Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/8g9HP-4CFpizQhsU6bi2VgK__H4.roa
File: 8g9HP-4CFpizQhsU6bi2VgK__H4.roa (raw, json)
Hash identifier: HJIZxfJdt7kEQBJTItKk8XoZnyJ1sZsfp9uX2PpRc18=
Subject key identifier: F2:0F:47:3F:EE:02:16:98:B3:42:1B:14:E9:B8:B6:56:02:BF:FC:7E
Certificate issuer: /CN=096e293ba380dcc75f00106443668f51002555b7
Certificate serial: 086A2513
Authority key identifier: 09:6E:29:3B:A3:80:DC:C7:5F:00:10:64:43:66:8F:51:00:25:55:B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CW4pO6OA3MdfABBkQ2aPUQAlVbc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/8g9HP-4CFpizQhsU6bi2VgK__H4.roa
Signing time: Wed 15 Jun 2022 09:21:44 +0000
ROA not before: Wed 15 Jun 2022 09:21:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 31898
IP address blocks: 45.157.7.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141174035 (0x86a2513)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=096e293ba380dcc75f00106443668f51002555b7
Validity
Not Before: Jun 15 09:21:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f20f473fee021698b3421b14e9b8b65602bffc7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:a4:0d:1a:c0:18:3e:70:b7:2b:f7:48:03:9a:
70:e2:29:47:b8:96:c1:d1:bf:e4:ed:8e:67:ef:2d:
13:d3:e2:9e:a8:7d:34:3c:a8:a0:7d:c5:ad:89:cf:
8e:c7:77:c8:6a:94:8a:52:f1:40:ab:f7:61:6a:08:
81:5c:1e:af:53:ab:75:1c:c6:b1:25:a0:64:30:74:
96:21:c9:a1:a0:50:ed:81:ed:32:96:a0:11:97:b3:
12:28:42:1b:a0:48:97:62:d9:42:53:7e:0b:ec:62:
2c:42:6b:c2:cb:9d:ef:df:07:b8:39:45:f3:0b:28:
ef:d7:69:f8:d9:42:83:49:77:01:94:c9:ff:fc:c2:
80:17:b2:cf:ec:65:72:d1:ef:ba:dc:94:5f:17:98:
82:aa:08:36:e5:92:21:b9:bc:24:e6:87:21:56:7d:
df:ae:ed:6f:07:86:78:29:88:ba:47:29:0a:4b:1a:
81:e0:7f:28:cc:be:a8:1f:68:1c:26:df:7d:8a:d4:
fb:5f:91:e0:fb:5e:d6:63:4b:2d:ee:10:d0:a9:f8:
ba:97:dd:41:f3:97:53:30:8b:28:47:36:3a:33:ab:
68:7e:a8:a0:ab:e3:95:b0:9b:fa:c8:27:21:18:a0:
d6:2a:0c:c6:44:4e:35:03:78:2c:27:33:9c:9c:15:
ac:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:0F:47:3F:EE:02:16:98:B3:42:1B:14:E9:B8:B6:56:02:BF:FC:7E
X509v3 Authority Key Identifier:
keyid:09:6E:29:3B:A3:80:DC:C7:5F:00:10:64:43:66:8F:51:00:25:55:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CW4pO6OA3MdfABBkQ2aPUQAlVbc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/8g9HP-4CFpizQhsU6bi2VgK__H4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bdaeb7-52d5-49ff-9a4b-df05d489da17/1/CW4pO6OA3MdfABBkQ2aPUQAlVbc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.7.0/24
Signature Algorithm: sha256WithRSAEncryption
76:4f:a0:87:94:28:de:f4:f6:a3:3e:06:27:76:c4:1d:6c:1f:
34:94:3b:60:92:69:3f:8e:ff:b4:a4:fd:52:6a:b0:c6:b4:79:
9e:86:6e:53:ee:8f:40:c5:de:09:86:35:06:36:2a:36:28:2d:
40:2c:cd:f4:d2:10:0a:8e:73:bf:9f:fe:93:d8:2c:93:a8:1c:
37:69:37:71:63:c8:11:b7:9b:fe:aa:c6:51:5e:bd:93:8f:76:
19:23:14:c7:4a:83:e6:6b:5b:7d:38:64:5d:70:bc:6f:24:eb:
62:bf:5a:b5:4f:47:df:d4:19:c7:90:6d:02:2f:df:72:c7:bc:
d5:74:83:78:3b:50:13:19:59:85:22:f1:e8:99:33:e3:55:a3:
b1:ed:11:fb:5a:3f:74:d9:e7:17:10:e7:ed:6a:ae:b8:71:a4:
8a:83:60:5e:27:04:6f:33:e8:10:1f:b1:be:91:83:a8:dc:dd:
8c:4a:2d:52:a0:7e:0a:15:8b:51:10:2d:60:52:6f:f1:46:05:
46:95:e5:cc:e7:e4:e1:8c:84:55:56:70:2d:d6:59:07:ac:fc:
aa:ec:b7:ef:f4:20:c0:2d:97:41:fd:d7:58:db:77:8a:b3:f4:
28:a7:41:e9:b5:51:74:95:00:0f:84:7b:ff:62:83:17:93:e9:
e6:a1:9f:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:58 2023 by rpki-client on console-fra.rpki-client.org