Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/mje4FD-F2utbCT9lirSbmE4RrCM.roa
File: mje4FD-F2utbCT9lirSbmE4RrCM.roa (raw, json)
Hash identifier: 8/awYBR0w/2eL+9N/hjZzbE/tMMkAf2CStVoJxdVm0I=
Subject key identifier: 9A:37:B8:14:3F:85:DA:EB:5B:09:3F:65:8A:B4:9B:98:4E:11:AC:23
Certificate issuer: /CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Certificate serial: 6A55
Authority key identifier: AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/mje4FD-F2utbCT9lirSbmE4RrCM.roa
Signing time: Mon 04 Jul 2022 08:59:09 +0000
ROA not before: Mon 04 Jul 2022 08:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208320
IP address blocks: 45.143.111.0/24 maxlen: 24
45.143.110.0/24 maxlen: 24
45.143.109.0/24 maxlen: 24
45.143.108.0/22 maxlen: 22
45.143.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27221 (0x6a55)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aa65af697df1f6cdaf4cbbd66de3d43bed869e90
Validity
Not Before: Jul 4 08:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a37b8143f85daeb5b093f658ab49b984e11ac23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:2a:08:cd:cb:e1:36:65:21:10:f4:c6:d3:03:
a5:78:39:1c:42:63:62:00:47:47:1c:a9:8e:17:8c:
fd:2b:f5:92:fe:14:92:17:86:f3:45:b1:bd:46:53:
ee:85:73:5a:85:86:72:72:78:85:a4:1b:7e:ee:96:
64:7e:3f:49:df:c1:45:ee:2e:86:a5:1d:b6:5f:07:
73:1a:01:40:1f:46:d0:3b:0a:0c:2e:f1:d8:e0:9a:
80:3f:b3:09:97:4a:9a:f4:52:b5:54:c9:55:cc:ca:
6e:ea:98:5b:41:4a:a7:fc:d0:46:a6:cf:e6:ac:6b:
65:7a:eb:d6:2a:eb:ec:53:3c:5f:d6:40:53:7a:25:
43:04:e2:03:6f:53:e2:24:b1:f6:5b:1b:63:d2:7e:
4c:71:d5:43:70:76:b9:2b:d9:18:cf:9c:b0:19:3c:
0f:eb:fa:8f:fa:c2:50:1b:f5:0e:76:8f:f4:f8:b0:
07:f0:1a:12:55:26:15:30:dc:01:09:af:33:4f:78:
9a:24:34:59:21:a0:21:1f:f9:9e:22:a3:d0:1b:c2:
c1:f8:8e:eb:95:16:30:94:00:2e:53:82:41:e6:7a:
d0:20:87:3c:83:61:11:bf:d4:bd:41:61:47:e7:5b:
18:cd:84:6d:bb:f3:0a:7e:ee:cd:95:39:b4:1a:a2:
a8:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:37:B8:14:3F:85:DA:EB:5B:09:3F:65:8A:B4:9B:98:4E:11:AC:23
X509v3 Authority Key Identifier:
keyid:AA:65:AF:69:7D:F1:F6:CD:AF:4C:BB:D6:6D:E3:D4:3B:ED:86:9E:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qmWvaX3x9s2vTLvWbePUO-2GnpA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/mje4FD-F2utbCT9lirSbmE4RrCM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/04019c-ad17-428d-b3a2-1be13ba8d456/1/qmWvaX3x9s2vTLvWbePUO-2GnpA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.108.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:c6:3e:b3:23:af:6a:9f:d2:af:0e:59:39:ea:74:c6:99:20:
1a:51:53:ee:47:56:12:9a:96:4f:57:7d:b7:27:d9:cc:3c:db:
27:08:cb:15:9c:7d:d1:fb:87:0a:a6:b8:c1:c0:df:85:5b:e5:
b6:d9:c2:5f:ed:22:32:7f:b3:5a:00:f3:89:b6:9b:d7:66:50:
ae:5c:e2:00:10:9e:4f:e1:cf:24:dc:b1:09:25:af:48:63:b9:
c3:4a:47:df:d3:98:49:3c:66:d6:4e:57:4b:45:cf:a2:45:b1:
b2:d0:23:c9:3b:0b:66:16:00:8d:db:14:aa:f6:fa:23:5b:a8:
ac:49:67:c7:a2:d9:2f:3c:a2:fa:f8:c8:01:5f:8e:01:25:8c:
34:3e:79:11:74:e2:e1:b3:90:72:3b:2e:d6:e6:b6:c7:69:19:
7a:83:8e:0e:b4:b9:cb:ca:99:c0:01:2c:e8:f2:1f:cb:4f:81:
df:8f:c0:9d:28:12:09:79:16:25:0f:3d:76:c0:38:1d:9e:ce:
4f:b1:60:c8:34:b3:07:0c:bb:da:1f:b8:9a:d4:81:0a:c1:b0:
9c:92:c2:db:21:87:a4:53:41:39:c8:7c:5a:a2:75:c6:13:3a:
21:b3:ab:74:88:87:2e:7c:de:3f:cd:36:a1:cc:38:49:69:21:
00:91:0b:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:54 2024 by rpki-client on console-ams.rpki-client.org