Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/wdU7Py4rPmoLjJI6Qt-rTI8re_Y.roa
File: wdU7Py4rPmoLjJI6Qt-rTI8re_Y.roa (raw, json)
Hash identifier: 84qyVWPdZURQ7vP4cIz9W5GGe/fbcGTawxS05eoREwY=
Subject key identifier: C1:D5:3B:3F:2E:2B:3E:6A:0B:8C:92:3A:42:DF:AB:4C:8F:2B:7B:F6
Certificate issuer: /CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Certificate serial: 089EDFCB
Authority key identifier: 72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/wdU7Py4rPmoLjJI6Qt-rTI8re_Y.roa
Signing time: Sat 01 Jan 2022 11:04:09 +0000
ROA not before: Sat 01 Jan 2022 11:04:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.67.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144629707 (0x89edfcb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72b78f6682fc39c55b41d48f80b8838d5d2dbf07
Validity
Not Before: Jan 1 11:04:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c1d53b3f2e2b3e6a0b8c923a42dfab4c8f2b7bf6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:a4:3e:75:01:6e:d4:0c:c3:de:d4:d6:12:a3:
58:07:95:34:bd:b8:3c:75:32:82:b1:09:4d:0d:8e:
c2:f6:02:0d:26:18:7e:65:6a:e8:75:54:1d:81:83:
0d:89:c0:13:3c:d7:c5:87:3e:75:2e:36:59:85:b2:
20:65:08:45:85:93:d5:d9:6f:a8:fb:9e:58:86:1f:
c0:d8:17:97:e3:32:5e:a8:d9:be:60:ae:21:ee:42:
fe:21:e8:2c:f6:18:56:40:f3:18:ca:90:7e:05:db:
ee:82:31:a5:a5:aa:49:0f:6c:eb:f9:be:65:5b:5c:
50:60:f2:1b:a2:0f:d3:fe:53:5d:b2:af:03:92:e4:
48:29:ce:b9:54:ac:64:3c:7a:03:f5:6f:ef:b8:e8:
4e:e1:d7:25:9e:47:74:d8:cb:a5:b3:38:82:4d:f6:
2a:85:bc:05:25:ee:c2:fd:05:13:c2:37:1c:ec:32:
ed:ab:b0:a9:26:48:25:27:1f:4a:75:52:8d:b2:7d:
10:83:4e:62:e0:9f:d7:8a:a1:90:15:6a:71:91:16:
9e:48:8f:12:e1:51:37:58:a5:86:9c:73:6f:e8:c5:
23:6d:3e:2f:f1:dd:d3:f4:bc:3f:be:72:10:27:36:
5e:33:47:9f:c5:39:5b:9d:16:3b:16:bc:1b:d1:66:
ed:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:D5:3B:3F:2E:2B:3E:6A:0B:8C:92:3A:42:DF:AB:4C:8F:2B:7B:F6
X509v3 Authority Key Identifier:
keyid:72:B7:8F:66:82:FC:39:C5:5B:41:D4:8F:80:B8:83:8D:5D:2D:BF:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/crePZoL8OcVbQdSPgLiDjV0tvwc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/wdU7Py4rPmoLjJI6Qt-rTI8re_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/3c4b8a-bfc7-41e9-99e1-f3e506aeaa01/1/crePZoL8OcVbQdSPgLiDjV0tvwc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.140.0/24
Signature Algorithm: sha256WithRSAEncryption
30:1c:5c:6a:d7:bf:00:40:10:31:b0:68:2d:ab:5a:6b:6c:7c:
ab:9a:c9:fb:f7:06:25:4c:2c:0e:f4:9d:c3:9d:35:ab:ac:61:
20:0f:09:e6:23:72:41:02:ee:57:cc:5d:4c:44:8b:0c:8f:9c:
12:9e:cf:eb:c3:25:5e:8f:bd:92:42:d2:de:39:94:20:e4:65:
fa:20:17:e9:28:3e:46:6f:29:33:17:0b:34:db:eb:3c:49:7e:
50:da:1f:61:38:df:b1:48:07:a8:35:8d:8d:36:27:23:71:bf:
25:93:8e:4c:9c:5e:d2:61:d8:62:36:cb:24:ca:08:4d:2a:89:
fd:46:c9:bf:7d:64:3e:90:80:55:75:41:d3:9a:ef:4b:32:02:
7d:5b:e2:ab:54:1a:5b:7e:42:4d:0a:29:59:9c:9c:81:ff:3f:
3e:ba:aa:ef:95:dd:17:8e:a8:88:2d:fe:9d:4f:15:b2:e1:9c:
ef:ff:4f:43:86:fa:e7:e1:c4:60:3d:0d:be:f0:3c:35:7b:bc:
ed:ff:2e:2f:b0:24:6e:88:53:56:86:c5:3d:86:7c:53:da:52:
b4:73:d0:c7:d0:8b:03:52:1f:a5:bf:8f:c6:f1:53:09:71:49:
66:4b:c5:29:76:e6:b4:d2:e3:20:fb:8c:09:ed:42:16:5e:d9:
01:e6:e7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:58 2023 by rpki-client on console-fra.rpki-client.org