Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/8M2pP7zTGT5VMy-nv5XY_j7T3uM.roa
File: 8M2pP7zTGT5VMy-nv5XY_j7T3uM.roa (raw, json)
Hash identifier: Px7cR5oatE6CdYKirKOi+PVTyxKcjT8W5fVyqNAVE3g=
Subject key identifier: F0:CD:A9:3F:BC:D3:19:3E:55:33:2F:A7:BF:95:D8:FE:3E:D3:DE:E3
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 08770EFA
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/8M2pP7zTGT5VMy-nv5XY_j7T3uM.roa
Signing time: Sat 28 May 2022 01:07:13 +0000
ROA not before: Sat 28 May 2022 01:07:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34427
IP address blocks: 45.157.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142020346 (0x8770efa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: May 28 01:07:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0cda93fbcd3193e55332fa7bf95d8fe3ed3dee3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:e3:f3:f9:f0:8b:66:b2:06:17:ae:37:b0:63:
e5:4e:91:84:3e:7c:56:16:76:1a:39:49:1c:5f:ec:
31:90:3e:62:0c:aa:55:dd:24:53:71:e5:49:6b:29:
90:0b:94:77:a8:7f:0d:02:86:d0:c1:94:55:a8:df:
6c:da:88:9f:d1:d5:e4:92:1d:13:68:62:1f:7a:2a:
60:f9:10:d7:97:4b:b0:c3:fe:b7:f5:55:98:66:a5:
8e:4b:7f:9b:5c:39:e0:b2:40:aa:d2:e1:4f:f7:fa:
e4:c9:9b:34:e5:00:f7:9f:fe:09:8f:ec:ab:e3:3c:
de:ba:0a:00:7f:3e:a6:37:fb:fd:4f:a7:44:36:e8:
f5:04:80:fe:dc:da:42:54:93:f7:ff:5e:1b:2a:55:
66:09:26:2f:b6:50:c9:6d:dc:52:dc:f0:55:08:a9:
16:b4:71:a4:41:9e:f2:10:e6:8b:cc:fa:c6:51:78:
3d:69:07:70:91:a9:8f:02:14:93:36:dc:0e:64:74:
7a:e1:cc:06:7e:35:50:6e:d5:d3:bf:04:8d:02:6e:
83:5b:02:87:6c:63:7b:8c:d3:11:07:81:fa:3b:31:
93:32:7f:8c:a6:39:1f:2a:d2:a3:28:ff:dd:57:bf:
98:a6:f0:8c:49:cd:bf:5f:aa:ed:97:ca:fe:3e:fe:
28:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:CD:A9:3F:BC:D3:19:3E:55:33:2F:A7:BF:95:D8:FE:3E:D3:DE:E3
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/8M2pP7zTGT5VMy-nv5XY_j7T3uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
Signature Algorithm: sha256WithRSAEncryption
51:5e:c8:2d:61:3b:70:ec:b3:c5:44:ec:20:06:de:0a:c4:fe:
e6:df:4d:04:ce:35:b9:c0:34:2c:d4:29:14:6f:de:5a:45:48:
2f:94:77:bb:eb:1f:6b:bc:cf:91:44:4c:71:a4:99:16:4e:89:
53:34:6a:76:c0:d7:8d:4a:62:c4:14:12:d0:27:76:54:79:bf:
3b:a1:57:55:a4:21:8a:ec:18:5a:9f:59:f1:26:b6:a0:ae:3c:
b5:96:fd:40:7c:a1:14:5b:22:4e:c6:2e:e1:0d:fb:f0:3f:3f:
e9:ac:bc:46:9c:ab:2c:5d:77:2b:ca:05:bd:f4:c2:40:af:3f:
4e:11:95:21:05:5c:fc:f4:e8:87:50:6b:12:6f:c0:1f:d2:55:
d6:05:e1:56:4d:e9:c7:ed:00:34:a0:4b:1a:8a:20:84:20:f1:
7f:ed:31:2e:cf:0d:e4:ea:1f:7a:ee:aa:8f:9a:8c:20:87:2b:
d5:e6:3e:e0:b7:f0:d0:ed:e0:45:68:7f:07:d2:d3:e7:2c:ce:
b1:67:94:4b:60:9f:82:d7:87:e6:d5:ca:b0:e0:84:77:be:6f:
3c:0e:2c:f8:e8:5a:ca:79:3a:2e:bf:0a:2a:79:b6:e2:c3:95:
bb:63:c1:c9:8d:e8:6f:cc:4f:04:f6:42:e0:b9:f9:7b:82:df:
c5:ca:fc:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:38 2023 by rpki-client on console-ams.rpki-client.org