Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/1-SrcBOgH3ESIGIuP9_mjKcWZ110.roa
File: 1-SrcBOgH3ESIGIuP9_mjKcWZ110.roa (raw, json)
Hash identifier: PXQivNWRuOpfOnvSoAuJLMw7heTYzZffjUhv52tP1Ss=
Subject key identifier: F9:2A:DC:04:E8:07:DC:44:88:18:8B:8F:F7:F9:A3:29:C5:99:D7:5D
Certificate issuer: /CN=dc94bb69453f139a60029e22db0fb3424a906cee
Certificate serial: 05019D3A
Authority key identifier: DC:94:BB:69:45:3F:13:9A:60:02:9E:22:DB:0F:B3:42:4A:90:6C:EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3JS7aUU_E5pgAp4i2w-zQkqQbO4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/1-SrcBOgH3ESIGIuP9_mjKcWZ110.roa
Signing time: Wed 25 May 2022 12:58:13 +0000
ROA not before: Wed 25 May 2022 12:58:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43967
IP address blocks: 45.159.100.0/22 maxlen: 24
195.158.196.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 83991866 (0x5019d3a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dc94bb69453f139a60029e22db0fb3424a906cee
Validity
Not Before: May 25 12:58:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f92adc04e807dc4488188b8ff7f9a329c599d75d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:8e:44:a3:3e:a6:b4:78:b2:aa:82:20:24:52:
53:16:39:e3:e5:4f:1b:b6:bf:82:ef:cc:6f:04:01:
c3:b1:07:39:e7:f6:3c:76:7e:c6:2b:b1:64:fe:0d:
29:bb:1c:dc:b2:c7:92:76:f0:5e:58:54:5e:48:be:
b4:26:34:c8:a6:c7:d7:91:f9:bf:8f:4a:12:be:7b:
c4:fe:e7:50:6d:76:0d:74:9f:95:81:dd:d8:16:70:
46:6b:3f:c1:74:06:60:55:3b:71:99:22:01:98:5b:
9d:cb:17:24:d6:6f:7a:9f:3f:03:67:59:84:2f:db:
ca:00:85:36:b5:d3:7d:71:33:fe:11:a3:0b:41:99:
89:05:b6:71:18:61:ed:a5:98:9d:10:06:dc:44:de:
25:9a:a4:8a:d5:a2:71:6c:95:5d:9e:0d:10:82:5a:
9b:3e:dc:ed:6c:51:45:15:9b:cc:6b:d2:65:ac:43:
4e:8e:72:bb:7f:d5:a4:8d:42:21:58:a3:cf:df:cc:
be:50:28:9d:f8:e3:1c:21:cc:5b:6d:98:f4:a7:d6:
f9:6f:51:fb:29:41:2d:26:13:8a:e9:55:a9:99:2f:
da:24:04:46:74:c5:49:9d:2f:c7:ce:c6:40:04:d6:
05:84:15:48:75:8a:4d:7b:fa:a6:53:b6:aa:9e:7d:
35:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:2A:DC:04:E8:07:DC:44:88:18:8B:8F:F7:F9:A3:29:C5:99:D7:5D
X509v3 Authority Key Identifier:
keyid:DC:94:BB:69:45:3F:13:9A:60:02:9E:22:DB:0F:B3:42:4A:90:6C:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3JS7aUU_E5pgAp4i2w-zQkqQbO4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/1-SrcBOgH3ESIGIuP9_mjKcWZ110.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/d045ca-c1f7-4ed9-afdb-090c46e9f2ed/1/3JS7aUU_E5pgAp4i2w-zQkqQbO4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.100.0/22
195.158.196.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:b8:a7:98:98:9f:53:5f:99:d4:ca:2b:41:2f:c8:16:ce:d4:
30:40:4b:82:a3:0f:a0:24:60:b6:ec:5b:df:ba:aa:95:2b:c0:
82:57:1d:23:ad:0f:69:20:ac:bd:78:2d:6e:34:24:52:8e:bd:
ec:e5:4b:ce:f2:24:25:d5:1d:28:a9:c4:5e:a1:3e:9f:3f:87:
9d:cc:fd:80:c7:b0:60:9a:e8:6e:d2:ba:3a:fe:15:8a:a5:95:
76:b8:73:1e:b1:fb:42:2f:bf:da:a4:13:ee:07:d1:06:91:7c:
78:bc:a6:6c:a4:61:38:d1:fe:46:6c:23:73:5d:c2:2d:8d:12:
02:a0:3f:59:80:65:a0:e9:88:9e:18:3c:52:93:ef:b7:8c:02:
a3:83:79:86:79:cf:3a:28:2b:93:14:33:d9:ea:73:27:e1:86:
91:97:a4:76:cc:a6:8b:24:09:86:26:73:db:e0:c4:76:43:0d:
d0:57:3f:68:db:1d:03:1d:3f:e6:e5:0c:c8:27:a3:7a:51:82:
e7:8c:af:67:26:10:60:e0:05:76:61:b2:dd:41:7e:ee:42:00:
9a:b4:47:16:56:43:f8:6e:dd:74:2c:16:11:24:21:ac:6e:c4:
ae:2f:c7:94:3f:ee:45:ca:66:b8:2f:eb:eb:8a:17:18:0b:a9:
b4:d7:06:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:30 2023 by rpki-client on console-fra.rpki-client.org