Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/aQejyPirA0aQKMEBp0IvTvOajco.roa
File: aQejyPirA0aQKMEBp0IvTvOajco.roa (raw, json)
Hash identifier: R9+SB2TO/5I/v6cZI9y2HGkx1OYxUNwEF2PTurf0z1Q=
Subject key identifier: 69:07:A3:C8:F8:AB:03:46:90:28:C1:01:A7:42:2F:4E:F3:9A:8D:CA
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 05991B18
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/aQejyPirA0aQKMEBp0IvTvOajco.roa
Signing time: Sat 01 Jan 2022 07:03:57 +0000
ROA not before: Sat 01 Jan 2022 07:03:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34679
IP address blocks: 45.14.237.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93920024 (0x5991b18)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:03:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6907a3c8f8ab03469028c101a7422f4ef39a8dca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:f3:54:6e:15:35:0e:ef:82:5f:81:2d:43:a8:
31:b8:b2:c3:1b:8c:1c:df:4e:11:ea:01:f6:01:fd:
6b:e4:fa:11:d6:81:bc:63:85:33:89:f8:f3:6b:bb:
b0:d8:24:7e:92:af:82:d4:cf:e9:d5:5e:4f:bf:31:
c5:b0:e4:a4:5d:5f:86:bf:da:ed:bf:ba:02:57:1e:
f4:26:71:52:d4:01:3c:f3:dc:a1:37:77:b4:9f:dd:
63:88:dc:08:34:78:47:2c:9e:9a:0e:46:95:22:1a:
d1:6b:9b:a7:fa:1e:b0:d0:09:62:83:e0:f4:c7:b4:
51:97:c7:d1:4c:3a:b0:2e:bc:33:c7:75:09:39:63:
7c:02:d0:8e:34:6e:2f:97:4b:a4:00:d2:6a:8c:fc:
a8:85:6d:29:8e:95:51:6b:87:38:7c:ae:24:1c:d3:
27:66:80:97:26:f1:b0:24:ab:10:65:fb:0f:9e:32:
96:2b:8c:42:89:3c:a9:4e:2c:a3:6f:36:b7:39:08:
85:41:76:32:57:99:04:28:26:bf:05:30:99:7e:60:
eb:11:68:db:f9:22:50:51:d1:a7:5a:41:fe:cf:ba:
87:a5:34:46:8d:8c:39:40:e2:c2:f5:30:48:d1:f3:
1d:c1:f2:6d:b4:5e:60:64:49:fe:36:a5:a6:eb:aa:
ba:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:07:A3:C8:F8:AB:03:46:90:28:C1:01:A7:42:2F:4E:F3:9A:8D:CA
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/aQejyPirA0aQKMEBp0IvTvOajco.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.237.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:8d:76:56:15:b3:58:a3:e0:2a:49:d1:1c:7a:77:1b:e0:71:
57:90:20:33:c5:25:d3:ec:20:af:0f:d0:67:7c:b9:ca:d0:5c:
ff:d2:8e:81:27:40:f4:75:57:57:70:a7:1f:3a:3e:55:85:fb:
22:70:1f:76:d1:21:48:25:ea:c6:2b:6d:fa:66:ac:3f:b9:7f:
f7:2d:b0:1f:cb:d7:0c:5b:7f:e6:0a:9f:39:01:fa:18:a0:f9:
b4:13:0b:77:9a:0b:c9:82:74:45:42:76:96:ca:a3:a3:f9:92:
65:1b:3e:12:6a:cb:90:ae:d0:d9:3a:9d:37:b8:72:b2:f6:de:
7f:e1:8d:e6:69:ec:49:a6:88:a5:fe:c4:e9:18:cf:80:e0:16:
8c:3f:3f:8a:a9:7e:64:f0:ce:00:47:54:1a:3d:d5:9e:01:15:
6c:27:42:d1:e5:db:8a:45:6a:6a:ec:f6:ea:92:47:98:14:aa:
46:d1:d7:b1:86:89:1a:4d:e4:73:04:a2:22:0e:8b:59:31:df:
47:15:8f:1e:b0:36:02:d0:f9:c4:f1:71:39:c4:62:05:ec:f7:
e8:99:5a:5f:b6:c6:bf:cb:16:50:eb:ce:b3:19:81:36:00:6d:
27:b7:fc:74:41:01:5b:04:0d:19:63:d8:10:46:97:a5:62:6b:
6e:9a:62:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org