Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bl0iM7qCxAUXGjY1F6kYPgzOj3Q.roa
File: bl0iM7qCxAUXGjY1F6kYPgzOj3Q.roa (raw, json)
Hash identifier: Y30GRyfoVwWz+sN0mc9/rD8teqTwjzn1gurCWnAftzU=
Subject key identifier: 6E:5D:22:33:BA:82:C4:05:17:1A:36:35:17:A9:18:3E:0C:CE:8F:74
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0182B0633C5166A1A6344E2B0DEC900BC08A
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bl0iM7qCxAUXGjY1F6kYPgzOj3Q.roa
Signing time: Thu 18 Aug 2022 09:57:49 +0000
ROA not before: Thu 18 Aug 2022 09:57:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212238
IP address blocks: 45.8.192.0/24 maxlen: 24
45.8.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b0:63:3c:51:66:a1:a6:34:4e:2b:0d:ec:90:0b:c0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 18 09:57:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6e5d2233ba82c405171a363517a9183e0cce8f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2d:e7:40:6b:2e:4f:0d:d0:27:0f:94:77:d5:
50:31:a9:9c:0b:fa:3e:2a:66:cd:4e:09:d5:ab:e9:
bc:c5:db:18:4f:7c:41:92:0a:fb:2c:21:f7:e7:07:
14:bd:f8:fc:42:af:69:31:d8:81:b7:5e:b0:02:e7:
51:33:28:c5:6c:72:4a:ce:ef:65:06:26:10:32:15:
1c:9f:48:ed:69:5f:c0:88:34:13:b4:93:73:27:f4:
d1:23:91:d8:c7:8b:6b:ae:0c:3d:c1:07:8c:86:e5:
77:6c:67:49:55:84:9c:b9:ab:31:ff:8b:9a:97:bd:
4a:e7:3a:6b:cc:99:cc:f8:6d:bf:cf:19:b1:3b:3c:
17:c4:75:ae:51:5d:c0:2b:29:03:02:0f:9f:0f:8e:
64:20:f0:cb:21:32:78:c1:da:22:8b:e4:dd:5f:b9:
21:03:67:f7:f6:f0:4b:00:9e:4d:c1:8c:b5:4e:2c:
3f:e1:66:ea:ad:0a:e8:93:85:0f:4e:69:56:6d:ce:
24:fb:62:5e:c5:cf:f2:9b:61:af:25:81:ef:4d:42:
9d:3e:67:b3:6b:dd:f4:a5:fe:42:f0:fa:99:16:79:
d1:bd:0e:93:46:5c:21:f2:01:4c:e7:40:38:00:5d:
1b:12:00:ed:b7:10:66:2c:88:6c:24:66:d3:3a:05:
84:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:5D:22:33:BA:82:C4:05:17:1A:36:35:17:A9:18:3E:0C:CE:8F:74
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/bl0iM7qCxAUXGjY1F6kYPgzOj3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.192.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:65:c8:a9:0f:ad:9c:54:e6:e5:44:2a:58:1d:48:64:80:4d:
c5:8e:4f:f7:e0:a9:c6:bf:8d:cb:1f:07:25:b1:31:77:62:4d:
d9:6a:fd:4a:30:89:33:95:2d:68:86:ba:53:2b:05:15:5b:c0:
74:7c:80:07:4c:a7:f4:62:e3:5d:20:8e:67:58:37:e0:23:12:
74:4a:84:cb:67:3e:ff:ed:62:01:f7:27:b4:b5:95:dc:8d:eb:
ab:e9:80:92:1f:99:ad:67:52:37:0a:b9:f5:3f:a0:37:a9:93:
5d:16:66:73:3d:fd:59:76:29:93:58:dd:35:d6:8b:8c:8d:a3:
0d:7b:3e:b0:21:e3:66:24:d3:64:b6:eb:3c:3f:3a:3b:ba:fc:
ff:cb:24:64:e4:1a:e1:2b:d7:40:45:e1:5e:a2:5c:a6:dd:d6:
a8:b8:3a:22:e6:95:96:46:58:cf:0f:b5:74:02:41:a2:83:3e:
99:44:1a:af:b9:7d:25:0f:8b:fb:77:99:71:e7:16:15:06:bf:
53:35:7f:e7:49:94:76:ba:13:bc:d3:6d:0c:ec:02:ab:e6:e1:
24:ca:0f:17:8e:e0:46:90:f2:ca:ac:12:25:96:56:85:8e:3e:
94:d8:4a:31:87:77:a7:39:87:ca:c0:2b:9d:69:5f:a4:5f:26:
16:3d:33:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:22 2023 by rpki-client on console-ams.rpki-client.org