Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cmY4ntXjGNlAHVAtQx4X3kOgA6w.roa
File: cmY4ntXjGNlAHVAtQx4X3kOgA6w.roa (raw, json)
Hash identifier: 3Lp45P5vUogNz+3BtJZ3sxryLJx24R3T/WGWqcQXoWc=
Subject key identifier: 72:66:38:9E:D5:E3:18:D9:40:1D:50:2D:43:1E:17:DE:43:A0:03:AC
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19E1CFE5
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cmY4ntXjGNlAHVAtQx4X3kOgA6w.roa
Signing time: Sat 01 Jan 2022 15:56:48 +0000
ROA not before: Sat 01 Jan 2022 15:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58955
IP address blocks: 45.130.141.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434229221 (0x19e1cfe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7266389ed5e318d9401d502d431e17de43a003ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:50:05:da:b1:a4:ef:41:c4:41:4d:af:38:d5:
1f:cb:b2:c8:cf:0f:c5:76:1a:ff:73:b2:da:0f:ae:
52:2f:69:fe:e7:2a:08:7c:70:c0:ad:52:32:77:68:
70:36:a5:5b:47:04:2b:fa:3b:c0:3d:78:a9:3c:ed:
55:cc:08:92:4a:8b:6b:fa:82:62:8e:38:61:f9:54:
5a:0c:1b:52:a3:36:a6:4b:b8:20:77:bd:bf:81:d6:
2b:df:c3:6d:cf:c2:9f:7e:a5:fc:9b:05:19:44:78:
e8:c5:e7:43:6b:b4:06:0d:02:b0:02:6a:75:ac:84:
d5:1c:3d:86:a7:5d:ad:32:54:d7:5f:69:f6:19:c5:
9b:9e:c1:fd:f4:23:f5:d9:20:10:be:12:45:6d:00:
1b:ba:b6:f5:46:1d:8f:7b:50:6c:6a:b6:95:a4:ca:
4d:5c:2d:f3:6c:2e:93:da:f9:05:fb:0e:78:23:4f:
40:93:f4:01:07:97:c1:fc:bc:08:dc:5d:8d:c0:01:
c3:9b:96:a7:0a:9d:d9:1d:62:03:98:46:cb:85:56:
3b:c3:1e:c4:5e:ce:58:ca:4c:ad:a9:c6:1c:0b:6e:
77:ff:49:d8:91:c8:ac:4f:4c:c0:f0:8d:d3:ba:37:
72:72:d0:ae:5a:10:57:d3:fa:f7:35:f1:06:b6:e0:
53:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:66:38:9E:D5:E3:18:D9:40:1D:50:2D:43:1E:17:DE:43:A0:03:AC
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/cmY4ntXjGNlAHVAtQx4X3kOgA6w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.141.0/24
Signature Algorithm: sha256WithRSAEncryption
40:17:f4:7a:fb:5f:71:d7:bf:03:5e:23:3f:d7:c9:5c:32:45:
5e:76:46:e3:ab:60:3d:71:7a:e0:b3:2a:fd:b3:23:1c:0c:9d:
4b:df:d5:d6:27:09:3f:eb:06:cb:5a:e9:c1:77:20:c1:61:8a:
1c:67:82:ff:58:54:ad:e9:82:4d:7b:27:e4:6e:74:96:15:50:
df:ad:22:5d:fe:a0:24:e2:ba:46:cd:9c:d0:fd:87:66:e3:3b:
fd:41:7d:9d:06:38:ae:cf:11:cc:0c:63:21:e9:56:19:73:70:
bf:04:fe:c2:d7:9b:8f:03:de:df:6d:2b:62:9a:80:f9:55:53:
4e:47:29:ba:e2:13:89:e2:fb:a3:72:83:6e:fd:b4:88:c5:33:
13:16:b6:58:3c:f8:fb:56:cd:20:d8:c6:aa:88:ee:44:54:f5:
4c:ef:e8:35:d8:a9:94:0f:c1:d3:a7:f1:ce:85:e3:eb:05:48:
7a:24:e9:4f:fa:eb:43:46:ca:e2:d3:ae:6b:23:75:73:b8:31:
7f:d0:3e:5f:d1:80:4e:a6:df:fb:7e:b3:0c:92:2c:6a:49:7c:
2a:01:c0:3c:dc:f9:b2:10:25:55:93:3b:96:a0:11:4f:86:62:
ac:ff:29:a5:44:20:d9:b6:98:b3:64:b2:fc:1d:dc:6c:10:9b:
7e:52:ce:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org