Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/P7QNQ8Npz9GDylfhmY_iKtcG9v4.roa
File: P7QNQ8Npz9GDylfhmY_iKtcG9v4.roa (raw, json)
Hash identifier: URZtyQiyZDVMJCeTvpYNZ8y71zqEvMDIbLF8nf8ORSs=
Subject key identifier: 3F:B4:0D:43:C3:69:CF:D1:83:CA:57:E1:99:8F:E2:2A:D7:06:F6:FE
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 019AC566
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/P7QNQ8Npz9GDylfhmY_iKtcG9v4.roa
Signing time: Sat 01 Jan 2022 13:06:22 +0000
ROA not before: Sat 01 Jan 2022 13:06:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.145.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26920294 (0x19ac566)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: Jan 1 13:06:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fb40d43c369cfd183ca57e1998fe22ad706f6fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1b:57:2e:e6:7d:dd:de:14:4c:99:e7:89:2e:
80:e3:1d:29:24:2f:b7:57:ad:5e:82:40:3c:20:57:
2c:9d:96:7e:6f:61:a2:b0:ed:1c:9c:37:3a:9b:57:
8b:45:97:6e:6b:b6:c0:a7:98:4e:44:62:5c:a4:da:
15:a7:0b:29:48:06:8a:2e:58:0f:3f:7a:c8:97:73:
ac:89:43:c2:42:a7:b4:97:19:21:0f:e5:0c:4e:ba:
82:16:b3:5d:39:fb:74:5b:20:36:82:c6:c2:d1:04:
d8:3a:14:e7:24:f9:92:c3:51:6b:eb:c2:96:14:b6:
57:d6:c5:d6:27:76:5d:07:6d:6c:fa:03:f6:85:3a:
64:f5:8a:a9:cd:d1:7d:ce:c7:00:0e:88:a1:84:7f:
76:3a:8d:28:7d:a0:26:76:22:05:e9:d8:1f:26:37:
a4:c7:48:67:5b:5e:9e:b2:b5:3a:e6:0d:15:f5:b8:
f8:63:f5:69:cb:67:20:30:fc:2e:bf:06:20:7e:b4:
08:ae:b5:be:64:61:f2:ae:2c:f4:13:cd:b4:86:02:
b9:a9:cb:79:67:c1:03:a1:80:ce:d8:88:ed:b0:4a:
21:17:ed:0d:1a:97:ce:c8:1b:34:24:bb:97:98:1d:
06:5a:38:42:65:d0:4a:ae:51:84:0e:39:45:7f:0a:
58:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:B4:0D:43:C3:69:CF:D1:83:CA:57:E1:99:8F:E2:2A:D7:06:F6:FE
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/P7QNQ8Npz9GDylfhmY_iKtcG9v4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.232.0/22
Signature Algorithm: sha256WithRSAEncryption
83:f7:dc:61:2e:c7:e7:19:48:11:a9:37:c2:8d:0c:28:5c:27:
63:1d:b2:13:69:b7:e4:bb:7c:06:c2:84:ff:f1:38:8b:cb:16:
d9:8a:3f:c7:83:2d:e9:3b:42:81:80:27:d1:1b:73:3a:fa:89:
3d:72:39:00:98:15:4a:fc:3e:be:8b:84:72:4c:4b:55:13:a6:
2f:50:2c:22:8d:75:e6:2a:89:86:f4:35:ca:e0:53:6c:28:81:
ad:14:f5:7b:23:b3:8b:1b:98:f9:34:00:1f:f9:f1:d8:60:92:
36:18:4c:68:fb:af:7f:5d:19:6d:f8:a7:b6:93:e8:9e:0b:87:
21:0b:60:d3:ea:c9:6d:6a:a7:29:99:74:0f:3c:d7:ae:18:cc:
d0:fe:5e:92:fc:bf:b8:e4:c4:5b:0b:9a:55:6f:12:ef:8c:64:
a2:bc:8f:c2:0a:2f:7c:f5:41:14:d2:21:9e:f7:97:cb:38:c7:
78:c7:2a:c2:c1:ab:b0:bd:d2:a8:53:d5:17:c8:5c:89:0a:f2:
bf:a0:a3:d9:50:ad:c6:80:2f:89:1c:e3:a3:8c:1b:b3:0d:6f:
dd:7d:13:90:df:f2:64:07:6c:b5:e2:c7:2a:0d:f7:0d:f2:3c:
58:d2:b1:d4:84:da:2f:94:ec:9a:17:77:c4:84:a8:a3:aa:30:
e5:db:d7:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-ams.rpki-client.org