Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/kMizTpDevQ8Drc5DlhbYFsvdMQw.roa
File: kMizTpDevQ8Drc5DlhbYFsvdMQw.roa (raw, json)
Hash identifier: l/wfQOsclI00/H/OBDeUp99wkXsi8sW3XZJk1p8YgkA=
Subject key identifier: 90:C8:B3:4E:90:DE:BD:0F:03:AD:CE:43:96:16:D8:16:CB:DD:31:0C
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 011D9054
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/kMizTpDevQ8Drc5DlhbYFsvdMQw.roa
Signing time: Sat 01 Jan 2022 06:03:52 +0000
ROA not before: Sat 01 Jan 2022 06:03:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 393894
IP address blocks: 45.15.196.0/22 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18714708 (0x11d9054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Jan 1 06:03:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90c8b34e90debd0f03adce439616d816cbdd310c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d8:81:fd:49:0a:76:4d:b9:0b:e8:1e:57:70:
72:6d:4d:9d:e6:ae:71:8c:2d:6a:0f:89:93:19:11:
14:2d:7e:87:ea:54:13:e3:33:c0:0c:57:52:a6:cb:
18:b6:a3:3f:af:ac:ec:91:f9:48:3d:1d:a6:e9:73:
b3:0d:c7:fa:5c:9a:63:ac:af:f0:25:6e:5b:59:77:
f2:60:dc:7e:e8:61:2c:80:86:f6:ce:bf:69:fd:65:
9a:d7:15:f1:06:7e:a1:24:16:db:17:8b:da:5a:0b:
b5:60:a9:53:9d:ed:9c:5c:a1:93:28:a5:ad:72:7c:
be:de:70:bf:a2:5a:cb:5d:81:23:0f:96:64:28:22:
a4:5f:1c:eb:d0:93:ba:a5:fe:0c:ce:06:34:61:a9:
f8:0e:9c:4a:d8:ed:cf:26:f8:20:1b:9e:eb:be:a9:
a5:a7:29:d3:c5:40:78:b4:fa:59:cc:d8:25:58:4f:
b8:8c:0f:37:de:8e:6e:40:74:b5:c5:8b:e2:ed:96:
07:ca:76:9d:36:1c:f9:a1:46:d6:b1:98:8c:ec:ad:
1f:58:7c:66:30:34:f9:f3:8b:d6:54:1c:d5:cc:6b:
b0:79:67:f7:89:38:9b:a3:ce:91:2d:93:4f:e6:b6:
2e:d8:e2:1e:4b:99:22:33:0d:56:6e:28:6d:e2:93:
47:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:C8:B3:4E:90:DE:BD:0F:03:AD:CE:43:96:16:D8:16:CB:DD:31:0C
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/kMizTpDevQ8Drc5DlhbYFsvdMQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.196.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:d0:4f:ce:18:81:05:dd:6c:c2:21:85:67:1c:8d:26:fa:9d:
01:26:54:a0:84:b1:07:02:29:db:f5:85:40:ea:c6:d0:aa:85:
39:a3:47:07:d8:e2:e2:a7:83:a2:58:94:00:2f:e7:12:a2:ec:
f7:2a:88:0a:60:dc:cf:88:d4:89:1c:e4:73:78:81:7d:2f:52:
af:34:39:86:69:f1:8c:ea:4a:f1:76:03:3c:1a:c4:da:84:04:
35:bd:bb:87:94:5d:f0:dc:58:b5:1f:77:fc:18:21:fc:0b:30:
0d:79:56:5d:89:9e:41:01:bd:c5:c9:34:5b:21:a5:d3:4f:57:
ed:56:8f:b9:2f:f0:3d:d9:50:1e:46:f1:98:0c:77:6e:77:19:
96:06:44:fd:ca:d9:0e:09:d5:18:cd:d5:ff:d5:54:0d:a1:64:
2e:da:27:cb:3f:a5:77:71:0b:4f:66:aa:f1:04:6b:63:27:7a:
d2:74:e3:76:e8:20:1f:de:a1:7e:5e:94:c0:82:73:4b:cc:79:
a1:48:d1:df:fe:e7:4f:64:dd:a5:2a:ee:a0:7e:1e:1e:4c:f0:
b7:67:92:65:8d:18:9d:eb:3b:16:60:d1:b1:98:c7:e3:bf:f3:
47:dc:6e:a3:d0:f1:6a:3e:a2:4a:dc:b8:39:e9:cc:30:c0:f9:
5b:a3:14:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org