Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/TJK7gMleh9pCMszI0uMeD0aa334.roa
File: TJK7gMleh9pCMszI0uMeD0aa334.roa (raw, json)
Hash identifier: OHineQt7yZ+r8mbrJ/4mEHwpKMr+5w5DPLDH/atmcFU=
Subject key identifier: 4C:92:BB:80:C9:5E:87:DA:42:32:CC:C8:D2:E3:1E:0F:46:9A:DF:7E
Certificate issuer: /CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Certificate serial: 0181E7D98E268BB8668871C397B094B68C92
Authority key identifier: 3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/TJK7gMleh9pCMszI0uMeD0aa334.roa
Signing time: Sun 10 Jul 2022 11:23:23 +0000
ROA not before: Sun 10 Jul 2022 11:23:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.93.21.0/24 maxlen: 26
2a12:a080::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:e7:d9:8e:26:8b:b8:66:88:71:c3:97:b0:94:b6:8c:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3eabe028f3be7ee072885d02bbd7b62a652425ef
Validity
Not Before: Jul 10 11:23:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c92bb80c95e87da4232ccc8d2e31e0f469adf7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d6:c4:b1:48:9c:71:76:46:e0:fc:8b:8b:32:
de:e2:6e:17:f9:a6:c0:11:23:94:e8:9b:7c:2d:07:
80:7b:7a:2d:b9:8e:59:8c:dc:03:03:c6:90:58:60:
36:98:62:89:bb:2d:f8:65:fd:7e:2e:a4:80:f5:5e:
3b:cc:e4:89:5d:1f:59:56:50:ae:f0:6b:af:5d:b5:
81:12:3a:cc:c4:1a:4a:c8:a0:6c:82:2c:67:c4:df:
35:b5:1d:13:a0:38:b2:a6:49:7a:60:33:95:a6:f2:
db:a8:fd:4b:07:b2:76:a3:2b:40:07:f0:b0:9c:1e:
83:2a:38:9d:27:dc:17:57:5b:da:54:3e:57:e5:c3:
fa:4d:7d:1d:37:c8:de:c2:99:0c:85:e2:80:38:b6:
aa:f9:b5:89:08:30:b9:07:fa:53:da:6d:89:66:be:
6d:27:a5:68:a9:97:a5:25:b5:0f:ca:c1:32:ee:22:
a1:64:d3:cf:77:27:1f:5d:a7:8a:82:66:7c:02:b4:
70:49:b5:3f:ec:8e:2b:0d:a3:37:a4:a1:d9:ff:12:
bb:c2:ea:3a:b2:0a:7e:a5:11:b7:1b:75:77:c9:a5:
87:2c:f9:a5:07:ab:bd:63:3f:fb:fe:35:8a:3f:0d:
b7:a5:c0:b9:c3:e4:2e:ef:de:cf:ed:d9:c0:56:f1:
2d:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:92:BB:80:C9:5E:87:DA:42:32:CC:C8:D2:E3:1E:0F:46:9A:DF:7E
X509v3 Authority Key Identifier:
keyid:3E:AB:E0:28:F3:BE:7E:E0:72:88:5D:02:BB:D7:B6:2A:65:24:25:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqvgKPO-fuByiF0Cu9e2KmUkJe8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/TJK7gMleh9pCMszI0uMeD0aa334.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/2ad4fa-bd7b-407e-b25a-df7410b2d275/1/PqvgKPO-fuByiF0Cu9e2KmUkJe8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.21.0/24
IPv6:
2a12:a080::/48
Signature Algorithm: sha256WithRSAEncryption
4f:11:51:b9:ba:7a:f4:aa:8b:9b:bc:f6:72:26:c8:da:f8:28:
b9:28:56:68:00:3c:dd:a2:92:e0:fa:40:b1:e3:bc:a3:be:24:
4a:f7:ea:20:c0:be:94:5d:9a:f0:eb:fb:cc:14:c0:61:82:01:
af:d4:96:90:e0:cf:71:bd:23:fc:a3:9f:be:a2:27:a6:ae:5f:
4f:bb:0c:28:89:0d:24:e0:63:7e:0b:ff:40:66:69:18:a2:2f:
cb:8f:37:82:9e:0c:49:2f:c9:c9:b9:a4:93:21:60:bb:33:4e:
03:d5:28:aa:3a:b9:42:18:17:89:b8:e7:e6:1d:27:20:cd:4e:
c5:76:3f:af:b2:5b:68:4e:7c:2c:db:2f:12:9c:b8:b3:47:0f:
3c:31:1f:41:6c:cd:4d:53:f6:8b:d3:f6:1b:44:ac:47:57:fe:
55:7f:fe:f0:57:e5:f6:4d:a5:94:86:d5:b6:85:48:a4:71:06:
31:40:c8:05:63:ee:03:5f:1c:a5:03:34:c9:37:0c:2b:38:d4:
cd:e4:85:7c:91:96:5a:18:67:dc:c8:2f:7b:01:ee:67:2c:db:
ba:5c:da:02:c5:90:c3:5e:78:cb:08:49:bf:9e:db:04:d9:c3:
c4:1c:3a:74:65:ff:4c:dd:3c:be:b6:3c:df:5a:cf:27:aa:72:
51:eb:22:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:36 2023 by rpki-client on console-ams.rpki-client.org