Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/RElNhxb9mr3ob2-jgC9ZBWrLyc8.roa
File: RElNhxb9mr3ob2-jgC9ZBWrLyc8.roa (raw, json)
Hash identifier: mP+Ci1u63rUzAyNJoiTJSg8P+LHtdBNJ9e7WboUeg5o=
Subject key identifier: 44:49:4D:87:16:FD:9A:BD:E8:6F:6F:A3:80:2F:59:05:6A:CB:C9:CF
Certificate issuer: /CN=0cebbfaaec24039b41eba56bb1caa51677d21c70
Certificate serial: 043C1259
Authority key identifier: 0C:EB:BF:AA:EC:24:03:9B:41:EB:A5:6B:B1:CA:A5:16:77:D2:1C:70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DOu_quwkA5tB66VrscqlFnfSHHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/RElNhxb9mr3ob2-jgC9ZBWrLyc8.roa
Signing time: Sat 01 Jan 2022 11:55:10 +0000
ROA not before: Sat 01 Jan 2022 11:55:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208493
IP address blocks: 45.129.116.0/22 maxlen: 22
45.129.117.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71045721 (0x43c1259)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0cebbfaaec24039b41eba56bb1caa51677d21c70
Validity
Not Before: Jan 1 11:55:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=44494d8716fd9abde86f6fa3802f59056acbc9cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c3:9d:f8:a1:24:76:60:d5:9f:c0:d7:21:14:
55:7e:55:9c:bd:dc:ca:2d:00:2d:a1:b1:c8:fe:de:
ef:cb:38:d0:b3:73:73:b5:60:77:1c:4a:d9:7b:dc:
e5:a8:a6:a0:9c:d0:d3:36:ee:2e:f1:e6:c9:ce:02:
01:19:60:d3:7e:a6:71:93:a1:05:e4:41:41:81:62:
27:7f:55:c8:58:93:b5:ff:33:b6:50:50:b9:de:9f:
23:16:73:0b:e5:8b:51:a9:98:40:38:f7:7f:71:5a:
96:b5:d6:2e:ec:7d:1e:cf:6a:fe:cb:44:25:98:37:
a4:21:6f:e5:df:81:10:80:22:f3:b2:4b:29:96:c0:
a6:70:68:96:7b:32:2b:d9:17:f3:48:35:82:b1:37:
ea:e7:a0:19:8a:64:e5:a5:3e:24:cf:11:a2:97:4b:
8e:02:7f:e3:52:68:20:ce:b7:ba:82:9e:c0:9a:ce:
64:a1:2d:e6:a0:68:cf:0f:59:d9:c8:e5:f9:69:e2:
a1:f8:e4:8a:cd:c0:2d:b5:41:8d:50:76:6d:24:7a:
67:f0:2b:71:60:f1:e1:09:9b:8f:1f:aa:5e:c4:d0:
f8:9e:3f:c3:01:b4:0b:a9:4c:a4:45:13:bc:1a:6b:
d0:15:13:48:cd:3e:dd:1a:e4:b5:03:45:33:f3:8e:
52:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:49:4D:87:16:FD:9A:BD:E8:6F:6F:A3:80:2F:59:05:6A:CB:C9:CF
X509v3 Authority Key Identifier:
keyid:0C:EB:BF:AA:EC:24:03:9B:41:EB:A5:6B:B1:CA:A5:16:77:D2:1C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DOu_quwkA5tB66VrscqlFnfSHHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/RElNhxb9mr3ob2-jgC9ZBWrLyc8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/c23ca3-b327-4ed2-a5bb-b16e683dbe27/1/DOu_quwkA5tB66VrscqlFnfSHHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.129.116.0/22
Signature Algorithm: sha256WithRSAEncryption
05:28:d6:80:6b:5e:d8:6d:e0:f5:f2:33:26:7d:39:51:fd:e5:
2b:9f:52:db:b4:4a:51:db:d5:93:62:74:bb:58:19:b7:9a:ea:
7d:99:4a:02:dc:a7:45:9f:83:a0:fe:e3:4a:34:c0:b6:2d:b0:
f6:09:53:cd:1f:3f:98:13:fe:5e:f6:74:81:1d:15:3e:b3:69:
a0:9c:a9:db:7b:cb:ac:0f:a9:70:b8:e3:4d:63:e5:4b:28:6d:
9c:22:3c:d1:f1:1b:50:19:e2:19:07:11:35:04:b4:63:4a:bd:
9e:46:89:da:f6:f4:73:03:b1:a6:f7:28:b0:66:65:f8:7b:4b:
26:48:60:9a:87:85:03:ab:9c:e5:9e:3d:90:74:14:5d:8c:13:
62:e2:fd:5c:a9:5e:f5:3b:51:61:99:f2:bc:be:6c:44:77:7b:
41:f2:41:06:b0:e1:6a:16:d3:a9:3e:27:32:6f:90:ee:04:bd:
1e:be:42:c2:7f:6c:47:16:44:3f:7b:3d:8d:50:95:48:b0:ab:
a8:ca:25:71:b6:64:ce:7c:91:ca:0a:16:0d:af:91:3b:00:e5:
84:0d:06:6a:64:dc:88:6c:44:56:80:44:5a:bb:de:e8:56:d8:
be:80:45:30:07:42:4c:e8:bc:f5:de:7e:3d:d6:63:43:36:43:
1f:c4:92:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:38 2023 by rpki-client on console-ams.rpki-client.org