Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/dRChyNBm1TKIkyj4L2wrUjufhMY.roa
File: dRChyNBm1TKIkyj4L2wrUjufhMY.roa (raw, json)
Hash identifier: kQYJ+4ZGG8+DfFRoITJNHrDRXc8pl6l8znx7ao44rJA=
Subject key identifier: 75:10:A1:C8:D0:66:D5:32:88:93:28:F8:2F:6C:2B:52:3B:9F:84:C6
Certificate issuer: /CN=f97fdecadb3261334387cf091d02e0713b781d31
Certificate serial: 088A00C0
Authority key identifier: F9:7F:DE:CA:DB:32:61:33:43:87:CF:09:1D:02:E0:71:3B:78:1D:31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-X_eytsyYTNDh88JHQLgcTt4HTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/dRChyNBm1TKIkyj4L2wrUjufhMY.roa
Signing time: Sat 01 Jan 2022 15:58:08 +0000
ROA not before: Sat 01 Jan 2022 15:58:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212700
IP address blocks: 45.13.146.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143261888 (0x88a00c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f97fdecadb3261334387cf091d02e0713b781d31
Validity
Not Before: Jan 1 15:58:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7510a1c8d066d532889328f82f6c2b523b9f84c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:99:be:44:53:a6:63:0c:6b:37:46:e4:0e:77:
2a:fb:da:0d:e5:1c:66:38:a2:6f:c0:e5:8b:37:6a:
de:13:04:ad:8f:04:bb:48:72:5d:51:d9:ba:6f:30:
d5:46:95:f8:2d:d1:d4:d0:9a:87:7b:1d:8a:4c:99:
bf:e0:3f:06:dd:32:54:b0:70:55:38:5a:d1:73:20:
61:52:10:97:88:f5:0a:0e:03:22:bb:05:81:d9:81:
79:56:6f:c6:e2:73:2e:ad:d7:f8:53:a2:be:00:d7:
ab:e1:73:b7:89:08:49:09:fa:5b:53:1c:45:b4:8f:
31:bc:ba:6b:74:9e:23:ab:b9:91:05:8f:05:96:3d:
c3:5f:50:6d:a7:d5:48:b8:a9:79:85:08:cd:80:44:
1b:b6:d4:33:9a:95:00:d3:cc:4d:d4:ed:41:5b:23:
f4:a0:64:85:cb:72:ad:fc:f3:f1:7b:ae:e0:71:fd:
02:c2:39:44:d9:c1:cd:df:b1:ca:a1:82:d8:e5:e5:
fc:ef:12:20:8e:48:d9:55:ab:b6:9d:70:13:a5:4f:
df:c6:12:ab:67:37:2d:7b:40:29:a8:b5:61:5e:57:
a4:a1:cd:9d:dd:22:a3:22:27:e7:ae:77:ca:78:6b:
aa:81:f1:dd:d4:0f:88:e8:0e:c4:ad:92:b3:01:0f:
7a:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:10:A1:C8:D0:66:D5:32:88:93:28:F8:2F:6C:2B:52:3B:9F:84:C6
X509v3 Authority Key Identifier:
keyid:F9:7F:DE:CA:DB:32:61:33:43:87:CF:09:1D:02:E0:71:3B:78:1D:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-X_eytsyYTNDh88JHQLgcTt4HTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/dRChyNBm1TKIkyj4L2wrUjufhMY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/a8a364-7430-4da6-8f43-eb7bf2bddd08/1/1-X_eytsyYTNDh88JHQLgcTt4HTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.146.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:c7:90:1f:4e:d4:83:5a:df:f9:55:7d:f4:44:cf:64:8d:b2:
4e:5b:07:1c:c5:5e:8c:73:4e:29:e0:5e:70:e8:32:d8:99:c9:
94:27:01:6d:ef:58:5e:d4:b3:6a:b8:ca:90:8e:23:a5:48:dc:
c4:4f:56:45:f4:7c:bc:ed:3b:ca:3d:ba:3b:4c:5c:cc:9b:82:
c1:80:ee:43:7b:34:ef:ad:29:92:6a:a0:12:76:97:b5:8f:dd:
f1:e0:bc:20:69:20:76:34:b8:6f:f0:34:d2:6e:38:b2:fa:db:
e9:1d:95:f6:51:63:46:5f:99:d6:31:d5:fc:8b:d9:77:1d:f9:
0f:b3:9b:7d:a2:72:65:13:f6:cd:2f:65:8c:56:59:3d:db:f8:
e6:62:36:e7:ef:ad:61:e1:6b:9c:0c:b6:eb:ba:9f:bc:5f:be:
72:f6:7f:c6:0d:45:59:2e:55:8b:43:24:7d:da:0f:86:52:e3:
8b:7a:30:c1:9c:87:95:17:3e:53:4a:60:fc:d8:ba:ff:7b:1e:
22:e3:97:a9:b8:ac:cb:2f:76:e7:3d:3e:30:43:12:2e:0e:b1:
62:8d:9f:05:0c:72:dd:ba:f8:48:bc:be:09:58:cd:a9:70:50:
bb:f2:5c:68:e7:af:f1:b4:b4:fe:a0:53:67:60:42:50:3d:f1:
35:7a:73:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:25:08 2024 by rpki-client on console-ams.rpki-client.org