Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/CkDsvJYMcXudP82DhZmkloyrHBo.roa
File: CkDsvJYMcXudP82DhZmkloyrHBo.roa (raw, json)
Hash identifier: pr9YTXunUAgo34RDj1MEektjJUKFVvImAmS4LrRosjQ=
Subject key identifier: 0A:40:EC:BC:96:0C:71:7B:9D:3F:CD:83:85:99:A4:96:8C:AB:1C:1A
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 03CC5E26
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/CkDsvJYMcXudP82DhZmkloyrHBo.roa
Signing time: Sat 01 Jan 2022 02:56:35 +0000
ROA not before: Sat 01 Jan 2022 02:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134835
IP address blocks: 45.83.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63725094 (0x3cc5e26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Jan 1 02:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0a40ecbc960c717b9d3fcd838599a4968cab1c1a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:94:70:11:ce:fa:84:3e:67:35:96:8e:16:65:
ae:3d:e5:ac:b2:bc:4c:79:08:df:75:9a:12:1e:9c:
6b:89:a1:52:b3:1b:e0:b6:b8:eb:85:a6:1e:d4:97:
f2:be:aa:67:ee:7b:f1:f6:62:bd:ac:38:5f:3f:92:
f0:76:50:0d:b2:ad:bb:e3:12:63:1b:17:d2:1c:e5:
65:46:a9:0e:0d:23:63:c7:9e:ee:8e:50:5a:83:c9:
91:93:e7:c9:9d:35:32:80:75:6b:21:aa:30:7b:5e:
d1:9a:7b:23:42:e6:ce:bc:c4:c6:7a:f0:09:b8:99:
44:b5:0e:01:04:45:8e:94:92:d4:04:65:d0:22:68:
86:89:77:74:63:0f:69:02:53:12:33:15:71:42:09:
31:85:b8:23:db:29:6c:24:0a:64:11:2f:a4:a8:fa:
a2:27:c9:e5:b8:b1:e4:dd:ea:96:ce:ae:d3:7d:85:
d7:9a:eb:8c:34:3d:72:6e:6b:ba:63:83:56:14:ac:
f0:f6:ca:20:3c:e8:7d:78:d7:79:04:10:65:03:74:
a7:f4:c8:62:7b:3b:2b:42:d8:bf:f0:3f:e5:1e:b5:
e8:ae:87:ee:34:6c:d8:4a:14:e6:d3:17:2d:55:d4:
29:8e:b3:f2:2b:6c:6e:4d:1b:ec:18:89:52:c7:87:
a9:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:40:EC:BC:96:0C:71:7B:9D:3F:CD:83:85:99:A4:96:8C:AB:1C:1A
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/CkDsvJYMcXudP82DhZmkloyrHBo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.237.0/24
Signature Algorithm: sha256WithRSAEncryption
42:1e:86:ee:4f:f2:26:39:8b:e9:52:f8:75:d6:db:b1:8e:2e:
16:5f:49:f5:c6:5d:f9:9d:fa:3d:78:2a:48:12:c8:a9:7a:7d:
c1:79:d0:9c:e8:8b:38:0d:b5:23:90:7a:ac:8a:b9:24:9e:1a:
a6:ee:d4:7b:eb:2f:a4:1f:59:da:ab:2c:3e:62:9a:95:f2:aa:
9f:4c:dc:2a:6f:e2:13:61:65:0a:77:f2:92:99:c2:8d:da:6c:
a7:f2:fa:79:cf:b6:da:12:b1:aa:31:b2:05:62:a5:47:17:7e:
3d:0f:33:8d:e9:83:3d:68:57:bc:68:6f:97:d7:c0:16:80:ea:
14:13:02:14:b9:e2:fb:f1:d8:d8:df:3b:54:94:f3:cc:1c:13:
a0:83:ff:0e:c1:5d:1a:ea:e7:f2:52:d8:fd:43:39:37:b7:47:
f9:0d:26:1a:9c:5d:24:6a:10:74:a6:d5:ff:22:27:46:75:dd:
bf:a5:a4:49:e6:84:c4:73:88:bd:8c:7e:b1:1a:12:2b:ba:09:
61:01:94:3e:2f:8f:d3:f5:84:a7:e7:89:e6:1f:e2:aa:83:27:
8d:09:77:a3:bc:c3:60:ee:71:a8:23:e6:41:d8:5f:75:91:67:
68:1e:22:d3:d2:a1:8f:4d:c2:b3:b8:95:c9:61:e1:28:ca:58:
23:06:38:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:01 2023 by rpki-client on console-fra.rpki-client.org