Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/464660-7a6e-49a7-903d-5cbc636bd7e7/1/QkdlzgFEKt3nuyY9eVrFy4eja2M.roa
File: QkdlzgFEKt3nuyY9eVrFy4eja2M.roa (raw, json)
Hash identifier: bY8eWUzvAjPfmC0Z1S49RYlqmdMxhFizl0ulSKJjyhg=
Subject key identifier: 42:47:65:CE:01:44:2A:DD:E7:BB:26:3D:79:5A:C5:CB:87:A3:6B:63
Certificate issuer: /CN=a018d68115dc4b730f157906b04426e599b3a8ca
Certificate serial: 01825BC277B2765CF8479D445694C6EE6F97
Authority key identifier: A0:18:D6:81:15:DC:4B:73:0F:15:79:06:B0:44:26:E5:99:B3:A8:CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oBjWgRXcS3MPFXkGsEQm5ZmzqMo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/464660-7a6e-49a7-903d-5cbc636bd7e7/1/QkdlzgFEKt3nuyY9eVrFy4eja2M.roa
Signing time: Mon 01 Aug 2022 23:34:07 +0000
ROA not before: Mon 01 Aug 2022 23:34:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8749
IP address blocks: 45.140.92.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5b:c2:77:b2:76:5c:f8:47:9d:44:56:94:c6:ee:6f:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a018d68115dc4b730f157906b04426e599b3a8ca
Validity
Not Before: Aug 1 23:34:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=424765ce01442adde7bb263d795ac5cb87a36b63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:e8:6a:43:02:cd:5f:9c:99:cd:b2:36:ba:6b:
9f:14:37:54:b3:5d:9f:9e:90:e7:4a:ec:b7:5b:69:
23:15:9d:fb:ba:c9:38:0f:98:7f:8a:a9:07:83:9e:
13:24:6e:e4:7c:46:7e:8c:68:e2:fe:44:3d:b2:f4:
ac:ab:e0:6f:48:84:2e:0a:5f:16:d8:e2:ca:68:e1:
05:ae:07:34:51:6f:2c:84:35:94:0a:f8:9d:00:fe:
eb:1c:10:d1:58:29:c4:3b:b1:4e:96:85:75:ef:3b:
21:a9:b8:17:6d:a3:f6:60:24:27:6b:0f:db:cb:6a:
f6:dc:75:e4:05:f2:bb:a4:90:d1:a9:9a:de:e4:90:
60:ad:1f:d4:a5:3b:33:bd:03:8f:f5:db:02:0e:1a:
75:62:7a:fd:0c:5a:ba:4b:2e:1c:bb:18:16:61:cc:
0b:72:00:5d:27:0d:f9:8e:fe:3d:61:7d:c7:c7:2c:
7d:76:d6:2c:3a:b8:a0:a2:ff:7c:1f:ec:7a:c6:ef:
d9:94:39:18:eb:67:d5:b6:38:51:07:52:da:32:32:
99:f3:5b:ae:e8:ba:17:c7:5b:70:af:fd:8b:ab:b0:
5c:81:5e:34:62:01:74:ad:76:52:dd:46:a2:1a:15:
23:49:52:b6:c8:fb:48:5b:f1:af:ee:ce:ed:17:e4:
ab:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:47:65:CE:01:44:2A:DD:E7:BB:26:3D:79:5A:C5:CB:87:A3:6B:63
X509v3 Authority Key Identifier:
keyid:A0:18:D6:81:15:DC:4B:73:0F:15:79:06:B0:44:26:E5:99:B3:A8:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oBjWgRXcS3MPFXkGsEQm5ZmzqMo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/464660-7a6e-49a7-903d-5cbc636bd7e7/1/QkdlzgFEKt3nuyY9eVrFy4eja2M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/464660-7a6e-49a7-903d-5cbc636bd7e7/1/oBjWgRXcS3MPFXkGsEQm5ZmzqMo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.92.0/22
Signature Algorithm: sha256WithRSAEncryption
4d:fc:e7:ce:da:67:b0:cc:3e:c4:7f:82:92:da:27:85:c9:9b:
fb:59:89:3f:c2:15:07:80:ec:1e:7e:a1:03:f1:c7:79:c5:e3:
52:7c:41:da:6f:14:de:88:4a:51:b4:22:f4:64:10:54:24:56:
30:be:58:b7:c3:83:12:89:51:e8:3c:10:f8:ce:f8:b9:09:87:
7f:69:26:eb:96:33:04:0c:5a:3c:8d:23:38:c1:e9:51:a8:b4:
da:cc:39:fa:f0:fd:03:96:59:b2:43:21:54:7b:2e:91:cf:2c:
4a:3f:cc:09:df:c0:b7:ba:f3:7c:54:3b:dc:58:0b:79:24:e0:
d8:35:73:2b:71:d0:21:55:15:36:95:7d:80:cd:bb:ed:a8:31:
ba:07:fb:3a:ea:af:56:b3:6b:aa:ad:83:46:69:53:30:11:32:
6f:ea:f5:cd:82:eb:3b:16:3d:df:90:3c:a2:4a:29:20:40:f4:
d8:27:72:65:b7:38:97:ff:ed:40:c2:6c:3c:56:09:cd:2e:7f:
20:f4:59:4d:92:c9:e6:78:d9:b0:90:95:fe:2f:5d:96:3b:1c:
f3:f2:e4:2c:f5:ee:ac:6f:e5:30:03:5c:29:95:93:f2:8d:bd:
00:74:90:db:d5:af:ae:3e:62:e2:6e:94:1d:20:69:67:60:3d:
4d:40:55:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:44 2024 by rpki-client on console-ams.rpki-client.org