Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/81qG1Sc7buWb3imi-xq17hO1Lkg.roa
File: 81qG1Sc7buWb3imi-xq17hO1Lkg.roa (raw, json)
Hash identifier: xgu13vCtFTOqFELJugz7nuDOX9n/55NA74Eyj/XMTZg=
Subject key identifier: F3:5A:86:D5:27:3B:6E:E5:9B:DE:29:A2:FB:1A:B5:EE:13:B5:2E:48
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 072CBA6D
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/81qG1Sc7buWb3imi-xq17hO1Lkg.roa
Signing time: Sat 01 Jan 2022 14:01:18 +0000
ROA not before: Sat 01 Jan 2022 14:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208064
IP address blocks: 45.157.132.0/22 maxlen: 32
2a0f:4280::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120371821 (0x72cba6d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: Jan 1 14:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f35a86d5273b6ee59bde29a2fb1ab5ee13b52e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:c4:a4:10:35:8c:d4:1f:02:ca:81:cd:5b:bf:
d8:b4:6a:99:15:f6:81:d0:96:35:dc:22:bb:f9:0f:
a1:fb:2b:9b:c9:c2:02:24:1b:1b:bd:69:db:d0:18:
43:63:79:fd:77:b8:68:97:47:6d:e6:f8:77:44:2c:
3e:7a:4c:d6:1d:14:c5:73:8b:c7:53:7a:fc:70:4a:
e9:d9:8c:1f:65:a4:d4:25:34:cd:17:0b:72:49:df:
47:1a:56:7c:ad:00:33:bc:43:4a:e8:f4:36:ef:78:
bf:f1:87:c7:80:5c:e7:88:f8:d5:c0:2d:a0:c6:c4:
37:74:f0:20:4d:8e:fb:4a:08:f5:64:ba:4b:13:2f:
81:d1:32:b3:a7:f5:f5:b2:1d:bc:e2:9f:46:84:95:
e7:7c:5d:bd:1a:c0:42:53:74:81:4d:b3:f1:b5:30:
b6:67:88:13:d2:f3:e6:05:e8:83:f7:d0:f8:78:46:
95:e4:2c:11:68:fa:cb:d5:6b:93:23:1e:fe:32:b9:
bb:36:4b:6c:07:9e:95:01:92:00:08:a2:8a:3c:58:
37:e0:13:d5:8e:00:01:22:b1:07:b7:ba:49:a5:30:
ee:84:a8:32:54:59:d0:4b:59:8b:d2:21:61:fc:ac:
37:a8:15:72:6a:df:71:b7:10:c2:6b:9f:48:56:ac:
12:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:5A:86:D5:27:3B:6E:E5:9B:DE:29:A2:FB:1A:B5:EE:13:B5:2E:48
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/81qG1Sc7buWb3imi-xq17hO1Lkg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
IPv6:
2a0f:4280::/29
Signature Algorithm: sha256WithRSAEncryption
70:8d:00:af:1f:87:c9:1d:bc:8f:d8:7a:db:5c:98:b4:df:fd:
9a:5c:0b:4e:7d:64:c5:35:90:de:89:51:d7:8e:e7:a5:42:e6:
05:d4:09:c6:5d:52:fc:5b:1b:cd:b6:c5:74:d4:6d:13:bf:00:
96:0c:49:90:eb:f7:20:c4:8e:95:9c:aa:60:64:a3:cd:dc:c1:
94:da:ac:7a:d5:29:e9:50:bb:62:94:bc:b1:76:c3:db:c9:ee:
94:cb:db:d0:fc:5c:68:89:b6:20:28:20:89:c5:96:82:cf:cb:
dd:3a:58:13:01:52:40:ca:42:2f:6e:df:cb:b6:4c:3b:48:d4:
86:8f:3d:7b:33:b9:c5:0c:f3:0e:e8:63:06:f4:c5:00:15:e6:
88:2a:52:17:ce:2a:61:a1:ef:3b:ba:b1:0c:9d:5e:b4:bf:50:
8e:aa:0e:42:a1:21:3d:9c:5b:3e:ba:7a:a6:1a:db:1d:2b:c7:
78:43:6d:cf:3f:41:2d:f1:14:f9:14:ca:91:ad:d3:8a:cc:d0:
5e:ed:99:e8:c7:99:19:e0:f9:1e:a0:9d:ea:d3:b2:3f:38:34:
98:7c:b7:43:d1:d0:36:61:04:5a:b3:aa:54:e9:42:6b:b1:59:
b8:57:5e:c1:ea:0c:60:9a:85:5d:48:d2:d2:01:89:85:7c:ec:
9d:57:66:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org