Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/2tYluUm7B7ilx5Fj4WoBjjvYsEw.roa
File: 2tYluUm7B7ilx5Fj4WoBjjvYsEw.roa (raw, json)
Hash identifier: CF08sFESoIdFHhCXZbnu3/kG8v9WKpRNds6Wf0WQ0Vk=
Subject key identifier: DA:D6:25:B9:49:BB:07:B8:A5:C7:91:63:E1:6A:01:8E:3B:D8:B0:4C
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: CD2D80
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/2tYluUm7B7ilx5Fj4WoBjjvYsEw.roa
Signing time: Thu 21 Apr 2022 13:56:05 +0000
ROA not before: Thu 21 Apr 2022 13:56:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.143.11.0/24 maxlen: 24
45.143.9.0/24 maxlen: 24
94.143.225.0/24 maxlen: 24
45.143.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 13446528 (0xcd2d80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Apr 21 13:56:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dad625b949bb07b8a5c79163e16a018e3bd8b04c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:32:d6:bf:8d:9f:36:f9:39:08:80:95:07:66:
49:46:df:46:a6:21:d2:13:5a:46:53:c1:a6:8c:72:
a2:f1:d5:ca:fa:96:bd:64:79:9c:24:a4:44:5e:de:
a9:33:f6:3e:21:a9:eb:b8:82:f1:86:46:f1:ec:d8:
40:08:d6:2e:f5:e7:15:b1:d3:df:c4:8c:f8:c7:b0:
22:a9:71:60:88:90:a7:4b:b7:0d:75:d6:8a:cd:0e:
3d:0a:b4:78:59:ca:7e:25:db:5d:6f:f1:14:56:db:
28:ce:b9:12:bf:4d:d7:a0:e2:a1:44:70:9c:30:8d:
04:a7:f7:4d:34:05:58:fb:24:a4:f3:d8:04:59:29:
b9:09:c7:e0:94:da:a4:df:1d:be:1f:2c:ab:1b:ff:
44:92:e3:06:4e:02:69:23:89:8c:00:26:4f:bb:67:
64:2e:97:4e:60:47:0c:ea:aa:cd:51:4e:03:3a:f4:
58:18:79:40:f8:ec:17:0a:76:5b:f2:9e:17:6f:fd:
12:9d:48:ce:fb:52:78:cb:3b:80:4f:42:cd:6c:73:
7e:23:68:19:cb:7c:30:a2:98:24:f3:47:38:39:5a:
0c:b5:c3:96:6b:07:b7:8f:07:b3:92:8e:96:86:64:
3b:0d:83:58:60:d7:9b:17:5c:0d:6d:8d:07:49:fc:
00:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D6:25:B9:49:BB:07:B8:A5:C7:91:63:E1:6A:01:8E:3B:D8:B0:4C
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/2tYluUm7B7ilx5Fj4WoBjjvYsEw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.9.0-45.143.11.255
94.143.225.0/24
Signature Algorithm: sha256WithRSAEncryption
21:9f:ff:76:53:85:8c:9f:19:db:45:1d:75:3a:e8:83:4e:81:
6b:9a:2c:5f:26:ad:90:24:be:b5:2b:c7:84:20:89:44:b0:a9:
da:a2:65:20:2c:e8:54:5f:87:26:6a:1d:f8:62:a2:1c:ed:7d:
d5:1f:e8:b4:5b:00:4d:61:1e:0b:d9:3b:a2:31:a7:5e:d2:f2:
33:01:8c:1c:de:67:a8:79:8a:f7:66:34:17:d3:e7:4b:66:f1:
96:71:d4:aa:1a:b5:0b:d9:1f:d1:75:4e:3c:36:2a:e5:23:81:
fd:03:75:c3:2c:ad:f7:7e:1f:c8:57:31:c0:94:aa:7a:45:34:
96:f2:57:42:c4:fa:9f:dd:a0:80:01:9d:9a:b9:98:3c:b4:5e:
e0:81:70:d5:5f:82:52:a5:00:72:c8:3e:d9:5b:45:6b:4e:9d:
67:6b:da:64:15:79:d8:91:17:7a:eb:fe:95:19:86:01:ca:00:
99:78:2d:cb:08:db:a9:bb:fa:54:07:9f:c6:d6:e4:8b:22:af:
47:d7:9a:dd:c0:9e:23:2e:34:db:03:2d:89:52:0d:0b:36:78:
e5:0d:af:b1:e4:7c:a4:bf:e4:f3:47:f9:7e:24:8e:c2:e7:c2:
dd:73:a8:24:58:11:5f:84:c3:81:2b:fd:5f:2c:f9:6f:62:9e:
35:24:52:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:47 2023 by rpki-client on console-ams.rpki-client.org