Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/vn88hDpYIf33l7mqV5Fg6mpeQus.roa
File: vn88hDpYIf33l7mqV5Fg6mpeQus.roa (raw, json)
Hash identifier: bTy+77u+KIJl1vUnpzvjfeUoI4US0dmRqKGxdz7kYOY=
Subject key identifier: BE:7F:3C:84:3A:58:21:FD:F7:97:B9:AA:57:91:60:EA:6A:5E:42:EB
Certificate issuer: /CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Certificate serial: 087593AB
Authority key identifier: F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/vn88hDpYIf33l7mqV5Fg6mpeQus.roa
Signing time: Sat 28 May 2022 01:05:38 +0000
ROA not before: Sat 28 May 2022 01:05:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 174
IP address blocks: 45.157.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141923243 (0x87593ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f7cb14a41f8d9e628dae88f4752822fc77dfec02
Validity
Not Before: May 28 01:05:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=be7f3c843a5821fdf797b9aa579160ea6a5e42eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:b8:4d:44:af:48:ed:70:01:14:74:7f:ce:4a:
28:bc:cc:cd:06:ca:79:83:2f:c9:6f:b2:5e:1d:89:
76:af:45:a8:10:f2:0b:42:f5:c6:44:3c:2a:12:cb:
6a:0d:21:20:56:a2:d0:f5:b7:71:d8:79:b1:af:64:
5a:36:96:1b:83:d3:59:46:a8:b2:be:a2:fc:9a:a6:
0f:7e:e7:16:4f:23:ae:65:df:9b:2c:04:18:aa:4a:
16:ca:8f:f1:3e:ed:5e:fc:46:90:b3:60:d1:89:bc:
22:08:21:02:79:e7:5e:f8:7d:3f:43:19:9d:1c:91:
c4:f3:87:95:c8:fb:03:6d:31:54:7e:8d:1d:f2:b3:
3f:03:09:45:9d:7f:dc:8d:91:1a:98:b4:77:bc:b9:
7a:b0:0a:75:3d:a8:aa:ec:93:b0:0b:4a:f4:9c:0a:
f2:65:3f:05:39:fb:47:cb:2e:17:07:82:e9:30:66:
6b:cd:93:6c:d1:cd:1d:53:7e:65:09:6b:ee:de:0d:
7f:ea:3b:76:69:bc:6a:76:7e:ca:d0:d8:4c:47:91:
d7:b9:84:69:79:04:41:49:53:40:16:0f:62:f5:03:
af:86:8c:20:b8:9f:7b:18:5b:3b:7f:9e:b9:c6:5b:
04:e0:0a:de:72:f6:1c:09:ff:94:e1:80:b0:33:ec:
b4:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:7F:3C:84:3A:58:21:FD:F7:97:B9:AA:57:91:60:EA:6A:5E:42:EB
X509v3 Authority Key Identifier:
keyid:F7:CB:14:A4:1F:8D:9E:62:8D:AE:88:F4:75:28:22:FC:77:DF:EC:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/98sUpB-NnmKNroj0dSgi_Hff7AI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/vn88hDpYIf33l7mqV5Fg6mpeQus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/890311-48ee-486d-9359-e7ee4e75d3af/1/98sUpB-NnmKNroj0dSgi_Hff7AI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.132.0/22
Signature Algorithm: sha256WithRSAEncryption
96:47:11:48:0a:0a:80:90:ad:3f:5c:90:1e:09:64:d5:61:ab:
81:b1:8d:c4:62:17:3d:ba:8b:d4:f1:54:b6:9e:50:c7:4c:a7:
99:f5:6c:e8:c8:14:74:7c:30:c1:a2:65:c5:26:a9:2d:83:22:
cd:c1:60:ec:52:d6:b0:0f:40:30:7d:89:89:b9:4e:ab:c8:46:
61:73:89:e0:68:ce:20:12:8c:76:66:26:52:1f:bc:5d:98:0b:
22:28:50:4a:38:44:1c:50:ef:1a:8f:50:8c:50:a2:cf:8d:31:
2b:70:8d:f4:4c:c9:95:cb:a4:89:85:5f:42:f2:79:02:85:e6:
42:f0:ad:d9:32:68:41:9e:9b:84:07:6e:d8:e7:57:04:a7:47:
46:a7:2e:b0:81:93:2c:4b:89:51:ad:6c:68:ec:f3:a0:b7:b1:
61:6c:64:a3:be:6f:81:75:c6:32:de:58:3b:38:9a:1c:f6:f1:
1d:1b:e5:b0:ea:bd:74:ee:70:e0:da:13:ae:56:45:b2:0c:3d:
7a:6a:d4:30:4d:c3:cd:dd:e8:ea:1f:16:24:cb:b6:07:52:1f:
38:bb:19:fa:8a:ef:ec:b0:99:41:e6:cc:03:40:be:25:71:fd:
74:d5:a3:db:fa:39:d9:2f:00:22:17:eb:4d:82:a4:32:ec:0b:
fd:40:73:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:01 2023 by rpki-client on console-fra.rpki-client.org