:db:c6:c8:af:14:35:42:78:02:1b:
3b:d1:54:da:f8:60:74:dd:21:9b:54:2f:9e:e7:9c:e7:94:83:
f3:09:5f:6f:9b:cc:8e:14:6a:26:7c:f2:26:96:d2:6b:73:23:
b2:ab:11:66:17:25:11:e3:bb:23:02:ca:b6:61:cf:47:db:44:
b3:de:b9:ff:1e:c3:36:72:cc:59:82:ad:28:20:eb:c0:c4:9b:
4d:f3:54:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:42 2023 by rpki-client on console-ams.rpki-client.org