Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/szLKGBNC0xUW3BfNArpHCGtXdkU.roa
File: szLKGBNC0xUW3BfNArpHCGtXdkU.roa (raw, json)
Hash identifier: OUEioNb8zvOzyDKKg8RfxyiPbSxZLYjB5PtwRgul1Dg=
Subject key identifier: B3:32:CA:18:13:42:D3:15:16:DC:17:CD:02:BA:47:08:6B:57:76:45
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0184B9DD4F52D5AF27F753CC6AD3A494034E
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/szLKGBNC0xUW3BfNArpHCGtXdkU.roa
Signing time: Sun 27 Nov 2022 16:13:19 +0000
ROA not before: Sun 27 Nov 2022 16:13:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 45.143.163.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:b9:dd:4f:52:d5:af:27:f7:53:cc:6a:d3:a4:94:03:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Nov 27 16:13:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b332ca181342d31516dc17cd02ba47086b577645
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e8:7d:57:de:ad:0f:95:c6:ad:4f:67:fd:12:
a2:d2:15:6c:05:dd:f1:4e:05:10:b0:2d:e1:40:b8:
e8:75:cb:25:17:da:fe:4f:df:a3:b8:6d:37:29:a6:
46:36:3d:d6:53:d0:c7:af:01:f6:56:fc:19:9e:24:
01:bd:c5:27:93:b0:f9:73:cd:d1:52:fb:35:d1:ce:
76:cc:7f:86:37:e7:af:1d:17:0a:f7:fe:1f:ec:86:
78:0c:89:ba:8b:d1:06:65:eb:38:43:42:30:0e:e1:
00:1a:e8:82:0d:8c:ed:95:cc:9a:66:9a:d2:a7:57:
98:93:91:be:fe:60:a7:8a:d3:f5:7c:fd:0a:89:72:
ac:4c:d4:88:fc:15:cc:e5:32:2a:87:a4:e9:e7:63:
f7:04:e1:86:d1:3a:f2:bd:e8:48:5c:9a:e9:79:90:
76:3f:fa:ed:eb:33:19:f7:81:f4:16:97:e7:71:d8:
80:b2:32:bb:11:51:db:d4:af:d5:ab:88:c3:a6:ef:
8a:3d:49:0c:68:47:f3:68:19:fb:e6:d6:36:f9:fa:
e3:4e:fb:ed:19:11:28:65:2e:7e:61:1b:2a:65:b6:
33:2e:f9:c0:88:b4:dc:a4:2e:83:f8:9b:49:e8:cf:
d5:34:4f:f9:77:0f:6d:8c:cd:5f:27:c4:a9:7c:e7:
8a:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:32:CA:18:13:42:D3:15:16:DC:17:CD:02:BA:47:08:6B:57:76:45
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/szLKGBNC0xUW3BfNArpHCGtXdkU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.163.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:78:95:14:ec:8a:6f:7f:5c:16:3b:7c:9d:eb:98:f2:e7:c9:
97:d6:d8:c2:83:d3:24:f1:41:8c:bf:50:14:f6:68:41:d7:7b:
41:87:92:63:62:25:92:c4:09:75:f2:65:d7:d4:b3:40:90:03:
3d:8a:c7:f0:06:ce:88:b1:b1:2f:c9:5e:1c:e7:ec:5b:53:82:
78:29:d3:b2:9c:7e:37:81:6c:dc:ef:86:6d:f4:b3:eb:f0:d0:
f8:e1:cd:4c:10:97:92:79:f0:c6:e8:b1:06:17:98:0e:a5:f6:
2b:57:fb:f4:7f:b9:51:1e:01:52:81:62:da:bf:bb:b0:cc:2a:
5f:b5:08:08:8f:88:fe:24:ad:42:a0:19:ad:5f:27:8b:ba:5c:
94:66:36:e6:d0:8f:d8:d7:af:cc:29:20:27:78:f8:14:53:df:
8d:09:31:1d:76:47:57:56:b8:31:1f:71:69:22:de:45:50:1f:
cc:9b:7f:5c:98:09:ee:ca:87:28:40:45:51:99:b0:a9:1c:48:
87:96:67:23:35:08:17:aa:4e:a9:c3:8d:e1:50:d3:16:07:f6:
97:fa:0c:69:c5:08:8c:bf:ab:4e:01:1f:d7:46:d3:48:38:49:
19:69:61:88:1a:7d:31:81:50:db:95:e4:3f:ac:8d:d7:ee:a6:
69:f8:ea:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:46 2023 by rpki-client on console-ams.rpki-client.org