Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/UoYt9gk3UG3wO8TwZPq8FZxL7x8.roa
File: UoYt9gk3UG3wO8TwZPq8FZxL7x8.roa (raw, json)
Hash identifier: w7lCAnNJ7FmlrRjqzF5DBO0+Kd91o64pbjtpJ3DhCLs=
Subject key identifier: 52:86:2D:F6:09:37:50:6D:F0:3B:C4:F0:64:FA:BC:15:9C:4B:EF:1F
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 093C3753
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/UoYt9gk3UG3wO8TwZPq8FZxL7x8.roa
Signing time: Sat 01 Jan 2022 06:00:31 +0000
ROA not before: Sat 01 Jan 2022 06:00:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 45.153.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154941267 (0x93c3753)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52862df60937506df03bc4f064fabc159c4bef1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:23:79:10:ce:6c:45:f8:52:49:c1:a8:27:f0:
4a:a0:9e:df:c6:69:e0:e1:10:63:96:e8:12:5b:85:
88:6a:be:f9:63:51:52:57:55:36:4b:9c:82:aa:10:
c3:c1:ae:12:c6:1a:42:82:c7:23:e8:39:78:5e:bb:
82:09:b8:74:ea:16:ec:59:5d:b4:9c:8b:f6:e3:03:
0b:eb:8d:4d:3c:4b:62:17:c3:07:bc:27:0f:49:78:
25:36:a0:43:23:5a:16:41:35:fa:80:bd:55:af:79:
fd:78:99:09:53:4c:61:a8:c1:e3:91:b8:a4:73:15:
49:88:c9:57:d5:a2:88:87:c3:7b:fc:be:c8:df:1e:
e5:05:07:4b:00:13:cf:f9:ef:73:85:24:64:95:07:
c5:13:45:42:23:5d:b6:7d:5a:ec:e2:4a:23:b7:d5:
35:2e:da:05:0f:09:25:ad:f9:a0:22:5c:7b:39:af:
e6:e4:64:43:92:29:93:10:df:e6:62:36:dd:85:6f:
68:c2:2e:b6:5b:07:26:aa:d6:75:fb:06:81:27:a7:
41:1a:6a:07:eb:3b:6c:8f:db:dd:ca:82:7a:52:3e:
56:af:0e:6f:36:8e:c2:08:22:9f:0e:cd:b6:72:26:
e7:10:d5:ee:0f:2c:b8:6f:22:b3:88:82:ed:70:8e:
75:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:86:2D:F6:09:37:50:6D:F0:3B:C4:F0:64:FA:BC:15:9C:4B:EF:1F
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/UoYt9gk3UG3wO8TwZPq8FZxL7x8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.24.0/22
Signature Algorithm: sha256WithRSAEncryption
0c:54:67:04:26:df:cd:7c:e5:4c:85:2d:71:06:cb:e3:78:24:
7e:a3:9a:5f:0b:b3:a9:8d:50:8f:34:2d:f6:4c:9b:15:c0:38:
91:f9:4e:65:3f:c6:23:ec:de:aa:04:f0:ec:59:f2:70:3c:fa:
76:b9:34:06:7d:ed:4f:4f:4c:49:c3:b4:db:20:5d:16:43:1c:
4a:67:a5:22:23:94:66:c2:31:d5:7c:9d:ca:99:80:20:8c:98:
fc:06:74:5f:47:86:25:b2:ac:0c:15:d3:d9:96:ed:6a:ea:ef:
a6:ce:af:65:63:79:d4:2b:d3:8e:a7:f7:66:01:7d:a1:a3:10:
48:6f:b7:6b:0c:59:11:28:7a:15:97:f6:8d:33:56:c0:91:a1:
53:b4:27:0c:7a:ec:9b:8b:99:d1:08:06:90:17:1e:aa:85:16:
37:bb:cb:bc:3e:bc:4d:f6:a3:3f:40:f9:a7:15:42:0c:bd:d5:
7f:04:8f:57:30:5c:5c:8d:0f:e8:cc:eb:1c:e8:ee:a5:55:1e:
a3:0b:9c:46:9f:6f:c7:6f:00:ca:88:12:c8:d6:6c:d6:4a:1a:
34:e6:3a:cb:88:b1:b0:77:fc:59:5b:2a:2d:7c:d2:72:85:19:
10:4d:f4:1e:76:d1:05:62:71:e7:89:88:ea:92:6c:5d:be:3e:
4f:b4:b1:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org