Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/DlxA2f8f50aB0ztk_M44T7fKLhw.roa
File: DlxA2f8f50aB0ztk_M44T7fKLhw.roa (raw, json)
Hash identifier: YLPZsvXXe7yMjFqJ4X07Jmq2o4qtuRFvgqTXqHu7YG0=
Subject key identifier: 0E:5C:40:D9:FF:1F:E7:46:81:D3:3B:64:FC:CE:38:4F:B7:CA:2E:1C
Certificate issuer: /CN=827603a93bca31b018f511f6d4b0b7546e963362
Certificate serial: 0182587C15B0EFC9CBF7B9725B929C1352E8
Authority key identifier: 82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/DlxA2f8f50aB0ztk_M44T7fKLhw.roa
Signing time: Mon 01 Aug 2022 08:18:23 +0000
ROA not before: Mon 01 Aug 2022 08:18:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212609
IP address blocks: 45.147.152.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:58:7c:15:b0:ef:c9:cb:f7:b9:72:5b:92:9c:13:52:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827603a93bca31b018f511f6d4b0b7546e963362
Validity
Not Before: Aug 1 08:18:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0e5c40d9ff1fe74681d33b64fcce384fb7ca2e1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:94:3c:a3:13:cd:91:c4:ea:b4:70:cc:4c:f4:
0f:d3:4e:50:e5:08:b1:90:de:58:35:ff:5c:fb:25:
15:84:83:65:5f:f5:05:73:bc:08:f1:6e:9d:05:5a:
ff:6e:5e:57:85:19:9d:8d:ee:f5:5c:bd:08:37:b7:
a5:9b:5e:c6:f4:5c:64:a0:e6:7c:71:e2:2a:d1:dc:
60:da:bb:26:7c:dc:13:d5:9f:c9:16:fc:5a:87:24:
e5:b4:90:e0:fb:1f:7c:4e:4a:e7:80:64:ec:b2:b0:
c3:28:ff:ee:85:ab:3c:a1:92:9e:04:2a:14:d5:ea:
63:e0:20:e5:63:d1:8d:6e:f8:a6:e0:1c:21:92:be:
ca:47:35:55:1f:ca:4c:8a:30:ca:4e:7e:62:81:ac:
80:85:7e:25:80:bc:c5:30:fc:d5:5e:bc:1d:cc:7b:
fb:d6:bc:a4:11:bd:1e:e2:20:28:aa:45:c0:a7:01:
7f:a3:01:95:0e:ad:83:7f:65:20:52:05:51:ba:f1:
3f:5c:ad:bb:ff:62:82:0a:97:be:39:1c:ea:5c:ec:
8d:c5:89:91:72:61:32:1e:02:9a:97:ab:33:0e:98:
d3:f2:b3:20:1a:b7:dc:5d:c8:1b:02:48:11:30:a7:
0e:2a:50:6c:a1:5d:4e:97:c6:f9:4a:9b:f6:0e:0b:
b8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:5C:40:D9:FF:1F:E7:46:81:D3:3B:64:FC:CE:38:4F:B7:CA:2E:1C
X509v3 Authority Key Identifier:
keyid:82:76:03:A9:3B:CA:31:B0:18:F5:11:F6:D4:B0:B7:54:6E:96:33:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnYDqTvKMbAY9RH21LC3VG6WM2I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/DlxA2f8f50aB0ztk_M44T7fKLhw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/91af66-d394-42fa-a0c6-b16cb4dfadd3/1/gnYDqTvKMbAY9RH21LC3VG6WM2I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.147.152.0/22
Signature Algorithm: sha256WithRSAEncryption
41:77:fe:25:22:95:3f:80:3d:55:65:a1:bd:d9:95:4f:7b:f1:
a3:6f:2d:b7:41:14:ad:e3:70:b7:61:cc:89:e9:1e:21:34:21:
2c:d4:1e:61:c1:da:5c:31:4e:2e:de:fd:fc:a9:f5:ca:12:12:
80:af:54:e0:fc:ec:46:11:3a:11:51:f9:da:84:09:07:fc:17:
51:81:cc:49:35:85:4b:08:95:ab:8d:ab:b2:f0:03:a8:0f:ae:
23:44:c0:dd:da:44:5a:27:65:52:09:45:03:30:56:b9:0e:c2:
70:21:65:18:ba:28:c3:a1:d6:6a:c7:98:5f:b9:d5:16:1a:aa:
da:9a:a6:46:ae:b9:00:cb:d0:2a:88:24:51:26:a2:a9:2e:ba:
af:8b:ff:20:7a:f9:fb:72:b9:c5:19:5a:65:4b:ec:f2:29:0d:
78:a0:5b:a7:49:b0:82:ba:5d:1d:1a:11:09:d0:53:f8:17:f7:
3f:63:86:5a:c5:2b:b7:ce:36:0a:d0:3a:b2:85:69:c0:ea:81:
84:d7:72:26:94:9f:a8:98:18:15:b4:ae:30:b5:f0:38:c2:75:
14:79:4d:a5:8f:09:1e:1b:e3:93:5f:b7:d7:25:3a:cf:3d:80:
a1:de:dc:2e:8b:0c:07:40:6e:c9:2a:e8:98:61:55:07:e5:d4:
c6:f1:9e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:44 2023 by rpki-client on console-ams.rpki-client.org