Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/a5ecd4-6579-4b26-8f13-df4033502d88/1/B02nqyCUIn2EhXFpiC2-bpLwWq4.roa
File: B02nqyCUIn2EhXFpiC2-bpLwWq4.roa (raw, json)
Hash identifier: 8Vw3sZc6zHUdwn0EfbbEfZEH3xE6mbIVaqGPmlW5kBY=
Subject key identifier: 07:4D:A7:AB:20:94:22:7D:84:85:71:69:88:2D:BE:6E:92:F0:5A:AE
Certificate issuer: /CN=0e6661a5628c4512932182bdbda7f9272702b8e1
Certificate serial: 32B948
Authority key identifier: 0E:66:61:A5:62:8C:45:12:93:21:82:BD:BD:A7:F9:27:27:02:B8:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DmZhpWKMRRKTIYK9vaf5JycCuOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/a5ecd4-6579-4b26-8f13-df4033502d88/1/B02nqyCUIn2EhXFpiC2-bpLwWq4.roa
Signing time: Wed 02 Feb 2022 16:54:49 +0000
ROA not before: Wed 02 Feb 2022 16:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 45.86.86.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3324232 (0x32b948)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e6661a5628c4512932182bdbda7f9272702b8e1
Validity
Not Before: Feb 2 16:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=074da7ab2094227d84857169882dbe6e92f05aae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:35:46:15:8d:1f:94:55:b3:23:2f:a9:02:e7:
88:da:88:c4:38:7e:73:73:48:c7:d4:1b:63:c6:4c:
74:a3:e8:fe:d0:cc:a7:06:e6:4a:57:73:e4:4d:fe:
38:ab:2c:67:e6:33:aa:c8:a6:2b:58:c7:f1:77:f6:
11:d4:f7:4e:05:9d:d0:46:54:03:7b:13:23:cb:f7:
ea:51:d1:87:dc:0a:99:23:b0:aa:52:13:67:bb:ff:
c2:49:41:70:8d:d5:7d:d9:32:cb:18:ce:a1:6f:77:
98:1f:2d:b6:6d:34:0b:e2:da:74:df:cd:5e:c2:ad:
85:e9:40:db:94:b8:11:b6:c4:61:e3:a9:20:07:1f:
7f:b8:bd:b0:c9:d1:1c:f6:29:9b:ea:70:64:88:98:
46:2a:f8:8e:12:4e:52:c0:58:8d:c8:a9:13:6b:0b:
5d:fc:9c:56:db:cf:65:24:04:6f:06:b4:18:f5:a5:
32:db:70:1c:5d:6b:3b:cd:9b:a6:65:01:4e:dc:a3:
0f:e2:07:8e:5a:11:8b:70:d0:de:e3:6c:1e:48:4e:
dd:5a:7c:d8:f1:fb:5b:d8:78:2a:73:57:f0:14:f9:
23:62:46:4f:d6:da:3a:c4:ec:4b:2e:21:10:6d:06:
cb:1f:6d:6c:46:bc:22:11:b1:e3:29:9f:97:27:04:
01:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:4D:A7:AB:20:94:22:7D:84:85:71:69:88:2D:BE:6E:92:F0:5A:AE
X509v3 Authority Key Identifier:
keyid:0E:66:61:A5:62:8C:45:12:93:21:82:BD:BD:A7:F9:27:27:02:B8:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DmZhpWKMRRKTIYK9vaf5JycCuOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a5ecd4-6579-4b26-8f13-df4033502d88/1/B02nqyCUIn2EhXFpiC2-bpLwWq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/a5ecd4-6579-4b26-8f13-df4033502d88/1/DmZhpWKMRRKTIYK9vaf5JycCuOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.86.0/24
Signature Algorithm: sha256WithRSAEncryption
51:79:32:a9:3a:bb:61:2d:ad:67:10:77:c5:3f:39:f2:40:ef:
8a:09:74:cc:ca:66:1f:3c:72:f5:60:a3:d6:f9:6d:2f:df:b6:
db:f5:a2:46:b4:5c:9b:34:83:9c:04:4f:c8:4e:1f:e2:3b:7d:
00:6a:86:37:48:1f:8c:0c:ee:8f:d8:4f:61:98:35:57:b4:08:
ac:9a:06:ee:35:57:e6:68:f9:c2:38:aa:7d:46:2d:51:18:af:
6d:6f:b4:96:28:a0:4b:5e:c1:8e:cb:78:02:49:39:f4:55:47:
7e:49:bd:07:14:56:8b:e1:ba:a9:4d:81:bc:85:5c:5b:5a:62:
89:18:1e:dc:70:f4:94:28:05:00:6b:e0:ee:6d:13:53:cb:7d:
68:ad:95:29:0f:dd:93:b6:4a:d8:3f:4e:1e:c0:33:02:5f:b1:
5b:b2:58:d4:d6:17:ec:91:cc:e8:f4:3c:51:f8:76:70:6f:67:
f6:98:d9:99:aa:61:cf:e6:24:e7:dd:6e:22:73:7f:67:8d:13:
5e:17:29:17:43:84:89:a2:5c:d1:ef:f8:a1:19:36:4c:d8:fe:
80:12:28:ba:c2:f4:f9:6e:a7:19:b0:7f:21:ea:90:0f:19:fb:
be:7d:2e:9a:7d:77:de:b4:67:9d:d0:97:da:f0:69:18:9d:a9:
8e:4d:77:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:18 2023 by rpki-client on console-ams.rpki-client.org