Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/SI9UTC1uhrey8YUmYdF9mroimBQ.roa
File: SI9UTC1uhrey8YUmYdF9mroimBQ.roa (raw, json)
Hash identifier: mFPTeWtvxKk4DCCvI+5hxkMNTRRMbw/IwUmy+RqHnYg=
Subject key identifier: 48:8F:54:4C:2D:6E:86:B7:B2:F1:85:26:61:D1:7D:9A:BA:22:98:14
Certificate issuer: /CN=9b32a2e8fcbeee63020ba93daab9076c37bc9991
Certificate serial: 0792FD6B
Authority key identifier: 9B:32:A2:E8:FC:BE:EE:63:02:0B:A9:3D:AA:B9:07:6C:37:BC:99:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mzKi6Py-7mMCC6k9qrkHbDe8mZE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/SI9UTC1uhrey8YUmYdF9mroimBQ.roa
Signing time: Sat 01 Jan 2022 03:53:48 +0000
ROA not before: Sat 01 Jan 2022 03:53:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 45.15.200.0/24 maxlen: 24
45.15.203.0/24 maxlen: 24
45.15.202.0/24 maxlen: 24
45.15.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127073643 (0x792fd6b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b32a2e8fcbeee63020ba93daab9076c37bc9991
Validity
Not Before: Jan 1 03:53:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488f544c2d6e86b7b2f1852661d17d9aba229814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:de:b5:61:fe:73:28:dd:0c:52:33:6f:dc:1d:
58:6f:c5:f6:c4:2f:ea:19:8a:3a:bd:3c:6c:81:24:
62:07:44:81:dc:f6:01:0f:91:bf:73:8b:4f:be:be:
45:bc:3b:36:db:a3:0a:ea:46:57:93:7b:5c:6c:c1:
37:c7:bc:47:18:1a:22:e4:e7:1d:0a:cc:6a:f6:21:
a2:0a:49:66:67:dd:0b:c4:9b:80:91:3e:83:b1:6c:
cc:7a:15:8e:68:32:f4:ac:50:4f:b3:e2:89:41:73:
ad:4a:b5:d9:8a:5f:41:63:32:f8:fa:4a:26:5e:5c:
a7:23:14:1b:74:89:9c:98:5e:0d:54:7a:a0:b0:41:
21:b0:79:93:4b:3c:37:1c:77:9b:56:2c:13:cb:d6:
e9:46:02:c2:15:e1:8d:d0:98:12:85:5b:7d:af:a4:
9c:e2:94:eb:df:67:70:09:54:52:bf:fe:30:12:e8:
7a:a3:2f:10:ee:c4:0f:86:d1:d1:81:95:88:59:b4:
76:64:91:c4:ed:97:05:64:41:9d:36:98:57:9a:c1:
05:00:1a:50:ce:e7:21:ae:f4:3d:02:9f:a2:48:81:
06:a0:c1:5d:ee:16:05:8a:35:d9:8e:13:f4:f6:18:
67:53:31:d3:2e:ec:2a:52:d0:7f:34:fc:aa:e3:e5:
14:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8F:54:4C:2D:6E:86:B7:B2:F1:85:26:61:D1:7D:9A:BA:22:98:14
X509v3 Authority Key Identifier:
keyid:9B:32:A2:E8:FC:BE:EE:63:02:0B:A9:3D:AA:B9:07:6C:37:BC:99:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mzKi6Py-7mMCC6k9qrkHbDe8mZE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/SI9UTC1uhrey8YUmYdF9mroimBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/df21cb-08ac-4e5c-b854-e3ab9087d403/1/mzKi6Py-7mMCC6k9qrkHbDe8mZE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.200.0/22
Signature Algorithm: sha256WithRSAEncryption
85:c7:97:59:67:44:8b:43:ab:64:b3:66:3e:db:ba:2a:7a:b8:
f0:f1:2c:13:ab:0a:34:07:fc:cb:ec:fc:37:8e:26:51:a5:66:
c0:7e:00:ff:6e:eb:36:3a:37:d6:d0:e3:91:c6:4f:ec:93:54:
b2:72:30:d8:17:07:e4:5b:ae:ae:ee:ef:a9:ac:e1:0b:83:73:
a4:ea:29:6b:82:1f:1a:bf:f3:c8:88:10:0e:f0:39:1d:7d:5f:
e6:96:d3:a2:86:e8:dd:93:22:26:47:d4:9d:ac:4e:2c:74:83:
f7:17:d7:8e:05:39:d0:b9:cb:f0:f8:f9:b3:96:fe:83:60:23:
3d:41:61:6e:52:54:8b:95:81:d5:c4:73:e8:0e:f9:8a:36:e2:
2e:9c:bf:7a:f5:8c:7e:fd:71:55:0c:fb:ae:40:b7:d9:59:04:
b1:fb:ff:6b:70:47:a7:58:9c:44:0c:06:0c:fc:fb:6e:7d:cc:
77:cd:23:dc:92:44:78:e7:e8:e4:1d:88:f8:84:b3:4b:5d:1f:
d0:fc:57:8e:44:30:43:ff:c3:5e:43:65:b2:dd:b2:ef:05:2b:
93:e3:0a:70:57:80:b2:be:bf:4d:cc:20:7d:68:d9:c6:20:3b:
be:18:7e:ed:4e:5e:d2:d6:62:93:ca:43:70:92:ca:e9:66:31:
9a:0c:04:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:20 2023 by rpki-client on console-ams.rpki-client.org