Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/S968dkNQISOxfkfoblDLUeaIlNw.roa
File: S968dkNQISOxfkfoblDLUeaIlNw.roa (raw, json)
Hash identifier: RP/6LjK71yasiug9/nBnmOEJVbRPXIzimRPEYcP4/CM=
Subject key identifier: 4B:DE:BC:76:43:50:21:23:B1:7E:47:E8:6E:50:CB:51:E6:88:94:DC
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 01839CD8F758FAFBED72D1D47B5D94FA40C1
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/S968dkNQISOxfkfoblDLUeaIlNw.roa
Signing time: Mon 03 Oct 2022 07:56:48 +0000
ROA not before: Mon 03 Oct 2022 07:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210703
IP address blocks: 45.143.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9c:d8:f7:58:fa:fb:ed:72:d1:d4:7b:5d:94:fa:40:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Oct 3 07:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4bdebc7643502123b17e47e86e50cb51e68894dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:28:7b:3e:8d:86:c5:7e:47:0e:df:f6:d0:e6:
fb:11:93:df:c7:5b:fe:f6:58:24:51:d8:1e:61:2e:
14:2f:19:37:7a:45:28:3a:80:e9:4f:7a:3d:6f:e7:
eb:48:15:65:21:37:8a:10:a5:6a:c6:1a:20:a2:72:
5a:53:01:a5:c1:9b:1e:30:a8:f7:1e:aa:87:b7:2a:
2f:f6:dd:16:9d:bd:9a:41:42:a7:57:54:40:b5:b5:
be:be:57:ef:c5:03:07:6c:5d:34:04:b3:2d:17:ba:
32:d6:89:0f:10:59:ad:c8:f3:f3:4c:ac:11:8a:97:
89:12:47:4b:c5:31:da:6e:d2:27:c9:65:bd:be:07:
c5:2c:43:23:04:46:d3:97:4d:57:d1:c2:7c:ae:4f:
14:33:e0:03:1b:46:4d:20:89:73:32:01:83:32:1b:
da:8d:08:04:b8:c2:1a:96:71:94:d2:2e:45:54:01:
1b:6f:e3:70:2e:66:14:ac:94:cc:d4:34:a6:04:00:
b7:9c:fb:3a:11:e8:dc:18:74:4b:ab:09:fe:36:6d:
38:d9:4b:d8:53:c3:6e:3d:8f:62:d3:07:29:3f:82:
9e:ef:be:0b:b7:38:b7:d4:9e:c7:09:14:5f:3a:c6:
eb:3b:7f:66:65:27:aa:92:92:bd:b3:b6:e4:96:e3:
e8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:DE:BC:76:43:50:21:23:B1:7E:47:E8:6E:50:CB:51:E6:88:94:DC
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/S968dkNQISOxfkfoblDLUeaIlNw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.161.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:1b:03:8e:9a:8f:00:d0:fb:dd:5c:0c:9d:39:b8:32:4b:96:
34:e4:84:15:db:a0:77:e8:b1:af:47:8e:72:e4:2e:14:d9:ba:
22:65:ff:37:19:ed:76:07:c0:8b:b9:a3:99:00:b5:0c:d8:f7:
75:ce:70:8e:1a:c9:23:df:ca:72:d2:ac:a5:8c:06:ac:b2:9a:
3e:97:4e:77:12:50:85:70:8e:5c:f0:a1:46:b1:b6:3c:b1:47:
35:e3:b6:68:73:d4:02:48:67:99:b5:48:97:23:ca:aa:29:d2:
7f:2c:be:02:e1:b9:20:8f:9f:26:3c:05:99:33:e9:69:b8:ec:
84:93:b0:b0:a3:d7:ce:09:53:be:41:72:fe:76:2c:56:8f:54:
dc:61:3e:6a:b8:94:fd:fd:fa:23:61:97:8f:bb:40:ed:4b:77:
07:54:43:90:63:dc:f5:0c:90:ed:da:02:d9:2a:08:55:68:35:
d2:1c:3d:64:32:a5:5e:ce:86:9e:98:c2:3d:72:c4:28:8d:c3:
2c:d7:c9:48:d4:72:1d:c7:9f:4a:63:05:5d:a8:bc:e4:1b:e4:
7e:11:cc:4d:8c:93:69:b8:c9:22:49:bc:27:f7:78:67:66:2a:
81:8d:b8:0c:0d:f2:e4:ea:45:97:47:b7:4a:c9:ca:bb:d8:06:
fe:69:d5:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:46 2023 by rpki-client on console-ams.rpki-client.org