Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/sur3m7Jw2JAF0csv-XbjDPa3hrQ.roa
File: sur3m7Jw2JAF0csv-XbjDPa3hrQ.roa (raw, json)
Hash identifier: p1I1cdru103NKXpG5TN7w7Kt/Hdx+xlFzexa6HSzlrQ=
Subject key identifier: B2:EA:F7:9B:B2:70:D8:90:05:D1:CB:2F:F9:76:E3:0C:F6:B7:86:B4
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 018440381E4755AACC8ED4D296EA27735BDB
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/sur3m7Jw2JAF0csv-XbjDPa3hrQ.roa
Signing time: Fri 04 Nov 2022 01:18:50 +0000
ROA not before: Fri 04 Nov 2022 01:18:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 45.83.238.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:40:38:1e:47:55:aa:cc:8e:d4:d2:96:ea:27:73:5b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: Nov 4 01:18:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b2eaf79bb270d89005d1cb2ff976e30cf6b786b4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:4d:b2:25:a4:1d:b6:b5:ae:94:5e:66:4f:8b:
31:b2:8a:78:e8:25:fe:d5:60:36:bf:d9:da:3c:25:
a2:29:00:49:3b:b9:ba:03:b6:bd:ed:77:a6:e0:81:
aa:4e:c7:96:9d:1d:b6:93:2b:9b:de:91:aa:48:49:
8a:b1:1f:44:2e:e6:33:10:03:3f:0b:db:68:df:5c:
91:e1:8c:04:45:b9:03:2e:77:d4:7a:09:50:d2:f7:
7c:ed:0a:53:a2:b5:31:6f:e4:68:b9:6e:7e:a9:b2:
6c:a7:7b:59:98:38:fa:38:7d:12:06:c2:22:62:f5:
a1:83:34:e4:bd:2d:85:51:c2:cb:db:68:b6:06:0e:
63:d8:39:e7:e8:74:33:e7:3d:82:4e:ba:fa:e8:a0:
00:e8:47:87:e4:fb:ec:a4:1c:8e:1a:7c:36:22:f6:
26:b4:eb:1a:6b:e6:67:05:40:ed:b2:b9:88:83:b8:
70:82:80:6a:3f:6f:1d:c8:a5:87:dc:55:b9:6a:69:
2a:71:57:79:e9:97:8f:20:90:21:2d:d9:62:69:9a:
13:a9:6d:b6:34:03:35:96:eb:10:87:5b:34:93:dc:
cc:85:50:f6:a9:66:52:8f:1b:1d:47:22:25:f7:e9:
6b:a6:59:8e:10:dc:11:13:ca:14:ef:8c:0f:b3:0f:
69:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:EA:F7:9B:B2:70:D8:90:05:D1:CB:2F:F9:76:E3:0C:F6:B7:86:B4
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/sur3m7Jw2JAF0csv-XbjDPa3hrQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.238.0/24
Signature Algorithm: sha256WithRSAEncryption
70:f0:ba:b1:c4:d3:da:f9:9d:56:45:14:dd:f5:6f:57:c3:88:
37:bd:d2:30:1d:65:8c:6d:77:c5:85:51:c4:88:90:9f:90:09:
83:be:ba:a8:30:f9:9d:02:16:2b:2c:36:6f:54:98:9a:16:a4:
b1:63:a2:60:30:24:46:58:ed:20:47:ac:09:5f:a3:d4:fb:0a:
f9:66:a5:97:41:e4:c9:c8:0d:ad:75:c2:1e:d6:9a:f5:7c:60:
c9:aa:f6:1a:5e:20:01:1b:cc:eb:37:27:67:ca:d6:45:7f:4c:
31:16:29:86:af:49:53:78:ce:3a:ab:73:7b:2b:ba:67:8d:1d:
ee:ca:98:b0:3d:35:2b:18:96:fb:f5:ef:b0:bf:0a:75:28:be:
9d:57:da:2e:dc:42:84:02:46:f9:2e:93:5d:62:d3:bd:7d:f3:
8a:26:87:2c:a7:1f:49:b2:71:a4:e1:dd:14:44:67:0b:87:73:
89:b2:51:f0:10:4f:59:1b:13:47:b6:e1:e8:dd:e3:bb:51:1d:
49:b9:95:2c:1d:56:ba:e3:f0:be:fe:c8:16:c7:46:e2:03:48:
59:b2:03:e5:f4:04:4e:50:fd:5b:cf:bd:24:9b:07:7e:ae:e9:
b5:48:c8:da:f0:ec:f4:27:45:6c:24:a1:8f:f5:bf:cf:b8:c7:
1d:6a:2d:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:02 2023 by rpki-client on console-fra.rpki-client.org