Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8jrrkd6KRs3NbMB7OkHZfCYPBxU.roa
File: 8jrrkd6KRs3NbMB7OkHZfCYPBxU.roa (raw, json)
Hash identifier: vjaB2QY2kzCtUyezKp+EVTXV6BWQtRdgd5rE8FrrIlA=
Subject key identifier: F2:3A:EB:91:DE:8A:46:CD:CD:6C:C0:7B:3A:41:D9:7C:26:0F:07:15
Certificate issuer: /CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Certificate serial: 02F46865
Authority key identifier: F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8jrrkd6KRs3NbMB7OkHZfCYPBxU.roa
Signing time: Fri 14 Jan 2022 23:03:47 +0000
ROA not before: Fri 14 Jan 2022 23:03:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 64286
IP address blocks: 45.88.228.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49571941 (0x2f46865)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f2a253cdf507a03e1f579d202d8df11d68f5c3d7
Validity
Not Before: Jan 14 23:03:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f23aeb91de8a46cdcd6cc07b3a41d97c260f0715
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:e4:e2:0f:3f:b3:71:ae:70:2a:04:32:1c:f4:
26:95:f5:28:74:5f:41:69:16:0e:73:d7:dd:fc:2a:
f9:12:cf:b3:65:ed:1b:57:31:c4:1b:99:8d:2b:1e:
bd:76:02:3d:6d:d1:00:a0:f7:f8:52:19:d6:a1:4d:
ad:8e:43:6a:12:c2:e0:67:23:37:d1:56:a6:d3:c2:
7b:92:ec:15:c6:f5:f3:05:f2:3e:e1:16:70:08:dc:
ec:e2:85:e7:f6:c4:49:fd:a0:9a:86:3c:6a:30:6d:
5a:46:f6:2f:8e:e8:5f:8d:60:11:df:7e:a7:f9:ec:
21:b5:d8:58:49:f5:bf:50:a1:03:02:66:27:ea:fd:
bc:1b:03:b3:87:ae:fc:a9:97:a2:45:f3:24:fc:26:
ec:e3:32:8c:a3:09:d0:60:1b:33:1b:f1:3f:40:d5:
3d:29:0a:bb:b4:59:50:10:5a:93:ad:66:85:1b:6e:
86:c2:83:d0:89:02:73:d4:22:c7:bd:66:5b:ed:b4:
97:2f:22:89:54:d5:86:76:e0:12:74:10:85:a2:b5:
f7:11:8e:95:36:c9:1d:a9:7b:a5:9b:a9:bd:ac:20:
41:9f:4a:59:e5:0d:7d:9d:4b:66:2b:b5:b3:78:80:
40:c2:c2:e4:fc:0e:09:a9:1b:5d:b5:81:eb:0a:d9:
b1:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:3A:EB:91:DE:8A:46:CD:CD:6C:C0:7B:3A:41:D9:7C:26:0F:07:15
X509v3 Authority Key Identifier:
keyid:F2:A2:53:CD:F5:07:A0:3E:1F:57:9D:20:2D:8D:F1:1D:68:F5:C3:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8qJTzfUHoD4fV50gLY3xHWj1w9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8jrrkd6KRs3NbMB7OkHZfCYPBxU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/10ebec-2784-4daa-8df7-be4d5d09d710/1/8qJTzfUHoD4fV50gLY3xHWj1w9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.228.0/22
Signature Algorithm: sha256WithRSAEncryption
15:0b:2c:2f:70:a2:6d:03:2b:40:fa:36:e3:5e:98:19:73:fc:
0e:e9:a3:39:70:91:ef:ec:ac:f9:76:fd:28:11:75:e5:e1:3b:
0c:aa:bc:0a:05:cc:7b:d4:c5:f5:c0:68:89:de:d1:35:c2:5e:
4b:70:69:51:45:1a:e6:69:94:a8:7e:b5:4e:35:d8:37:c4:dc:
31:f3:f4:89:74:10:46:eb:15:2a:69:ee:c8:01:57:5b:10:99:
d2:53:d7:ec:b4:a6:a0:af:61:29:d6:bb:02:a9:5d:b1:da:1b:
27:92:9d:8c:f2:fc:99:6e:95:c7:a1:c2:66:63:cb:08:7d:55:
32:e9:98:83:42:7b:ed:16:7c:05:12:21:cf:bf:e4:28:0f:19:
44:56:6e:fa:63:72:bc:ef:96:ea:77:ab:eb:04:91:d5:d3:69:
0b:5f:66:ff:17:b2:cf:6f:15:7d:e9:40:fd:80:0c:02:d7:75:
d5:f0:a0:e6:d7:96:e4:83:2a:0c:a6:94:47:f2:9c:53:ba:dc:
ba:0e:ef:b1:52:07:a2:e5:21:66:b0:4b:cc:fc:e1:1f:b6:31:
67:8f:42:21:75:eb:f6:10:2d:1e:05:93:3f:17:f4:18:25:1d:
65:77:b6:7f:4e:c2:d4:c9:1d:be:91:72:07:38:bf:e2:eb:3d:
24:b6:ba:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:53 2023 by rpki-client on console-ams.rpki-client.org