Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uXQhHWNjU35Nr3VJnYksQSh-suE.roa
File: uXQhHWNjU35Nr3VJnYksQSh-suE.roa (raw, json)
Hash identifier: zNQg1sDJyZqEFU5uz9KD1bK1HlD94MFDHblZCo8DDko=
Subject key identifier: B9:74:21:1D:63:63:53:7E:4D:AF:75:49:9D:89:2C:41:28:7E:B2:E1
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1BC0504D
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uXQhHWNjU35Nr3VJnYksQSh-suE.roa
Signing time: Tue 21 Jun 2022 09:30:44 +0000
ROA not before: Tue 21 Jun 2022 09:30:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204491
IP address blocks: 45.138.19.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 465588301 (0x1bc0504d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 21 09:30:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b974211d6363537e4daf75499d892c41287eb2e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:7c:02:db:80:a4:e7:78:f5:66:eb:2c:dc:10:
2f:1e:e3:7d:e8:c0:8b:3b:ec:80:16:7a:7b:bf:e1:
a1:88:6d:7a:ef:a4:19:7b:0e:c9:c9:d3:74:41:12:
f9:38:cd:18:20:6b:bd:5c:ce:c6:9a:a8:27:c3:6a:
39:67:e8:ab:ab:e2:eb:5e:9f:5e:a6:9b:2f:93:3e:
ef:7c:2d:a8:fe:fe:92:06:00:44:98:4b:9a:fc:58:
22:fb:1e:eb:48:2e:0a:94:42:f9:3a:64:e9:ad:8b:
75:18:cf:a6:5a:6c:d9:50:e2:36:7f:97:2d:f1:1e:
f1:b4:49:57:ea:48:d2:71:4c:2c:fb:20:1f:d8:68:
06:f2:15:63:da:c4:82:82:33:93:d5:e2:7f:f2:65:
82:45:e2:77:36:5a:37:50:1e:d3:6b:2d:f0:20:83:
c3:d8:22:aa:7e:41:51:79:1f:f1:42:44:4d:57:62:
ea:b9:09:2b:df:b8:44:cf:c5:bc:64:80:f7:fa:47:
cb:28:2c:99:a9:6f:8e:f7:e3:67:ec:3f:26:7f:d8:
c0:62:6c:9c:31:a6:bd:06:43:a7:e1:eb:cc:00:99:
70:16:9b:05:cb:93:b8:36:fa:25:ed:95:49:c8:21:
38:93:4d:57:65:e0:31:d5:a2:b2:46:3e:1d:34:3f:
6c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:74:21:1D:63:63:53:7E:4D:AF:75:49:9D:89:2C:41:28:7E:B2:E1
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/uXQhHWNjU35Nr3VJnYksQSh-suE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.19.0/24
Signature Algorithm: sha256WithRSAEncryption
23:cf:73:59:9a:02:ff:3e:50:cd:ab:ff:f2:98:bb:01:85:bd:
dc:8b:c5:71:bc:ed:da:ae:4b:0b:cd:5d:3c:01:c1:b0:28:6f:
d7:76:5a:73:94:83:75:4a:be:be:bb:47:4e:b6:c9:bd:48:26:
7c:1d:0b:0f:23:34:79:48:27:82:85:f7:66:5e:a5:11:db:61:
11:30:e7:e0:f9:1b:ae:ea:f3:f5:a1:0c:08:ef:a0:e0:0b:d3:
92:3a:6c:ca:2c:f2:2b:5a:a6:16:0c:ad:99:8e:67:e2:db:a8:
33:95:73:16:5e:79:73:44:4c:90:84:72:6e:45:6c:55:d8:57:
d6:88:21:17:5a:d5:00:9a:f0:90:1a:1c:42:b6:65:ef:ee:89:
83:55:c1:e9:ad:d2:1b:24:f5:f5:0f:54:ce:69:b1:fd:4c:3d:
63:8d:2b:d5:60:ab:06:3d:f8:2d:b9:58:94:17:24:cb:6a:f9:
ad:53:ff:55:b8:52:aa:50:dc:85:f4:05:9d:ad:56:75:04:6f:
81:13:7f:13:96:42:73:77:4b:e3:4c:e7:88:ec:c0:40:64:fd:
62:73:15:a9:1b:85:d9:8d:ec:55:73:d4:96:9d:47:a5:62:44:
65:05:05:cb:53:96:98:73:a7:f9:22:d0:8b:76:c8:3a:4b:ee:
0f:a0:21:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org