Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/1MBfIpRT4IObZG39pwn3gdAHoNI.roa
File: 1MBfIpRT4IObZG39pwn3gdAHoNI.roa (raw, json)
Hash identifier: M9gAoS665r3PEaI1kKbSsey2vQgbaKVKFEgNFPGT38I=
Subject key identifier: D4:C0:5F:22:94:53:E0:83:9B:64:6D:FD:A7:09:F7:81:D0:07:A0:D2
Certificate issuer: /CN=6832c32d2259013991260d530d9120031aaefcd0
Certificate serial: 0182CAC80BDA7149905BF0547C6392B698EB
Authority key identifier: 68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/1MBfIpRT4IObZG39pwn3gdAHoNI.roa
Signing time: Tue 23 Aug 2022 12:58:03 +0000
ROA not before: Tue 23 Aug 2022 12:58:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 145.46.170.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ca:c8:0b:da:71:49:90:5b:f0:54:7c:63:92:b6:98:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6832c32d2259013991260d530d9120031aaefcd0
Validity
Not Before: Aug 23 12:58:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d4c05f229453e0839b646dfda709f781d007a0d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7c:f9:75:af:30:99:03:00:56:db:a5:7a:00:
51:74:74:ea:2b:5d:b2:17:5f:2d:f1:2f:cb:97:d8:
4d:f6:63:7d:c3:92:3f:9d:ea:58:86:cd:76:89:ea:
f2:7f:ef:e0:0a:e9:fb:96:4c:aa:ef:cb:fc:92:fb:
a2:45:2a:94:77:23:74:5f:aa:c4:b3:f7:cd:24:4e:
74:f1:9b:58:25:58:ad:bc:a9:20:75:65:25:f6:34:
ad:dc:db:da:45:5d:ca:06:f8:69:af:39:57:52:4a:
c7:d9:25:6e:b5:ae:7f:a5:ad:98:73:e1:e9:31:85:
68:f0:21:d8:15:18:9f:e9:b9:b5:2e:21:9c:26:9c:
fb:10:be:3e:fb:76:e6:22:81:27:34:d5:57:c4:5f:
c9:12:b6:0a:22:91:e1:23:09:f4:64:68:74:ab:60:
e2:69:d0:5a:5a:e6:c5:c4:a2:80:a8:ce:10:ac:3f:
96:95:41:24:dd:52:51:ef:25:bf:44:ae:97:a0:0b:
79:9f:d3:e1:2d:95:94:05:11:8a:65:39:94:c7:3d:
d9:45:29:18:cb:ac:ff:98:9e:ec:52:04:e5:45:a2:
17:c6:56:7a:a9:13:d1:b9:aa:2c:00:dc:c7:cd:31:
30:ea:67:c9:33:87:57:25:8e:08:0a:7c:9d:e0:00:
12:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:C0:5F:22:94:53:E0:83:9B:64:6D:FD:A7:09:F7:81:D0:07:A0:D2
X509v3 Authority Key Identifier:
keyid:68:32:C3:2D:22:59:01:39:91:26:0D:53:0D:91:20:03:1A:AE:FC:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDLDLSJZATmRJg1TDZEgAxqu_NA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/1MBfIpRT4IObZG39pwn3gdAHoNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/94b66e-3e0d-4332-ab4f-770f8eab2ae7/1/aDLDLSJZATmRJg1TDZEgAxqu_NA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.46.170.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:c1:5f:4b:65:14:a0:c8:8a:90:8c:90:e3:17:e7:15:30:b1:
1c:8d:6d:1e:3d:64:d7:5d:f7:e3:46:a1:91:8c:56:22:a0:97:
1e:b9:ab:47:97:bc:ae:7a:6f:e9:ad:0d:5f:65:b1:a1:fa:e7:
28:9a:60:7d:be:27:58:18:01:d4:c2:5e:2a:98:17:10:66:25:
82:a7:b8:a4:c5:c4:16:e0:70:48:34:5f:09:8e:81:cd:83:9c:
95:cc:f4:8a:74:09:58:70:55:e6:51:4a:15:a0:09:f2:7e:36:
72:35:96:c1:4e:65:8f:44:2b:f3:07:56:9b:bc:86:6e:ff:6b:
b1:db:cc:47:42:d7:bc:c9:cd:29:a7:57:82:79:a1:a3:89:da:
d1:2c:2a:b6:ee:2b:0e:ad:f8:68:be:cc:64:d9:b2:62:a6:a4:
43:77:49:05:2a:8b:84:9b:59:de:91:be:7a:aa:3a:e8:a9:dd:
9e:7f:ad:48:ce:b3:e2:63:27:43:74:c3:38:b1:a1:b4:a2:44:
2a:14:92:f4:47:27:ef:8e:04:3a:ad:19:fa:36:a5:17:0a:86:
7e:41:57:ac:4b:39:71:98:47:b2:ca:e6:74:7f:d5:97:fc:d9:
35:ea:37:76:1b:8b:4e:3b:f0:f0:60:98:87:38:33:0a:1b:cf:
59:1a:cd:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:25 2023 by rpki-client on console-ams.rpki-client.org