Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/m4mpQXTIH7c3VKxQKcZttJ8lYw8.roa
File: m4mpQXTIH7c3VKxQKcZttJ8lYw8.roa (raw, json)
Hash identifier: Qh++tRcOjvZRKQsBpo1NcB+2JB+FxNRxBT7etFfvqnw=
Subject key identifier: 9B:89:A9:41:74:C8:1F:B7:37:54:AC:50:29:C6:6D:B4:9F:25:63:0F
Certificate issuer: /CN=f4db95f9d1b5c3ec934ff84d6ff7f01242da842a
Certificate serial: 0183C8618229E1EC8323A0F0713469E6B50B
Authority key identifier: F4:DB:95:F9:D1:B5:C3:EC:93:4F:F8:4D:6F:F7:F0:12:42:DA:84:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9NuV-dG1w-yTT_hNb_fwEkLahCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/m4mpQXTIH7c3VKxQKcZttJ8lYw8.roa
Signing time: Tue 11 Oct 2022 18:49:36 +0000
ROA not before: Tue 11 Oct 2022 18:49:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63023
IP address blocks: 45.142.216.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c8:61:82:29:e1:ec:83:23:a0:f0:71:34:69:e6:b5:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4db95f9d1b5c3ec934ff84d6ff7f01242da842a
Validity
Not Before: Oct 11 18:49:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b89a94174c81fb73754ac5029c66db49f25630f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ea:2a:07:c6:db:bc:41:8f:d9:29:d9:f7:3d:
fb:f8:08:9a:ee:85:13:a4:c5:78:2d:ac:1f:70:88:
5a:93:4c:d2:78:07:1a:bf:2a:b7:ac:1b:21:74:86:
ea:d8:48:93:ab:4e:62:83:6b:b1:98:7a:3e:3c:92:
78:ca:0e:2e:7d:da:82:ee:62:07:74:0c:24:42:44:
cc:36:23:5b:16:05:fa:e0:d7:ab:b6:d4:49:38:46:
73:9a:38:15:dd:8a:93:28:5e:49:2f:ae:09:7f:85:
3f:dc:5d:18:4f:f1:b3:ac:d8:af:60:c9:ce:f7:9c:
25:c1:11:d6:c2:e4:4c:cf:ce:70:af:88:98:ab:ec:
4c:d6:3b:04:69:8f:27:3c:08:65:71:6f:95:10:8c:
98:38:88:6c:25:a9:9a:47:1a:db:4d:4a:93:dc:88:
61:21:fa:88:a3:97:32:1f:9c:f9:4c:9f:4c:0e:dd:
a2:37:05:8a:03:c2:80:84:10:47:4c:cd:66:d1:76:
0f:01:56:38:21:a4:11:5e:d0:42:80:e4:40:b1:cf:
1c:89:a4:97:37:32:5d:96:02:c3:e0:c1:92:7d:ce:
0b:78:ec:d9:0d:04:1b:c3:52:53:58:c4:d1:06:12:
a4:e8:c0:99:b2:6a:14:d6:f0:88:ed:ee:ba:37:60:
c8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:89:A9:41:74:C8:1F:B7:37:54:AC:50:29:C6:6D:B4:9F:25:63:0F
X509v3 Authority Key Identifier:
keyid:F4:DB:95:F9:D1:B5:C3:EC:93:4F:F8:4D:6F:F7:F0:12:42:DA:84:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9NuV-dG1w-yTT_hNb_fwEkLahCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/m4mpQXTIH7c3VKxQKcZttJ8lYw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/46d7af-02fb-45f9-a922-14b38b6e00a7/1/9NuV-dG1w-yTT_hNb_fwEkLahCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.216.0/22
Signature Algorithm: sha256WithRSAEncryption
11:fe:83:03:03:8d:c1:77:b5:0c:af:1c:f6:1b:e9:74:29:b8:
55:e9:17:fe:fb:3d:33:4c:86:11:99:9b:25:88:54:32:1b:b8:
22:cb:28:75:1c:fb:10:f6:34:3a:a3:55:83:7f:83:e6:b4:5e:
9e:3c:f0:61:1b:5e:46:33:13:1d:01:ee:9c:fb:40:f5:50:0e:
07:4d:6e:25:f8:b7:a1:5a:e7:b1:3c:27:ce:93:bf:91:50:21:
6b:e1:c1:46:4d:83:4e:e4:16:e6:3e:af:32:06:42:b3:5d:cb:
0a:43:90:a0:6c:eb:f5:be:6b:53:cd:f7:54:ff:49:63:00:fc:
53:36:29:89:3c:1e:6f:f4:69:47:e0:b2:4e:9e:1d:87:74:8a:
80:84:74:61:81:e1:a5:38:b7:10:56:25:10:d3:9e:c4:f4:9d:
92:ee:59:a7:43:53:45:91:80:87:a0:01:86:54:7e:83:2a:1e:
27:1d:71:d1:f5:5a:3b:7e:31:6e:e3:09:9e:da:bf:65:9a:dc:
1f:ec:b0:cc:19:e6:eb:ba:1c:c4:78:db:b9:7f:36:c8:1a:82:
d0:94:29:f9:39:75:21:dc:d6:d2:00:70:a2:77:d0:af:a9:2e:
8a:ca:95:9f:c7:e8:73:d3:b9:47:19:84:f8:a9:b4:a8:53:4b:
09:b9:48:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:03 2023 by rpki-client on console-ams.rpki-client.org