Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/42GrdhhhdpJi7WfV1E7udBCE3gk.roa
File: 42GrdhhhdpJi7WfV1E7udBCE3gk.roa (raw, json)
Hash identifier: pvtdNWh/xU6NM5kdhAGKnV95KRBvVG2S+7I6W+LoSR8=
Subject key identifier: E3:61:AB:76:18:61:76:92:62:ED:67:D5:D4:4E:EE:74:10:84:DE:09
Certificate issuer: /CN=bd6fa37a2483cf579fa86250119ac0133475aad8
Certificate serial: 8CACB9
Authority key identifier: BD:6F:A3:7A:24:83:CF:57:9F:A8:62:50:11:9A:C0:13:34:75:AA:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vW-jeiSDz1efqGJQEZrAEzR1qtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/42GrdhhhdpJi7WfV1E7udBCE3gk.roa
Signing time: Sat 01 Jan 2022 02:58:39 +0000
ROA not before: Sat 01 Jan 2022 02:58:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137443
IP address blocks: 45.138.80.0/22 maxlen: 24
45.86.140.0/22 maxlen: 24
45.133.228.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9219257 (0x8cacb9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd6fa37a2483cf579fa86250119ac0133475aad8
Validity
Not Before: Jan 1 02:58:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e361ab761861769262ed67d5d44eee741084de09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:82:c7:4a:4d:6a:5c:2a:b9:5f:85:56:2b:39:
52:7d:b4:cf:0c:ae:5b:d6:82:01:84:9c:3d:bc:68:
83:08:19:4f:64:24:df:76:2b:47:12:fa:9e:cc:39:
68:07:c1:80:dd:bc:c2:c6:8f:3c:58:c3:07:05:b4:
a4:5b:71:cb:b0:bf:ca:21:05:ea:4f:ab:df:99:ff:
8b:5e:b0:c5:20:56:25:77:f6:4c:66:6c:17:87:1e:
28:c2:c1:46:18:41:e5:db:0d:29:61:1e:bc:50:c3:
1c:71:09:97:b3:a2:32:ec:be:1d:2f:c0:ff:66:ff:
30:c0:95:f0:c7:4d:2e:0b:c8:bc:3a:a4:e3:4e:a2:
8f:57:62:21:1a:76:fa:8c:66:18:b4:07:73:6a:55:
e7:03:70:ff:50:24:e8:74:1b:cf:1d:6a:d9:8e:3b:
5a:75:0d:cd:1f:db:c8:8b:ee:3e:ad:09:0b:bf:bb:
15:ea:45:74:2b:91:48:75:0f:82:7c:0a:fa:47:a3:
15:3a:40:80:7a:7a:20:12:9d:e0:80:c9:24:96:a3:
e3:5f:97:1b:bd:d9:37:66:61:0b:9f:cc:10:0c:c4:
51:1c:ab:8a:aa:22:ed:f1:90:39:a0:b6:d8:2d:2d:
fb:9e:7c:df:d6:6b:44:99:e2:b5:bd:21:a1:41:76:
f5:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:61:AB:76:18:61:76:92:62:ED:67:D5:D4:4E:EE:74:10:84:DE:09
X509v3 Authority Key Identifier:
keyid:BD:6F:A3:7A:24:83:CF:57:9F:A8:62:50:11:9A:C0:13:34:75:AA:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vW-jeiSDz1efqGJQEZrAEzR1qtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/42GrdhhhdpJi7WfV1E7udBCE3gk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/e3ada2-c9df-44e2-8b0f-8ff1611e8bb4/1/vW-jeiSDz1efqGJQEZrAEzR1qtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.140.0/22
45.133.228.0/22
45.138.80.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:99:16:4a:e6:45:a5:78:8d:05:c2:1b:8d:17:40:ee:05:f8:
0f:30:9f:a8:c4:ff:47:a8:85:15:0b:86:79:bc:14:c2:36:42:
c6:7f:bf:63:93:a9:7b:90:0e:7e:b5:7f:d0:95:ff:ac:c4:6a:
16:84:54:53:be:b1:ad:54:94:7a:d2:bf:33:1d:d6:88:fd:e6:
9e:e4:3a:bf:ef:68:bd:19:4d:7d:13:30:78:05:3c:93:18:ac:
34:a3:67:91:f4:8b:88:fc:99:38:cb:99:94:bb:40:0c:e7:d2:
ec:a2:fb:75:52:3d:c3:3f:9b:4a:31:ad:b6:fb:29:ae:62:d8:
3e:cb:26:06:4a:02:67:0a:79:ee:b4:e5:25:c9:e7:67:8b:14:
2a:37:cb:22:b1:eb:f6:e4:c0:26:fe:fd:89:7a:63:b4:5f:7c:
24:01:7b:12:d1:7f:7d:f2:ef:ad:99:81:18:d2:96:c8:e7:e0:
84:9c:0c:d9:12:d7:b6:30:45:43:a7:b2:29:fc:8a:2e:1c:f8:
e0:f7:f4:a0:9d:01:35:ce:94:26:a8:73:2c:3d:1c:be:a0:ae:
c7:68:ef:15:68:94:36:bf:15:1f:9f:70:67:15:f9:5a:da:4f:
3a:eb:94:67:0f:8f:d7:d8:81:12:68:01:60:ce:c6:67:58:8d:
00:5e:ce:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:29 2023 by rpki-client on console-fra.rpki-client.org