Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/5s7HOswdXl7gD7-JmmHfcZRqs2Y.roa
File: 5s7HOswdXl7gD7-JmmHfcZRqs2Y.roa (raw, json)
Hash identifier: ZnwRXnSGr/VSR557G4NjrS7evIfd3Q9dD2vg81OmwT4=
Subject key identifier: E6:CE:C7:3A:CC:1D:5E:5E:E0:0F:BF:89:9A:61:DF:71:94:6A:B3:66
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09367104
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/5s7HOswdXl7gD7-JmmHfcZRqs2Y.roa
Signing time: Sat 01 Jan 2022 06:00:26 +0000
ROA not before: Sat 01 Jan 2022 06:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
185.117.1.0/24 maxlen: 24
45.91.250.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154562820 (0x9367104)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6cec73acc1d5e5ee00fbf899a61df71946ab366
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:92:45:56:7e:9b:df:fb:c7:16:f0:3f:91:f6:
c0:b3:43:20:e4:9c:ce:ba:e5:79:20:86:61:78:6a:
0a:8c:0c:fb:e0:43:af:1d:9f:db:5b:e3:97:4d:cb:
a9:3e:63:6b:1b:4c:14:98:b8:a3:e4:f7:1b:c7:0a:
5c:4b:c1:a7:ea:c8:1e:8d:d7:3a:3c:f3:52:91:f5:
35:79:78:8c:ab:b9:46:27:7a:7e:4a:e8:d3:10:d1:
60:47:23:c0:af:e0:8a:3d:c8:77:e9:df:97:cf:1d:
86:68:e0:a1:77:22:5f:72:a1:c6:6e:84:79:b7:91:
7d:8e:4c:75:68:ad:f8:d7:f5:68:05:b5:f4:d5:3f:
ca:7f:a7:57:e8:49:28:f8:26:a3:0a:f5:68:61:0f:
fe:91:19:2b:c3:32:35:83:9a:12:3e:60:4e:5f:2d:
21:7b:da:8c:8a:60:7d:0e:54:a6:9f:0a:fe:46:4b:
07:62:85:da:29:df:c6:8e:f9:2f:66:74:da:df:cb:
44:6c:44:0b:a7:b1:0d:d0:58:08:ab:d3:2d:a2:29:
bc:87:21:58:c7:4a:1f:04:95:31:63:22:36:d9:82:
69:89:f6:8a:1a:c9:79:86:a7:2d:77:c2:f4:25:bb:
b3:bc:8f:5d:54:cc:6b:8c:99:7c:bc:1d:ff:d5:65:
68:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:CE:C7:3A:CC:1D:5E:5E:E0:0F:BF:89:9A:61:DF:71:94:6A:B3:66
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/5s7HOswdXl7gD7-JmmHfcZRqs2Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.124.0/22
45.91.250.0/24
185.117.1.0/24
Signature Algorithm: sha256WithRSAEncryption
81:1a:18:b5:65:f5:e1:64:87:9b:95:62:bc:c0:ec:d6:e7:b0:
fe:2b:0c:0b:9a:63:7e:5f:c5:6f:18:bf:85:f2:65:31:fb:ea:
15:fc:7a:52:96:9d:16:c6:0f:a4:7b:15:87:03:f4:cc:11:5d:
ed:a4:ee:76:ea:57:66:f7:eb:e1:e3:5c:75:b1:9d:3b:20:46:
6f:fe:e3:e7:42:6d:af:5d:3e:e2:52:08:a1:37:34:77:82:95:
50:39:85:08:e8:a7:f7:f3:22:a3:75:fd:fd:d1:10:92:90:94:
86:71:2b:98:84:68:e6:0f:4d:3d:f6:24:cd:57:46:23:5d:00:
d9:50:10:f0:fb:c8:72:a4:5f:45:99:76:7c:5e:51:32:fb:2b:
6d:6f:dd:c7:1b:62:47:10:a3:d3:fe:92:60:c5:d7:94:20:3e:
db:c9:9e:84:23:19:46:f7:20:d5:d4:ab:7e:42:f3:35:aa:fb:
dc:05:c5:48:60:c4:65:4d:1d:af:5e:0d:f1:fb:a0:3a:cf:b8:
76:35:24:b6:03:94:42:4a:41:3c:9a:a9:6b:ed:d4:d9:8a:ba:
7b:59:33:48:b9:33:46:f8:b8:b3:b2:ae:f3:ba:fb:d5:d3:d6:
eb:47:dd:52:57:71:07:fc:38:28:6e:c9:79:70:42:cf:6f:ac:
02:1a:c7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-ams.rpki-client.org