Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/Vw9LSyh_5QVzUU0emLePZJo8B_c.roa
File: Vw9LSyh_5QVzUU0emLePZJo8B_c.roa (raw, json)
Hash identifier: Rk46f8brQk5iVHJZ5tmU6cGXx/szdFYFhbzk9K4KUoE=
Subject key identifier: 57:0F:4B:4B:28:7F:E5:05:73:51:4D:1E:98:B7:8F:64:9A:3C:07:F7
Certificate issuer: /CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Certificate serial: 068E303B
Authority key identifier: 1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/Vw9LSyh_5QVzUU0emLePZJo8B_c.roa
Signing time: Fri 08 Apr 2022 04:25:22 +0000
ROA not before: Fri 08 Apr 2022 04:25:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.146.160.0/24 maxlen: 24
45.146.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109981755 (0x68e303b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Validity
Not Before: Apr 8 04:25:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=570f4b4b287fe50573514d1e98b78f649a3c07f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:de:4b:41:5f:a0:66:70:14:69:87:92:2c:96:
c1:2b:dd:d9:5f:2d:c1:ca:51:a7:21:87:96:78:52:
db:33:ca:5e:73:a6:cf:bb:17:e0:bd:16:d9:a0:13:
24:88:1a:41:37:ce:9b:88:8e:72:2a:b1:56:7e:9c:
48:bd:56:c6:0a:01:3c:ed:bd:47:d7:69:85:a7:e4:
01:0a:ea:af:24:2a:c2:0c:98:98:3a:d8:01:3d:4e:
14:ee:9d:c5:2a:3b:0f:2d:87:d8:cc:b6:0c:3e:12:
10:34:d2:33:d7:dc:05:84:b0:22:70:40:62:07:0b:
e3:60:9c:4d:9c:72:be:1d:94:85:44:09:26:bb:5c:
38:0e:e9:c6:be:fb:8d:d4:91:22:90:4d:33:d9:44:
48:32:43:95:5e:01:bb:d0:74:57:19:56:06:fc:b7:
5a:78:27:65:85:f8:e3:2b:a9:a1:65:3a:c6:70:82:
d9:9e:ff:f4:cb:60:1a:92:65:16:39:73:62:8a:2d:
7f:07:11:58:bc:b7:a3:ad:7b:7e:e8:cb:a8:30:71:
ae:ac:7d:5e:03:4c:38:25:e9:0c:5e:23:6b:b9:9a:
ba:99:5f:bb:4d:bb:f8:be:27:25:0b:93:ec:57:15:
96:7b:9a:04:02:51:1c:e0:fc:b0:e7:06:aa:18:be:
0f:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0F:4B:4B:28:7F:E5:05:73:51:4D:1E:98:B7:8F:64:9A:3C:07:F7
X509v3 Authority Key Identifier:
keyid:1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/Vw9LSyh_5QVzUU0emLePZJo8B_c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/HVrzriH5fsTsddUahaPhYu16ntc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.160.0/23
Signature Algorithm: sha256WithRSAEncryption
36:51:37:28:da:2e:1b:c0:95:48:80:14:27:29:86:38:99:76:
d3:37:63:0d:2c:55:52:c9:b5:b7:e1:c0:59:20:33:54:c0:2e:
eb:90:c2:bc:c8:26:b3:97:58:e7:2b:23:fa:3a:37:02:4d:9e:
88:0e:77:63:b2:e4:d8:2d:0e:92:ad:78:d5:24:d3:a3:50:0d:
41:61:9a:40:32:e3:be:b3:6c:d6:f1:ec:5a:37:d0:02:df:b6:
42:f1:fe:0f:88:79:b3:17:4e:b7:80:08:1f:dd:fd:34:11:18:
e7:10:c3:ef:c4:e0:93:8b:d5:5e:60:ac:01:07:65:7f:92:38:
8c:cb:c0:b7:77:09:59:7e:7c:a1:13:04:45:b4:15:86:33:d2:
2e:ac:57:2e:3f:6a:fd:f7:d7:4b:e7:96:68:9a:e7:b1:ad:9d:
bc:54:d3:ce:02:bf:71:38:bd:cd:df:95:87:3d:58:13:14:09:
1f:ce:32:6c:ae:cc:7f:1e:e1:03:80:da:5c:7d:f1:71:7f:8d:
fe:14:f1:23:da:b0:ec:f4:78:39:bf:25:36:35:1d:d7:00:4f:
c2:7a:6d:50:05:63:ee:9c:82:5b:d6:0a:c1:43:01:0d:d3:bd:
1b:a6:af:13:8d:78:d6:9b:80:4f:ef:f1:82:0c:5b:ac:f3:df:
a5:27:ef:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-ams.rpki-client.org