Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/454412-c062-4b45-a644-a038ef1eff39/1/IriIlVt20TOtzzi9FoPc-ye0qIs.roa
File: IriIlVt20TOtzzi9FoPc-ye0qIs.roa (raw, json)
Hash identifier: x/tF5NsRo98z5CH8dOkKJqFaqD8ynGjmEj5ohaIRswU=
Subject key identifier: 22:B8:88:95:5B:76:D1:33:AD:CF:38:BD:16:83:DC:FB:27:B4:A8:8B
Certificate issuer: /CN=45ed111630e05297795dddd298ea1fb29e695c53
Certificate serial: 016FEF
Authority key identifier: 45:ED:11:16:30:E0:52:97:79:5D:DD:D2:98:EA:1F:B2:9E:69:5C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Re0RFjDgUpd5Xd3SmOofsp5pXFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/454412-c062-4b45-a644-a038ef1eff39/1/IriIlVt20TOtzzi9FoPc-ye0qIs.roa
Signing time: Thu 28 Apr 2022 08:55:46 +0000
ROA not before: Thu 28 Apr 2022 08:55:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 680
IP address blocks: 141.64.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94191 (0x16fef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=45ed111630e05297795dddd298ea1fb29e695c53
Validity
Not Before: Apr 28 08:55:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22b888955b76d133adcf38bd1683dcfb27b4a88b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:10:14:ad:5f:ac:ef:6c:97:f6:59:93:a2:7b:
55:de:9b:a4:ad:60:b6:3f:53:e9:b6:31:e6:ab:d8:
1f:0d:bc:29:bb:12:17:2b:a9:06:69:08:b0:65:f8:
44:af:22:00:0b:c6:c9:44:c2:f3:90:17:6f:47:f8:
04:42:a6:02:eb:94:ed:2a:2f:c2:7f:b5:65:b6:8c:
5e:67:b7:02:b5:82:d9:3a:7d:96:6a:4c:7b:e4:ec:
dd:19:2a:b6:27:88:72:f1:65:1b:1f:40:dc:34:69:
c5:e9:b9:18:66:03:bd:85:98:95:bc:9f:bf:cc:04:
8c:08:b9:39:e3:4c:61:67:d4:52:d0:b5:aa:8b:07:
88:99:2c:bd:84:05:c4:0b:db:13:cf:3b:13:d9:86:
cf:54:24:ab:11:5b:14:4b:8c:cf:fd:08:a0:af:b5:
5e:1f:a3:ed:eb:2e:01:9d:16:95:94:06:f5:df:c0:
ee:62:16:55:a6:00:b4:36:a8:2c:7c:f3:ca:5b:47:
a0:67:c3:7d:23:43:53:24:8c:d3:37:c5:bd:df:4f:
0d:65:f1:10:3b:ff:86:22:58:8c:6f:61:7e:f0:d7:
ca:da:ee:24:d7:77:84:a8:e2:5c:d9:13:a2:ef:f4:
de:a4:92:3c:f3:75:bc:c8:d3:1c:9e:37:76:d7:a4:
e8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:B8:88:95:5B:76:D1:33:AD:CF:38:BD:16:83:DC:FB:27:B4:A8:8B
X509v3 Authority Key Identifier:
keyid:45:ED:11:16:30:E0:52:97:79:5D:DD:D2:98:EA:1F:B2:9E:69:5C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Re0RFjDgUpd5Xd3SmOofsp5pXFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/454412-c062-4b45-a644-a038ef1eff39/1/IriIlVt20TOtzzi9FoPc-ye0qIs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/454412-c062-4b45-a644-a038ef1eff39/1/Re0RFjDgUpd5Xd3SmOofsp5pXFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
141.64.0.0/16
Signature Algorithm: sha256WithRSAEncryption
08:f3:74:a3:c7:8d:ac:a7:c2:03:f8:2a:d0:57:34:df:d4:fb:
60:61:20:f2:27:79:75:c0:56:a5:47:8c:ec:61:85:02:3d:83:
b1:3b:ce:9f:92:7a:ae:cf:e7:75:43:71:0b:96:71:55:9f:f8:
d3:f5:a3:71:0a:ce:45:fe:d0:ad:45:41:ae:1c:af:fc:38:8e:
07:a9:e3:47:fd:f5:be:81:44:a8:1c:d3:c5:ff:4f:6b:93:ec:
1e:20:69:74:c6:05:60:93:6d:1d:49:ba:a7:e3:88:78:d9:89:
44:cf:65:c2:32:5b:ba:9d:21:3c:b3:69:28:ab:b1:46:6f:f0:
c6:ee:b0:27:80:30:4c:01:46:0a:e0:35:0c:3b:69:1b:9e:cb:
9e:7e:24:2c:0c:5a:5c:6f:5f:63:7c:c3:fb:f6:e2:00:04:5e:
8b:f4:75:fa:47:cd:cc:54:d8:9f:3c:88:63:7d:62:cd:78:51:
4e:45:a5:48:d8:f3:d2:a6:82:e6:b7:d2:77:1c:1a:8d:c4:8d:
ed:26:99:08:91:20:a4:4a:6d:53:ed:d2:4f:b0:90:4f:b4:0e:
39:63:98:23:a6:20:35:c1:12:68:56:85:53:4b:df:ff:df:5f:
24:b1:30:a7:1e:69:b9:72:1f:ee:41:61:94:2d:c9:64:20:ff:
15:4a:76:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:19 2023 by rpki-client on console-fra.rpki-client.org