Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/KA7btXjb2AZgVD52Lfs0dffkt3Q.roa
File: KA7btXjb2AZgVD52Lfs0dffkt3Q.roa (raw, json)
Hash identifier: M9jI6s1/Wc3AtcBRJEys0AtnTUiRt4DIP1h3Jey0NBo=
Subject key identifier: 28:0E:DB:B5:78:DB:D8:06:60:54:3E:76:2D:FB:34:75:F7:E4:B7:74
Certificate issuer: /CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Certificate serial: 01850FB4EC9F075648D20A4D4504D96309C7
Authority key identifier: 0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/KA7btXjb2AZgVD52Lfs0dffkt3Q.roa
Signing time: Wed 14 Dec 2022 08:16:33 +0000
ROA not before: Wed 14 Dec 2022 08:16:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.130.46.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0f:b4:ec:9f:07:56:48:d2:0a:4d:45:04:d9:63:09:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e831fd70c6bd37a2a75d7a0eac031c92da8e185
Validity
Not Before: Dec 14 08:16:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=280edbb578dbd80660543e762dfb3475f7e4b774
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f6:f6:07:50:59:db:12:96:e2:d2:0d:5e:4d:
b6:bc:d7:aa:cc:50:ef:22:25:80:7b:c7:7d:5f:e9:
f0:51:02:fb:ce:3b:83:6d:0c:cd:21:2e:79:56:d0:
8d:e5:c1:d6:c9:17:8d:b9:8a:37:49:0d:18:99:93:
01:71:5a:33:50:b7:e7:82:9c:5c:f7:e7:72:e3:2f:
2e:47:b9:1a:b4:9e:c9:f6:0c:9b:68:67:c7:ad:e1:
71:69:f8:cc:ff:54:70:7e:bf:be:31:5f:58:0f:d1:
cd:34:a8:25:fb:3b:bf:a1:82:95:a0:47:4b:fe:9d:
a3:32:82:c0:bc:a8:9a:40:97:fa:37:47:51:0d:a7:
38:8c:07:76:9c:fe:74:73:de:ea:49:29:e4:64:c1:
86:4c:71:09:87:fb:17:42:b7:68:4e:34:34:b5:65:
78:0f:a4:4d:f0:c3:9f:5f:6f:4b:b6:2d:7e:ea:a6:
de:92:0a:77:db:a0:2b:f1:47:44:7a:c4:7a:09:0e:
1d:86:93:8b:f6:9b:25:b8:5b:3f:4d:18:a9:9c:0d:
18:0c:de:53:db:0e:b7:95:cc:f1:3f:f8:2f:7c:a7:
ae:51:69:30:94:f9:40:5c:31:be:ea:4b:4a:3a:d3:
64:2e:d7:ed:12:79:82:5c:d9:04:37:33:0a:a0:a4:
15:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:0E:DB:B5:78:DB:D8:06:60:54:3E:76:2D:FB:34:75:F7:E4:B7:74
X509v3 Authority Key Identifier:
keyid:0E:83:1F:D7:0C:6B:D3:7A:2A:75:D7:A0:EA:C0:31:C9:2D:A8:E1:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DoMf1wxr03oqddeg6sAxyS2o4YU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/KA7btXjb2AZgVD52Lfs0dffkt3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/98a661-44f5-4a05-acaa-e67582f23097/1/DoMf1wxr03oqddeg6sAxyS2o4YU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.46.0/23
Signature Algorithm: sha256WithRSAEncryption
59:16:72:e9:80:24:cd:bc:6b:93:aa:0e:9f:40:2a:fe:28:6e:
28:f6:8b:2d:bc:3e:2f:61:ab:19:4b:2f:c5:7b:93:a5:2a:2d:
f0:18:93:42:c2:82:29:03:3c:b7:ae:35:49:42:e7:f6:88:f6:
36:17:1a:ad:3a:d9:f0:30:6f:e4:b4:f4:99:b7:d8:5b:53:08:
ed:56:9f:35:ca:b7:5c:bb:6a:d9:4f:c9:22:0a:0e:58:76:79:
06:6c:69:9d:89:6d:c7:56:54:6e:98:6a:14:46:53:48:09:7d:
07:40:64:4f:94:58:d0:b8:23:65:c6:3c:b2:bf:ad:e3:49:15:
72:83:7f:bb:68:5d:bd:3b:c9:b7:f2:56:6d:d7:85:5a:86:2b:
31:ac:78:8a:03:dd:08:1a:02:c2:f0:ba:0b:f4:af:c1:b4:df:
c5:59:2e:8b:38:65:af:f5:04:43:9b:5c:85:2e:d2:1f:0a:ae:
89:fe:fc:28:d9:7b:c6:c0:5a:8d:79:47:43:da:64:e0:1f:d2:
c6:ad:59:64:ad:d6:ef:22:54:54:fb:c7:c3:68:ce:93:5f:77:
b3:d9:dc:00:0d:25:0c:1a:2f:ef:46:bc:8b:a5:98:77:45:37:
0e:b7:66:ff:88:78:4a:7b:1f:a0:75:c3:32:17:33:a5:a2:23:
84:c9:a4:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:41 2023 by rpki-client on console-fra.rpki-client.org