Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/fkqXUryxvd_wMMMlJD-G-3GQOzs.roa
File: fkqXUryxvd_wMMMlJD-G-3GQOzs.roa (raw, json)
Hash identifier: AIiFriOBQagjBaqJqxsbl0bIwQg/bDnwNaJtz13h4jI=
Subject key identifier: 7E:4A:97:52:BC:B1:BD:DF:F0:30:C3:25:24:3F:86:FB:71:90:3B:3B
Certificate issuer: /CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Certificate serial: 38C645C2
Authority key identifier: 17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/fkqXUryxvd_wMMMlJD-G-3GQOzs.roa
Signing time: Sat 01 Jan 2022 07:55:07 +0000
ROA not before: Sat 01 Jan 2022 07:55:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1124
IP address blocks: 145.18.0.0/16 maxlen: 16
145.109.0.0/17 maxlen: 17
145.109.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 952518082 (0x38c645c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1773db17795d2bf1b4b5345c5b29390dbaf4523e
Validity
Not Before: Jan 1 07:55:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7e4a9752bcb1bddff030c325243f86fb71903b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7d:1d:df:2a:46:a9:e1:9f:47:29:04:e9:4c:
5b:a6:e1:5f:bb:01:db:40:9a:1b:a8:b1:22:99:e5:
f0:50:9d:c1:83:38:42:99:82:22:44:19:14:55:f1:
9c:2e:f5:c1:a4:de:bc:c1:ce:7d:1e:07:40:33:98:
f1:e1:83:24:49:44:e6:1f:ba:b9:4c:18:14:4e:6b:
0b:c9:3b:dc:a0:f4:6d:1d:70:d6:2d:6e:38:6e:83:
60:9c:c3:3d:44:f3:91:30:d9:98:27:b9:3a:01:98:
b3:39:ff:e3:d2:31:3c:af:8c:c9:a5:cf:2d:9b:35:
e0:2c:c4:c1:a7:14:ff:3b:ad:e1:f0:3a:e1:dc:e2:
a8:57:8e:6e:b0:39:08:bb:36:16:95:16:af:40:b9:
19:e1:67:56:ef:06:09:03:0a:ae:32:f0:2d:6d:81:
88:c9:6e:68:11:89:47:a6:b8:bf:d8:11:31:bd:81:
6d:8c:00:b2:48:f6:4d:fa:a0:28:79:a1:fb:dd:fd:
94:35:26:87:76:cc:5b:f7:e6:fd:f2:40:71:f8:a6:
df:64:18:98:52:9c:de:59:23:1e:19:a0:ef:d8:04:
2a:8c:6f:54:3f:4f:dc:88:fd:53:63:d4:d9:85:ed:
ca:8d:72:9b:22:ec:05:b6:2c:73:c6:71:fb:d9:77:
50:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:4A:97:52:BC:B1:BD:DF:F0:30:C3:25:24:3F:86:FB:71:90:3B:3B
X509v3 Authority Key Identifier:
keyid:17:73:DB:17:79:5D:2B:F1:B4:B5:34:5C:5B:29:39:0D:BA:F4:52:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/fkqXUryxvd_wMMMlJD-G-3GQOzs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/f77cbd-893b-4616-9d76-54861f23249d/1/F3PbF3ldK_G0tTRcWyk5Dbr0Uj4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.18.0.0/16
145.109.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6e:f3:f3:de:23:dc:be:9f:8f:e6:5d:c1:ab:2e:22:82:b3:e1:
32:f3:b5:a4:e7:94:85:ba:ec:23:c0:78:b9:d0:9c:0b:34:89:
2d:f3:e8:68:6d:ba:89:ca:08:37:85:0b:6c:91:57:37:0f:dc:
81:c1:d8:3b:a4:71:0c:2b:ea:05:ea:1d:b6:3a:89:d0:cc:6e:
4f:8f:88:20:d9:18:fd:59:90:fd:f2:69:70:4d:be:35:82:96:
bf:70:51:8e:e1:53:b5:04:04:0a:bb:85:c3:ad:d8:d1:02:a3:
96:ea:df:f6:56:f9:76:92:83:5d:ec:47:e3:d8:eb:3f:20:12:
c5:37:18:37:7e:6a:93:55:b2:18:27:7a:18:c0:39:1b:a0:10:
56:12:12:6a:c6:4f:25:e1:6a:0b:b3:21:8a:bb:a4:c8:18:aa:
24:38:0d:ea:f0:01:98:46:93:c5:71:d4:14:51:62:54:44:a4:
ac:c8:8a:87:e7:e2:1b:3e:ed:58:1d:ed:14:c1:eb:e4:a1:7c:
6b:e3:be:6f:c0:c4:4e:a4:4e:d7:2f:c1:60:4f:85:c3:89:c1:
3a:82:99:ba:5a:ec:6b:fd:c4:89:c3:d4:34:5d:4e:49:76:29:
73:fa:5b:ad:7b:89:56:8e:80:dc:08:75:db:2e:63:a4:81:d4:
78:b8:39:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:18 2023 by rpki-client on console-ams.rpki-client.org