Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/a5O6oB-VAHw1Z-4zP-mjnrDPlPs.roa
File: a5O6oB-VAHw1Z-4zP-mjnrDPlPs.roa (raw, json)
Hash identifier: vJJ0J5+Q/ERibn2V8bAXMULvVdC8/jgehCz6W1bdVTg=
Subject key identifier: 6B:93:BA:A0:1F:95:00:7C:35:67:EE:33:3F:E9:A3:9E:B0:CF:94:FB
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 029B162A
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/a5O6oB-VAHw1Z-4zP-mjnrDPlPs.roa
Signing time: Sat 02 Jul 2022 20:23:25 +0000
ROA not before: Sat 02 Jul 2022 20:23:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204457
IP address blocks: 45.156.29.0/24 maxlen: 24
45.156.31.0/24 maxlen: 24
45.156.30.0/24 maxlen: 24
45.94.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43718186 (0x29b162a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jul 2 20:23:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b93baa01f95007c3567ee333fe9a39eb0cf94fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:7d:78:b0:37:b3:1b:04:61:75:eb:28:f1:fc:
79:51:80:17:4b:76:dc:8d:ac:a7:f6:f4:d8:81:21:
0b:e2:68:78:59:a8:18:a2:83:f9:ad:7b:fe:1c:a9:
c6:69:97:13:43:69:d1:9d:a7:cd:89:bc:16:d6:d2:
a6:72:7a:19:aa:a7:02:d7:db:88:dd:8e:0a:50:37:
b6:d2:68:99:64:3b:c3:0d:41:7a:d0:89:27:49:9b:
1a:7e:8f:b1:4b:3d:f7:f5:57:37:e7:b2:c5:19:9c:
5a:30:59:6b:5c:2d:76:3d:50:41:db:be:ec:e8:a2:
4d:51:67:ae:87:c6:e6:26:78:44:a4:cf:fa:f8:c5:
81:0a:a7:45:02:76:b3:76:03:da:ba:be:0f:a5:20:
3b:0a:d4:75:2b:59:8f:57:b3:2e:89:f1:5d:29:60:
6e:b0:37:7f:bf:25:88:57:41:44:4d:26:05:69:07:
0f:ca:5a:36:d7:19:71:ae:d0:c1:af:6c:cd:0f:8e:
4e:2c:57:02:f0:2c:bb:c1:94:de:47:77:0e:9f:c4:
ed:9c:ac:e0:71:15:6b:8c:b4:3e:54:51:5f:e3:d9:
3b:01:b4:30:97:f7:d1:03:e4:e9:d0:62:b2:f0:b4:
24:32:32:cc:95:21:e2:e2:32:aa:b8:d5:0d:45:25:
3c:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:93:BA:A0:1F:95:00:7C:35:67:EE:33:3F:E9:A3:9E:B0:CF:94:FB
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/a5O6oB-VAHw1Z-4zP-mjnrDPlPs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.5.0/24
45.156.29.0-45.156.31.255
Signature Algorithm: sha256WithRSAEncryption
19:e2:5a:e6:d3:c7:2e:56:63:26:5e:fe:69:d9:05:36:e0:95:
fd:a5:6a:17:54:fb:ee:4b:ac:33:dd:23:e1:5b:b0:97:2e:9c:
37:e6:10:4d:ee:ce:52:37:fa:8c:cb:04:ee:ea:21:6c:d3:e2:
86:13:c9:f5:0c:df:46:07:b0:fd:9e:e8:92:29:a6:63:7d:62:
40:70:39:5d:c8:7e:8f:35:51:bf:47:48:7f:be:24:2b:6f:39:
05:67:5a:20:aa:c6:3f:36:39:9f:bf:86:c7:4e:e5:27:7f:3a:
82:f5:a8:33:68:e1:7f:92:30:53:c7:a7:a9:be:b5:9b:c4:06:
36:4a:b1:3f:c2:66:f0:a6:ba:1b:5b:0a:ac:f7:2a:06:fc:01:
74:07:80:76:3b:3d:d3:dd:b0:1c:08:fa:f5:44:f2:0b:c8:ad:
8d:15:32:24:63:5f:e4:39:3e:d2:e9:3f:e4:18:92:90:61:e4:
64:2c:4c:a3:59:f3:77:cd:2d:c3:e9:1e:42:14:97:45:25:75:
88:6e:c9:44:1f:9e:cd:ff:5e:60:ee:09:d8:5b:be:e3:81:ac:
c8:57:0f:4d:44:14:dd:84:b3:c2:d3:b6:98:d5:a6:1b:e4:a3:
e3:03:32:50:b7:0d:89:87:ea:8b:6f:97:18:5d:09:3c:9e:3e:
04:ea:ea:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org