Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/I4PMFdtyeBXbC3qfVS5TqMbNvBI.roa
File: I4PMFdtyeBXbC3qfVS5TqMbNvBI.roa (raw, json)
Hash identifier: iCDjpRbeL3UJ4ZSu9d5xP1PmwCc5mpAeOY37Anf2Sxc=
Subject key identifier: 23:83:CC:15:DB:72:78:15:DB:0B:7A:9F:55:2E:53:A8:C6:CD:BC:12
Certificate issuer: /CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Certificate serial: 0414B619
Authority key identifier: 6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/I4PMFdtyeBXbC3qfVS5TqMbNvBI.roa
Signing time: Sat 01 Jan 2022 09:59:39 +0000
ROA not before: Sat 01 Jan 2022 09:59:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208834
IP address blocks: 45.83.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68466201 (0x414b619)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ea1a10f7d944dacc1dec041aaa559d522bfbaeb
Validity
Not Before: Jan 1 09:59:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2383cc15db727815db0b7a9f552e53a8c6cdbc12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:5e:1c:fb:bc:2e:1e:b8:97:3e:c8:af:85:bb:
80:45:75:d9:44:e4:bf:3c:8d:70:bf:07:f1:9c:3e:
91:40:da:79:df:d0:1c:ed:01:05:0e:a5:a7:50:62:
09:0b:49:b1:e6:55:01:81:aa:f0:e9:70:f3:dc:4e:
2a:78:72:8c:22:91:02:ac:5f:d5:49:ce:15:98:44:
31:8d:c3:54:f9:c3:7b:75:52:24:e1:02:9f:9a:29:
78:de:0b:df:f6:71:f1:42:9d:8a:01:ad:e3:12:7a:
83:ae:8a:a5:94:d6:cd:2e:2a:cd:b9:d5:21:5e:38:
7d:69:aa:b4:ca:31:41:a6:68:93:15:73:33:fe:80:
fa:bc:f4:b7:12:6d:b4:79:f6:c7:ac:be:b3:12:38:
7c:46:64:48:2f:19:e3:d5:e1:c8:d7:c3:3e:c2:c9:
ad:a4:fd:b4:eb:00:4f:b2:47:1a:01:64:48:00:3e:
2b:14:47:5b:34:7a:36:ee:f1:37:11:4e:73:2d:ef:
f9:0e:5e:6c:1c:e3:92:4e:62:b5:d4:f0:6b:cd:6c:
18:1d:ce:71:8c:91:7c:75:be:6b:e2:f6:60:94:ec:
8d:c1:90:62:6c:57:0d:b0:16:97:90:49:71:cc:30:
4e:78:c5:66:1a:63:4b:72:26:cf:3f:af:43:2f:d4:
59:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:83:CC:15:DB:72:78:15:DB:0B:7A:9F:55:2E:53:A8:C6:CD:BC:12
X509v3 Authority Key Identifier:
keyid:6E:A1:A1:0F:7D:94:4D:AC:C1:DE:C0:41:AA:A5:59:D5:22:BF:BA:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bqGhD32UTazB3sBBqqVZ1SK_uus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/I4PMFdtyeBXbC3qfVS5TqMbNvBI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/78/85e104-5e52-4048-b1b1-c50968cda86f/1/bqGhD32UTazB3sBBqqVZ1SK_uus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.72.0/22
Signature Algorithm: sha256WithRSAEncryption
11:88:5a:f6:78:86:00:99:7c:8c:37:e3:e1:46:d6:6d:42:6b:
a6:e7:32:51:04:4f:8f:7a:1a:41:27:65:b0:df:87:11:94:f2:
d1:86:42:85:eb:6c:a7:35:7b:13:b2:3d:8f:9b:ca:89:5e:c4:
e0:27:11:95:97:34:3f:ec:87:7c:97:87:70:00:11:99:73:da:
9a:57:e1:57:48:4e:40:31:df:da:bc:04:ee:91:df:e3:2d:b7:
ae:98:f2:99:75:c6:01:63:7d:57:0c:2c:5e:4d:df:59:4e:e8:
59:1e:0b:75:ad:26:70:af:6d:51:18:90:02:88:61:06:0a:b5:
83:01:d4:c3:d0:fd:12:29:60:76:06:f2:7d:39:2f:eb:73:d9:
e9:f3:09:98:38:bb:60:62:57:53:19:97:d6:f4:b8:b8:6c:01:
29:68:c6:d2:55:a3:a7:28:c8:1a:75:57:dd:30:0e:7b:9d:9c:
28:3d:52:79:dc:49:44:d9:5e:8c:75:7a:aa:05:62:46:4d:58:
a8:cd:7b:50:70:a5:a3:a0:77:a1:a1:9c:34:da:74:07:4d:c7:
60:ca:e6:ef:5b:53:2e:6f:b2:10:0f:c9:e7:04:a9:8b:e0:79:
b4:50:3f:53:99:91:01:72:89:3f:db:7a:04:87:e0:a4:57:1f:
b2:dc:cd:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:48 2023 by rpki-client on console-ams.rpki-client.org