Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/9It9l4pg82u_brQ_ycGlxUODYyY.roa
File: 9It9l4pg82u_brQ_ycGlxUODYyY.roa (raw, json)
Hash identifier: CRwVeLSkTm1lRu4B8bjpHi3sKbZeNLW8IPe/2eMFhEc=
Subject key identifier: F4:8B:7D:97:8A:60:F3:6B:BF:6E:B4:3F:C9:C1:A5:C5:43:83:63:26
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19F2E285
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/9It9l4pg82u_brQ_ycGlxUODYyY.roa
Signing time: Sat 01 Jan 2022 15:56:58 +0000
ROA not before: Sat 01 Jan 2022 15:56:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213277
IP address blocks: 45.92.229.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435348101 (0x19f2e285)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f48b7d978a60f36bbf6eb43fc9c1a5c543836326
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9e:ce:cd:14:e5:86:ba:75:1a:42:3a:92:d8:
54:8a:59:e7:d5:7d:3d:e7:0c:80:08:07:56:e1:da:
e9:55:96:80:6c:ff:36:3f:fd:4c:dd:33:f8:da:b6:
4b:15:a5:40:81:02:88:c4:c7:7b:26:58:54:e2:47:
83:f7:b4:9d:a8:1e:62:05:8a:c8:6f:0b:23:ab:3e:
93:10:ee:d0:f1:b3:54:8c:fc:43:41:00:1f:19:6f:
35:af:84:03:37:ee:8e:f6:9a:2e:af:b3:e0:9b:a0:
ec:5a:0c:2c:b3:67:82:a2:3f:b9:e5:bc:05:31:63:
41:73:45:57:0c:16:e3:34:ae:94:c5:f2:9e:8f:61:
32:28:6b:8d:7c:ae:f4:ff:4b:e4:8f:cc:c6:37:4a:
5b:e3:84:d8:aa:45:a8:a8:a6:9f:1d:10:df:2d:13:
32:ae:1f:d7:af:28:6d:5c:3f:6e:3b:3f:e3:f3:af:
53:6e:43:ec:64:60:13:be:c2:16:ec:4d:15:09:81:
18:8f:85:9f:d1:5d:dd:71:a9:d6:cc:f5:d1:26:15:
d2:7f:5b:8c:3e:4a:b1:96:36:71:80:d5:0d:a0:ab:
e5:aa:73:78:01:90:4b:f9:90:4a:e5:cd:67:ca:8d:
a4:d3:43:ca:74:03:f4:ad:6a:aa:e9:83:e1:e1:e9:
32:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:8B:7D:97:8A:60:F3:6B:BF:6E:B4:3F:C9:C1:A5:C5:43:83:63:26
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/9It9l4pg82u_brQ_ycGlxUODYyY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.229.0/24
Signature Algorithm: sha256WithRSAEncryption
bd:a7:fa:34:78:07:a3:81:de:85:cc:86:33:b8:4a:d9:d5:ca:
ef:eb:83:dc:8c:0f:98:b5:52:5b:48:1d:82:ab:71:4d:54:c6:
1e:1f:e7:c7:15:41:6e:e7:0e:6a:49:3e:09:ef:54:95:63:56:
0f:34:3a:9a:f9:02:64:75:20:14:44:5e:51:d8:60:02:fd:7e:
ad:43:71:95:82:a9:14:b0:47:b0:0b:b2:bb:fe:ac:7c:9f:bf:
49:8b:e2:3d:e5:8c:6f:b7:70:0d:82:e6:73:a0:4b:45:63:f8:
69:af:6f:f4:c3:95:d4:ea:19:a4:7d:8a:58:60:c0:95:7d:17:
4d:bf:f6:eb:cb:c0:57:8f:32:6b:09:c5:bc:08:f4:eb:7f:c9:
64:f7:b8:43:2f:0c:78:1e:87:f8:fb:c8:16:a4:55:52:e8:a3:
45:c2:4f:c6:2a:ed:ef:2a:c1:45:44:18:60:bd:7a:83:9c:8d:
60:a8:17:ea:65:25:d7:7f:5d:cd:76:5e:50:60:9e:02:9d:61:
dc:37:3a:7d:ce:72:8a:93:a3:68:15:c7:66:aa:23:15:2a:c3:
95:b1:5c:4e:0d:c7:8a:e2:b4:a3:38:a4:1f:b7:86:4b:72:79:
64:ee:c6:08:84:f5:1c:35:0b:20:07:6d:7c:e3:9b:15:04:ef:
cf:d1:50:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org