Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/b1e1c5-621b-458a-8e53-de37a01c6c39/1/com-MjDCFUVQmhWxKk-n4Qk7IzM.roa
File: com-MjDCFUVQmhWxKk-n4Qk7IzM.roa (raw, json)
Hash identifier: y0BJYpt/pxvCu4elYHDzj7AFfW3+a2y4MLhUORZ1aFc=
Subject key identifier: 72:89:BE:32:30:C2:15:45:50:9A:15:B1:2A:4F:A7:E1:09:3B:23:33
Certificate issuer: /CN=07ff23644ee765f1731dbd559e608bdc0053c34b
Certificate serial: 0A9E
Authority key identifier: 07:FF:23:64:4E:E7:65:F1:73:1D:BD:55:9E:60:8B:DC:00:53:C3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B_8jZE7nZfFzHb1VnmCL3ABTw0s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/b1e1c5-621b-458a-8e53-de37a01c6c39/1/com-MjDCFUVQmhWxKk-n4Qk7IzM.roa
Signing time: Tue 18 Jan 2022 19:41:05 +0000
ROA not before: Tue 18 Jan 2022 19:41:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210546
IP address blocks: 45.132.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2718 (0xa9e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ff23644ee765f1731dbd559e608bdc0053c34b
Validity
Not Before: Jan 18 19:41:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7289be3230c21545509a15b12a4fa7e1093b2333
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:0d:13:23:29:68:47:a9:04:58:88:30:d2:d7:
a0:5f:8c:2f:ae:3e:d6:12:a0:0b:af:b2:45:9a:02:
5e:97:71:8c:39:0a:16:ad:33:6e:8d:e4:a2:93:4f:
68:4e:6c:eb:f7:43:a2:0e:d2:05:0f:27:2a:1a:b5:
76:af:1b:94:13:f7:ee:69:3c:fc:23:db:75:1c:62:
c5:97:c2:82:06:18:17:97:fb:65:73:ac:13:9d:24:
8e:24:0d:1a:37:2c:54:ce:e3:1d:dc:94:94:2e:e6:
57:69:88:ab:87:05:ae:b1:7c:76:2a:51:87:92:43:
05:12:85:78:1a:92:0f:4f:02:4c:85:c5:ed:dd:85:
a6:20:e3:bc:58:d6:16:13:7a:e6:27:7f:c6:6e:d3:
59:8c:1b:40:55:81:10:7e:1f:ef:30:48:0d:d9:03:
fa:60:77:a5:3a:32:d8:97:08:e8:d5:3c:de:9d:b6:
6c:70:d1:26:54:99:d3:1f:dc:6b:13:e2:8c:28:1e:
aa:f9:60:18:06:28:b0:ec:1c:ab:4f:01:35:f7:71:
0a:14:67:4b:e9:1c:59:c4:dc:e2:f4:75:4d:14:15:
b2:d1:08:9f:bc:4b:9f:43:2f:85:9e:62:a6:f1:ad:
99:44:55:0b:e7:4e:fe:76:e4:03:21:de:77:32:35:
a1:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:89:BE:32:30:C2:15:45:50:9A:15:B1:2A:4F:A7:E1:09:3B:23:33
X509v3 Authority Key Identifier:
keyid:07:FF:23:64:4E:E7:65:F1:73:1D:BD:55:9E:60:8B:DC:00:53:C3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B_8jZE7nZfFzHb1VnmCL3ABTw0s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b1e1c5-621b-458a-8e53-de37a01c6c39/1/com-MjDCFUVQmhWxKk-n4Qk7IzM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/b1e1c5-621b-458a-8e53-de37a01c6c39/1/B_8jZE7nZfFzHb1VnmCL3ABTw0s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.1.0/24
Signature Algorithm: sha256WithRSAEncryption
74:ee:80:a4:89:26:d9:c7:46:d6:3b:7a:05:6d:2e:49:d9:a4:
60:b5:02:2d:0e:6b:5d:a1:19:d7:e7:05:f1:92:24:dc:45:f1:
56:27:3e:ad:cd:3e:32:09:62:b4:52:64:d6:13:c2:e7:b6:26:
ad:18:4d:a2:dd:fa:cd:60:7c:69:fb:13:9b:db:b8:36:d0:53:
94:7d:93:6d:c0:57:e4:a8:0f:6a:a1:98:19:4c:4c:24:d8:71:
52:60:78:b4:bc:10:5c:b6:f4:c0:bd:d5:2e:ca:29:37:db:e5:
cc:9f:30:db:bc:88:49:fa:8e:af:86:eb:0c:30:14:62:ca:7f:
48:d3:dd:4c:b5:df:2a:3e:f4:c2:f3:32:21:34:20:b7:8b:89:
b2:d9:28:b8:cd:ee:80:89:fa:13:cf:6c:da:96:7e:e5:17:44:
07:42:1e:40:75:9e:5c:81:8b:96:64:1e:7f:a0:e4:d9:a1:00:
ef:b1:0c:1a:05:14:0e:d3:ee:cd:4a:63:37:45:ac:c9:d5:d8:
00:59:f8:08:f4:ac:15:cd:98:f6:98:18:6e:ca:d6:d9:15:be:
2e:c1:b1:de:eb:53:22:31:61:a9:67:db:1d:a2:84:69:b9:dc:
d3:64:4c:d2:d4:bb:6e:f8:2a:00:0f:90:01:ef:70:89:e3:c5:
f9:71:b5:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:02 2023 by rpki-client on console-ams.rpki-client.org