Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/Si63smIvLeowV4DAYNewQHJd6SE.roa
File: Si63smIvLeowV4DAYNewQHJd6SE.roa (raw, json)
Hash identifier: YmO867LCe7oFOIanJVxnm5K6mbEpZnmBa5sg64mW4QE=
Subject key identifier: 4A:2E:B7:B2:62:2F:2D:EA:30:57:80:C0:60:D7:B0:40:72:5D:E9:21
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 019B802B
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/Si63smIvLeowV4DAYNewQHJd6SE.roa
Signing time: Sat 01 Jan 2022 13:06:23 +0000
ROA not before: Sat 01 Jan 2022 13:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.145.232.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26968107 (0x19b802b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: Jan 1 13:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a2eb7b2622f2dea305780c060d7b040725de921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c5:c0:c3:d4:ad:aa:6e:61:d9:01:52:81:5f:
93:09:1f:8d:8a:87:eb:4b:7b:28:aa:b4:b0:a1:ab:
61:83:dc:95:95:aa:66:c2:d0:ad:c0:d5:76:8a:fa:
46:a8:e0:8f:af:c5:44:45:e7:78:18:c1:79:47:76:
ff:35:8b:9f:b4:f5:c8:7c:47:2d:6f:f3:a3:5d:7a:
90:09:ce:16:e4:87:53:cb:bf:ba:95:7f:d5:35:8b:
18:97:95:88:1a:30:56:b4:7f:1a:0c:ec:97:30:af:
5c:33:c5:bf:e1:ac:97:05:18:2d:2b:13:06:9f:30:
d0:43:fb:62:83:28:93:0e:4e:bb:01:da:40:ed:13:
78:a3:fc:65:16:0e:84:77:bb:cb:5f:f6:1b:4f:75:
80:8c:d1:4c:85:83:9f:b2:84:40:e5:1d:3c:83:d7:
9b:c5:da:50:d7:27:c8:a1:9e:50:07:d0:26:e9:42:
ae:75:b5:21:73:8c:dc:96:11:74:4b:25:48:e2:29:
d6:e0:d0:42:ae:22:5e:cd:6b:c6:e6:30:4b:53:7b:
8e:3f:59:8d:ae:6c:ab:a3:5a:9a:73:6b:7c:98:4a:
44:91:de:d1:7a:6a:cc:0b:07:5d:6a:73:68:28:2c:
e4:72:c6:13:85:6f:15:a3:fc:a6:e8:00:fb:ca:ed:
a8:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:2E:B7:B2:62:2F:2D:EA:30:57:80:C0:60:D7:B0:40:72:5D:E9:21
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/Si63smIvLeowV4DAYNewQHJd6SE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.232.0/22
Signature Algorithm: sha256WithRSAEncryption
11:80:a5:a6:86:bf:6c:50:b3:bc:34:e4:8c:87:1f:13:b6:cf:
3d:22:77:20:40:e3:a2:d3:7c:c2:01:73:b9:4c:d1:d4:02:76:
9d:ce:dd:f6:28:7a:cf:a0:dd:00:34:db:cf:fa:98:0f:ed:c6:
25:51:3a:00:9b:f1:84:77:1b:30:91:a1:7f:b4:47:46:a9:ba:
3f:3c:ea:98:bc:03:66:67:00:19:c1:f7:b0:8c:31:bf:d3:d7:
e4:aa:cf:e4:84:8e:43:3c:11:90:20:bf:d9:73:d1:a1:7d:1a:
04:a7:bd:d5:4e:71:6e:bd:21:4e:de:57:d7:a7:96:bf:2b:2e:
22:e8:8d:68:af:c5:b4:ab:8d:5c:19:40:77:c6:b1:87:83:2e:
df:89:d1:46:44:17:dd:2b:4a:70:2a:6d:eb:d5:0c:40:7f:d6:
46:00:ed:cb:59:82:26:f6:3f:17:2e:74:cf:3e:e9:89:1c:34:
69:10:0f:30:4f:c7:14:4d:c7:37:2a:c1:e0:bb:7c:8e:36:89:
0e:37:de:ec:9c:97:ea:35:78:0c:1e:63:ee:27:8f:da:a3:ad:
37:41:06:56:18:fc:ea:10:79:9b:d2:c0:a2:93:17:b3:d3:1f:
c2:ec:fc:31:e5:9c:8e:c9:d6:b3:b7:96:9d:68:04:d1:eb:32:
80:c9:ac:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-ams.rpki-client.org