Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/qDyay1HI0r-aLazXiYndLG1a6yo.roa
File: qDyay1HI0r-aLazXiYndLG1a6yo.roa (raw, json)
Hash identifier: MElMoOFrJgfViELgQOoZOvKlMHWZfn+g1KT8eDGIajU=
Subject key identifier: A8:3C:9A:CB:51:C8:D2:BF:9A:2D:AC:D7:89:89:DD:2C:6D:5A:EB:2A
Certificate issuer: /CN=13e281475b7bf8d0fa1f669d5ad2de1635e8c04f
Certificate serial: 040C644B
Authority key identifier: 13:E2:81:47:5B:7B:F8:D0:FA:1F:66:9D:5A:D2:DE:16:35:E8:C0:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/qDyay1HI0r-aLazXiYndLG1a6yo.roa
Signing time: Tue 31 May 2022 09:14:14 +0000
ROA not before: Tue 31 May 2022 09:14:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 45.80.50.0/24 maxlen: 24
45.80.51.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67920971 (0x40c644b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13e281475b7bf8d0fa1f669d5ad2de1635e8c04f
Validity
Not Before: May 31 09:14:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a83c9acb51c8d2bf9a2dacd78989dd2c6d5aeb2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cf:de:ec:b6:d2:4e:bd:ad:b9:da:05:00:fd:
51:7f:6e:45:23:17:78:a7:21:c7:66:6d:ed:5b:30:
71:9c:c3:7a:0c:4c:a3:b2:13:b3:e9:2c:77:e1:8a:
89:0b:1e:2b:85:44:bb:98:23:de:53:69:8d:0a:78:
32:f4:32:40:18:80:f6:73:be:b6:73:d9:2c:6f:4c:
61:fa:46:0b:2b:ca:db:ab:c4:ed:7f:1e:c1:5d:b1:
ce:63:b7:5c:d1:5f:fc:23:21:dc:5e:41:23:4f:9b:
d0:44:0c:1b:41:f3:20:27:81:e5:b4:7c:2b:e0:4e:
58:1a:f3:cd:a0:ed:08:29:7c:21:28:78:d3:04:d8:
c3:5d:cf:e2:2f:bd:a3:27:20:d4:00:3b:56:14:f3:
9f:a2:2c:93:a3:18:d8:7b:df:eb:95:6b:99:8a:57:
33:b3:2b:6d:1f:bf:bc:db:23:bc:4a:11:23:8f:88:
d8:e1:1e:71:3b:60:63:a1:99:1a:60:3f:77:29:56:
dc:7d:1e:91:94:c1:5b:e5:42:7d:34:c0:ee:e2:b6:
95:1b:d8:2a:e1:94:d0:4e:d2:eb:ab:f2:d0:23:c2:
36:2d:bb:91:42:74:73:3a:ef:6b:51:2a:44:bd:b9:
70:6c:de:af:12:ab:ba:34:95:7d:a8:52:cb:80:ee:
41:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:3C:9A:CB:51:C8:D2:BF:9A:2D:AC:D7:89:89:DD:2C:6D:5A:EB:2A
X509v3 Authority Key Identifier:
keyid:13:E2:81:47:5B:7B:F8:D0:FA:1F:66:9D:5A:D2:DE:16:35:E8:C0:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/qDyay1HI0r-aLazXiYndLG1a6yo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/E-KBR1t7-ND6H2adWtLeFjXowE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:88:03:a7:39:a4:9e:21:5b:e1:8c:cd:c0:20:ef:3f:ac:67:
57:9e:64:73:f3:6d:fa:c3:44:cb:e7:22:a3:0a:b7:bb:80:93:
47:b5:ca:01:43:c9:03:53:2d:b7:02:b7:9f:31:4f:d8:af:16:
b8:a6:2e:25:41:8e:7c:4f:b9:02:82:ac:12:c5:6e:80:71:2d:
eb:22:64:d3:32:7a:c9:9b:79:48:2d:3c:72:7d:73:47:f4:2f:
6c:d7:c3:5b:8a:ea:e7:0b:63:2c:8e:d1:5c:29:59:f7:b4:92:
c2:f9:ad:6d:e0:a3:07:0b:8b:69:99:4a:38:6d:80:f3:bc:76:
34:a5:b1:d5:ce:ee:f8:16:0c:6e:02:6f:ab:7c:26:a3:1a:e7:
f7:a6:b6:a3:11:53:81:f0:04:bd:58:56:f7:69:6c:79:30:69:
14:0e:46:6d:10:63:09:eb:c9:50:55:ec:3b:3b:27:14:7d:ba:
a5:80:c4:43:09:27:9e:8b:94:8b:fa:6c:8b:50:12:ae:83:cf:
46:0d:6b:ff:23:02:ad:c7:fb:31:8a:f5:06:6d:0d:a0:d3:b3:
95:c3:fd:7e:97:25:0d:57:df:bd:8d:4f:cd:b4:f7:e1:e9:41:
2e:29:d7:8a:93:22:77:11:dd:bb:35:39:0a:3f:7e:cb:5a:16:
6b:8c:22:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:05 2023 by rpki-client on console-ams.rpki-client.org