Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/eHndqYWh2_9oKKbGiX9C9SWJ9x4.roa
File: eHndqYWh2_9oKKbGiX9C9SWJ9x4.roa (raw, json)
Hash identifier: xYqpdfSdERtYm5hqdk8HeK1QLXVzytdwEtLnWvh/yVE=
Subject key identifier: 78:79:DD:A9:85:A1:DB:FF:68:28:A6:C6:89:7F:42:F5:25:89:F7:1E
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 01835630ED02C2E7521AA9B61D55798F22FE
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/eHndqYWh2_9oKKbGiX9C9SWJ9x4.roa
Signing time: Mon 19 Sep 2022 14:39:50 +0000
ROA not before: Mon 19 Sep 2022 14:39:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.139.1.0/24 maxlen: 24
45.139.0.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:56:30:ed:02:c2:e7:52:1a:a9:b6:1d:55:79:8f:22:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Sep 19 14:39:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7879dda985a1dbff6828a6c6897f42f52589f71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:0d:a6:1d:9a:f9:22:1e:82:88:e3:25:05:2b:
b4:6e:65:95:f7:8c:7e:3b:b6:a4:6d:f9:08:f0:35:
ee:df:40:05:83:b0:c8:3b:e9:ba:0b:68:b2:58:80:
f2:6a:92:f3:10:05:51:19:ae:7d:19:67:f9:84:25:
cf:49:b5:93:b3:bb:e5:f2:de:be:91:1b:0e:13:58:
6c:a4:90:b8:2a:8d:b2:65:77:ad:5f:cb:01:a3:cc:
a6:bb:e5:dc:0b:59:20:9e:3d:ad:28:37:e0:4e:0a:
35:9d:4f:ce:26:1a:a3:ed:e7:c0:cc:9f:34:ea:8a:
27:e2:f0:0b:7e:2a:cf:f1:71:0b:d8:b8:52:29:bf:
2e:d1:c8:4e:3b:4b:ba:98:e2:ee:5f:56:a9:81:27:
52:c4:58:cc:1b:f1:ba:57:64:fc:84:8f:54:ad:0a:
cb:7b:bf:68:1c:de:f6:13:4c:bc:1d:91:dc:47:47:
9b:8d:6d:2e:0c:f3:f8:fd:71:c9:36:d5:28:b6:c5:
75:7e:d4:6a:d2:1d:5a:14:7a:1d:a4:32:66:1e:9d:
25:af:61:80:b0:73:f0:da:8a:96:76:d1:7b:b6:2f:
14:8a:2a:fb:c7:9e:07:c0:73:7e:4f:53:e3:d1:86:
3d:7a:31:f6:7b:8e:17:b6:32:0c:5c:3a:06:43:86:
d8:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:79:DD:A9:85:A1:DB:FF:68:28:A6:C6:89:7F:42:F5:25:89:F7:1E
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/eHndqYWh2_9oKKbGiX9C9SWJ9x4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.139.0.0/23
Signature Algorithm: sha256WithRSAEncryption
85:4a:d4:63:d7:47:df:65:66:70:72:13:62:c9:1c:71:51:73:
9d:3b:ce:31:f0:ac:4e:27:76:e6:c8:19:72:ee:4e:f5:52:d4:
d3:8f:64:f3:56:26:e9:1d:c2:d3:54:eb:0a:6d:a9:ab:ef:b4:
28:5c:c9:43:d7:0d:b4:3a:9c:67:6d:8c:8b:dc:db:eb:83:b7:
b1:91:7e:19:13:85:87:39:a4:1d:a0:96:da:1f:08:85:fa:ce:
e9:6d:c6:f7:43:88:18:a5:f0:df:4c:8d:57:fd:c9:f0:3d:b0:
62:19:a2:06:de:9f:60:a2:84:84:e9:de:ec:a1:86:34:96:f7:
fa:19:45:28:29:05:54:f3:78:3c:bc:22:75:56:80:7e:d2:aa:
f3:f8:6b:f8:9e:e1:84:12:ba:fe:08:c6:b2:4c:7e:9d:32:4a:
7f:d9:46:d3:b3:63:95:a7:ad:af:1a:04:bb:81:50:e2:3b:8c:
36:51:18:7f:69:25:68:a1:a2:b4:cf:df:ad:71:c8:cd:38:68:
7b:ab:c7:03:a9:6c:45:bf:58:84:ef:6d:6a:0f:d1:27:16:52:
21:71:93:10:5d:82:6e:a0:25:e7:a3:c4:4d:4d:14:21:a0:96:
f7:0e:ce:8a:80:28:15:8c:c6:97:19:5e:c8:b3:1f:35:b3:7e:
f2:a1:b1:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:41 2023 by rpki-client on console-ams.rpki-client.org