Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/FrfR165MVoQ-N1w13zMGMS1Xcaw.roa
File: FrfR165MVoQ-N1w13zMGMS1Xcaw.roa (raw, json)
Hash identifier: K7f8n/eaDePDW1gQ4YRHDolfKmrwLU+iHi/37MoHiE4=
Subject key identifier: 16:B7:D1:D7:AE:4C:56:84:3E:37:5C:35:DF:33:06:31:2D:57:71:AC
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 0171DDD5
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/FrfR165MVoQ-N1w13zMGMS1Xcaw.roa
Signing time: Fri 01 Jul 2022 21:45:25 +0000
ROA not before: Fri 01 Jul 2022 21:45:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 45.143.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24239573 (0x171ddd5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Jul 1 21:45:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=16b7d1d7ae4c56843e375c35df3306312d5771ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:13:a0:14:d1:6e:78:e5:2e:15:d8:8f:cb:
81:48:51:3c:d6:19:f4:fb:3d:65:8e:fb:94:e7:48:
ce:a5:13:48:48:56:19:04:14:b8:d5:62:9d:da:e0:
e1:e1:7c:77:f0:8c:77:5d:3e:d7:de:b4:a6:a9:20:
6e:b4:41:1c:05:45:d3:61:ab:1e:a3:4f:20:bb:10:
63:e6:15:d8:fb:b1:5c:70:d5:4c:f3:12:65:fb:4c:
d9:9f:42:19:04:59:d5:0a:a8:f2:32:d6:8f:68:a7:
1b:d3:28:89:7b:81:b4:95:57:e0:6d:e5:c0:52:de:
94:25:1b:68:0f:5b:1e:dc:56:81:38:4e:98:b8:e3:
17:33:59:4b:22:fd:1a:3f:c0:7d:08:93:d5:38:ed:
01:e3:e9:7d:83:f2:55:78:7f:c6:d4:26:3a:15:47:
26:b7:63:1c:c0:03:44:de:22:13:5b:64:7a:e4:2b:
dd:60:63:44:ad:15:04:eb:a2:6e:e8:b1:63:c6:bb:
1f:97:7d:41:df:3f:d0:6a:bd:1f:56:02:a8:7a:cd:
55:41:99:96:82:1e:82:76:27:06:83:26:45:a5:7e:
87:fb:ea:f5:2a:f8:1d:17:9c:83:36:59:01:de:3a:
e8:b9:61:a9:88:ce:63:ac:20:1b:78:bf:3b:8c:52:
e6:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:B7:D1:D7:AE:4C:56:84:3E:37:5C:35:DF:33:06:31:2D:57:71:AC
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/FrfR165MVoQ-N1w13zMGMS1Xcaw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.11.0/24
Signature Algorithm: sha256WithRSAEncryption
42:6a:04:f3:09:76:95:ee:f6:16:be:3b:0a:84:33:9d:6c:35:
cf:7c:7c:6c:98:b3:08:89:e3:c4:10:b2:a4:da:29:fc:a7:2a:
62:a5:c2:e4:8a:ce:72:31:46:98:f5:87:a1:f8:5e:13:76:0e:
a9:db:29:9e:6b:c6:de:e0:cb:1c:3c:1f:ff:30:b6:48:eb:81:
be:98:7a:55:dc:dd:1b:19:dc:2d:87:21:be:36:2f:71:1b:af:
85:1a:d6:b3:23:1f:84:ae:9c:21:57:90:26:4f:f8:f1:8b:a2:
22:2f:98:d3:58:cf:19:0f:eb:39:9a:02:f4:9d:dd:10:43:b0:
2a:65:74:70:e2:8b:b6:48:2a:1e:d9:ae:ae:39:4a:1f:30:42:
16:c7:ad:67:31:d4:ae:a4:cb:c9:bb:7f:d0:d1:9e:25:b7:da:
59:86:21:01:de:06:d8:78:c8:09:1b:30:2e:8b:aa:ff:60:47:
80:d3:e2:eb:09:74:5e:30:e8:e0:5d:23:8b:4e:10:62:83:28:
35:0b:0a:ee:59:dd:42:86:c1:12:73:a1:2b:42:94:74:83:58:
9e:8d:f6:48:28:1c:21:8d:12:b9:15:c2:ff:98:15:e3:b2:47:
54:b5:2f:ba:37:ac:51:e0:c6:2c:96:77:6a:e4:87:8a:ff:01:
e9:c5:e5:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org