Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/RHxi_pTFEy6ceTWgjeXZtVdw_oc.roa
File: RHxi_pTFEy6ceTWgjeXZtVdw_oc.roa (raw, json)
Hash identifier: MT2kBs1G/qZtWpRpUCewL+OvbumA73E6JnyVGmsZIh4=
Subject key identifier: 44:7C:62:FE:94:C5:13:2E:9C:79:35:A0:8D:E5:D9:B5:57:70:FE:87
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0764922F
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/RHxi_pTFEy6ceTWgjeXZtVdw_oc.roa
Signing time: Sat 01 Jan 2022 03:51:33 +0000
ROA not before: Sat 01 Jan 2022 03:51:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212219
IP address blocks: 45.137.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124031535 (0x764922f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=447c62fe94c5132e9c7935a08de5d9b55770fe87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:9f:a1:07:0c:af:64:a8:e3:27:6e:50:cb:
ac:8e:0f:73:53:2f:4f:6e:9a:09:f4:52:59:51:e9:
e1:0e:1b:a3:4e:ab:03:38:2b:0b:6d:08:3c:d2:fa:
fe:5c:c9:c8:92:57:14:60:9c:04:8a:54:6d:a9:17:
5d:ad:e6:3c:9c:57:ff:8c:63:d1:25:b9:77:45:f2:
f9:c8:1c:63:5b:88:46:76:4c:c1:11:c9:4e:b5:52:
eb:3d:2d:2c:02:f5:da:be:a0:d9:73:49:fd:84:52:
99:66:91:52:e5:cf:8b:3b:a5:d2:d2:92:45:0c:45:
a3:3e:e2:4e:05:86:a3:a3:77:31:74:49:41:fe:9c:
62:53:62:37:1b:06:93:8e:3c:54:85:51:31:24:78:
dd:ee:2f:c9:72:1f:f3:47:45:da:18:9d:e8:89:79:
04:0b:89:a1:50:22:81:13:be:bd:92:54:cb:ff:1c:
d2:09:3f:d8:2a:80:ac:b1:74:c7:ea:5a:39:da:19:
43:48:b6:91:a2:5d:b0:2a:2a:64:7d:57:24:6f:a5:
52:f7:b6:3b:6b:06:b2:9b:91:df:ca:f0:e1:27:8e:
1b:25:70:ac:0a:22:37:f3:3b:41:a0:d8:76:02:24:
34:7a:eb:86:6f:1c:dc:38:e4:b5:26:65:55:4f:8e:
9f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:7C:62:FE:94:C5:13:2E:9C:79:35:A0:8D:E5:D9:B5:57:70:FE:87
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/RHxi_pTFEy6ceTWgjeXZtVdw_oc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.16.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:c5:a1:4b:ad:7b:90:3f:48:08:fc:5c:a6:b3:00:81:70:a8:
b0:71:05:c3:8e:58:05:10:8f:61:0d:5d:ad:4f:2f:28:44:a1:
05:5a:7f:38:c1:d7:0a:d2:11:59:c2:2b:20:1f:76:04:fa:5d:
17:ad:0b:db:2d:bf:f4:f2:0f:73:51:69:aa:12:05:1a:f4:26:
0b:d5:89:09:7a:19:60:cc:e8:db:70:3e:2d:25:7d:3e:ba:f6:
38:d6:99:30:64:63:ae:25:52:2f:eb:41:d7:89:18:8f:96:ba:
4b:6b:75:87:cf:29:6b:6b:2d:db:4d:f9:b2:fc:b0:d6:9a:14:
88:02:cf:1f:07:b6:10:ad:2d:67:d2:97:7b:41:43:ab:e3:42:
a6:bf:68:b6:b5:31:4e:df:93:cf:33:46:f3:08:35:d4:fc:6a:
4b:03:a3:f0:f6:fc:82:35:ce:98:3f:cf:f4:b3:bc:55:20:83:
1b:81:f2:c6:8f:c4:e9:24:8b:df:3b:f3:f1:61:a8:91:44:19:
18:68:4e:ad:0c:7c:09:88:00:44:90:16:6b:3f:57:cc:4d:b0:
1c:91:5f:37:4c:05:7d:99:d0:a6:13:db:1d:b8:45:15:75:2e:
9d:4b:3d:8b:9d:b5:f4:0a:0a:19:0e:48:0e:7a:c9:b2:a4:f5:
65:48:41:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org