Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/kOlTSdr8fydYEMUEWlRzXbGcns8.roa
File: kOlTSdr8fydYEMUEWlRzXbGcns8.roa (raw, json)
Hash identifier: ZkULwOby6Wz06v1r3lxfxe7u+5j+gLziwbjw6cJc/Ck=
Subject key identifier: 90:E9:53:49:DA:FC:7F:27:58:10:C5:04:5A:54:73:5D:B1:9C:9E:CF
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 016D0515
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/kOlTSdr8fydYEMUEWlRzXbGcns8.roa
Signing time: Mon 13 Jun 2022 10:40:16 +0000
ROA not before: Mon 13 Jun 2022 10:40:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398465
IP address blocks: 45.156.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23921941 (0x16d0515)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jun 13 10:40:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90e95349dafc7f275810c5045a54735db19c9ecf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:29:df:8f:cf:10:05:19:96:4f:5a:49:9f:05:
0e:11:d9:6c:93:32:6f:de:d5:a9:3b:29:7c:03:56:
4d:88:10:62:73:18:73:2d:d4:84:8e:01:70:f0:3b:
2c:ee:25:bf:cb:9b:10:b8:68:da:5f:6f:94:9b:95:
e0:da:48:a8:54:0c:fb:40:55:c1:8e:f0:81:4f:4d:
9e:e6:e6:c3:5c:8e:53:59:ab:f1:ee:dd:5b:25:0c:
f6:b8:90:b0:97:5b:45:c2:56:a8:3e:19:50:c2:8d:
fc:1f:f9:80:c4:f1:f4:43:c9:2e:a9:42:fd:ac:ca:
02:4a:c1:29:cb:b3:08:30:c7:fd:43:d3:d5:c4:38:
ff:ee:b6:36:1d:e4:ae:26:de:f5:18:f2:e8:fd:6f:
9a:08:e7:77:4b:94:65:33:3c:8b:6f:d3:e9:8e:7c:
07:dc:87:84:f9:1e:c0:51:f3:fe:44:ad:c0:97:83:
21:8c:98:69:bd:c5:0d:98:26:ec:23:33:7f:8a:8c:
2e:96:3f:d9:96:68:0a:94:cc:be:9e:b2:84:8a:79:
b9:1a:70:cb:de:4f:f5:2b:92:34:a0:3d:d8:d0:b3:
52:83:3e:b5:51:6c:74:fe:66:0f:df:dc:9b:8a:36:
08:70:a3:97:da:9e:6c:db:9e:80:8a:d7:ab:dd:0b:
4f:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:E9:53:49:DA:FC:7F:27:58:10:C5:04:5A:54:73:5D:B1:9C:9E:CF
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/kOlTSdr8fydYEMUEWlRzXbGcns8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.145.0/24
Signature Algorithm: sha256WithRSAEncryption
70:32:aa:61:eb:df:25:db:5f:9a:37:a4:0d:38:0e:17:1a:3e:
8c:c7:c3:7d:20:10:7a:2b:32:97:22:59:4f:8d:98:44:4b:3f:
ba:ee:9a:fa:50:9e:c6:79:2c:8e:56:1f:aa:29:31:58:3d:95:
55:2f:2c:a1:98:72:de:f9:86:71:37:45:e3:45:1b:b7:b2:44:
8c:3d:67:72:35:fe:24:ae:4b:23:fc:57:7b:e2:a1:e6:de:ca:
2a:40:49:47:f1:7c:94:a3:f3:41:91:52:2e:b8:0d:b3:64:95:
64:70:9d:75:f9:ee:76:8c:c6:e3:dd:0e:98:2f:69:96:0c:f8:
05:94:6f:35:02:2d:79:e5:23:df:2a:0a:3c:f1:c3:91:aa:2a:
94:74:64:0b:7f:8b:44:1e:c7:27:88:9f:68:28:9d:59:7a:a1:
9b:11:ca:12:28:59:e7:dc:58:13:71:15:2d:89:5f:18:c8:8b:
e6:46:0d:ce:d7:ea:58:60:95:b0:b1:1b:64:54:df:e9:41:57:
94:eb:7f:80:4b:1b:95:9f:17:2e:96:0b:99:d6:a2:9b:fb:35:
50:61:f2:df:6c:45:c6:69:5b:6e:75:69:8f:86:d6:72:8e:33:
a5:f3:a5:92:ec:5f:82:d2:f9:ad:01:7a:8d:c8:78:a0:c9:45:
09:0f:fc:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org