Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/bAyz-10GTtK2ss2bxoOj7XPWsZE.roa
File: bAyz-10GTtK2ss2bxoOj7XPWsZE.roa (raw, json)
Hash identifier: XUVRmRdkYkhsFpDztFHzVBfoOSqXWodiWj82raOQsIk=
Subject key identifier: 6C:0C:B3:FB:5D:06:4E:D2:B6:B2:CD:9B:C6:83:A3:ED:73:D6:B1:91
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0ABD711B
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/bAyz-10GTtK2ss2bxoOj7XPWsZE.roa
Signing time: Wed 18 May 2022 09:25:17 +0000
ROA not before: Wed 18 May 2022 09:25:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 134351
IP address blocks: 45.137.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 180187419 (0xabd711b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: May 18 09:25:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6c0cb3fb5d064ed2b6b2cd9bc683a3ed73d6b191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:54:76:5f:62:2f:bc:97:8a:22:b2:8d:f1:83:
24:0b:01:d6:a5:d4:48:8e:eb:98:89:20:38:c5:ca:
5d:c1:4e:c1:da:0d:7e:bb:1f:31:a9:55:23:fc:36:
a4:47:fe:d9:3a:56:ed:d7:f8:56:1d:97:6f:86:87:
75:03:9b:02:d1:5b:31:b7:ff:9c:a7:a4:24:b4:eb:
97:7f:e3:58:45:9e:20:ce:c6:9e:6d:f9:ed:a1:ac:
dd:35:e9:b7:1a:a1:64:7d:45:62:a7:18:20:21:05:
f5:d3:93:50:ed:05:9c:da:68:c0:ad:20:85:b4:f2:
29:cb:fa:27:5b:b3:ab:dc:fe:99:b2:f2:df:d1:e0:
3b:ea:a3:23:91:6a:ab:7c:64:45:8a:af:37:f0:1e:
51:6b:0b:11:e0:47:8d:66:0a:90:ee:56:11:73:11:
19:f8:78:33:58:02:b2:7e:2e:14:ed:cb:3f:6c:27:
cc:b2:35:34:ca:70:e7:d9:4e:4f:0b:fa:28:ab:f1:
5d:55:a5:78:14:99:02:78:e3:bb:d5:50:dd:08:a2:
0b:69:c8:ca:8f:97:5c:da:a8:8d:be:d9:4d:51:23:
02:6f:13:1d:61:88:cc:45:38:6a:24:19:a8:0f:fd:
7b:97:e0:11:a4:3e:9b:b0:44:71:b5:75:00:53:0e:
b2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:0C:B3:FB:5D:06:4E:D2:B6:B2:CD:9B:C6:83:A3:ED:73:D6:B1:91
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/bAyz-10GTtK2ss2bxoOj7XPWsZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.202.0/24
Signature Algorithm: sha256WithRSAEncryption
47:bd:66:bc:53:5e:ff:0c:02:34:9e:d1:12:03:ab:1a:b3:e8:
08:70:90:47:c9:24:65:82:18:ea:af:6a:a7:d5:47:4e:7c:6c:
df:46:fd:e6:b3:1d:f2:3f:52:4a:23:19:6d:d2:9b:a8:e6:88:
c9:dc:c7:75:2e:21:2b:73:7e:60:a4:5e:36:6e:4f:42:3f:73:
94:08:a3:20:4b:25:d2:ba:b7:bf:5d:68:a4:60:16:20:27:82:
00:7a:d2:d4:4e:29:58:0b:ad:51:ca:d9:e9:32:79:da:5d:6a:
12:72:14:4e:c6:93:9c:c6:48:21:e7:ba:8a:61:dc:fe:c3:89:
b9:50:ea:09:94:ca:b1:57:16:e1:87:28:9f:ad:8c:59:07:60:
49:44:4e:2d:d8:5f:0f:55:ec:49:a1:d9:b4:2b:09:91:17:9c:
80:a0:39:a2:af:b2:a9:04:00:7e:f1:8b:1c:1b:68:82:78:44:
0a:ff:2a:cc:d6:d9:83:56:6c:c6:a2:0a:76:b3:8f:e0:67:35:
6f:b2:4e:a7:6d:e1:a2:7e:74:c1:ee:09:bf:2b:e1:87:a2:5a:
15:b7:05:8f:53:44:2f:7d:94:28:6e:45:17:ad:cc:6b:f2:d5:
c4:93:5f:23:b5:fe:83:76:d2:31:57:52:49:f1:99:62:bd:f5:
65:d0:c5:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org