Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/usHgXbyDpuUE7JxvDkb13NB-sgw.roa
File: usHgXbyDpuUE7JxvDkb13NB-sgw.roa (raw, json)
Hash identifier: 4nXEOVf/y1omSN0AHlEoDSob2s3HoDpupZ8Bszzq5sM=
Subject key identifier: BA:C1:E0:5D:BC:83:A6:E5:04:EC:9C:6F:0E:46:F5:DC:D0:7E:B2:0C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A8519A5
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/usHgXbyDpuUE7JxvDkb13NB-sgw.roa
Signing time: Tue 26 Apr 2022 21:01:20 +0000
ROA not before: Tue 26 Apr 2022 21:01:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205387
IP address blocks: 45.153.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 176495013 (0xa8519a5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Apr 26 21:01:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bac1e05dbc83a6e504ec9c6f0e46f5dcd07eb20c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ae:87:d7:33:98:e8:44:45:c7:da:b7:e3:f2:
4e:c1:c1:34:39:5b:fe:90:ae:34:1e:f3:4a:fb:f8:
88:3a:37:0a:ef:e8:31:d4:3e:a7:b4:28:06:0f:f2:
72:ec:d3:3e:13:6f:c2:b0:26:44:a3:e3:c9:8f:f4:
b5:fc:6d:28:29:6c:29:2b:d1:33:c4:b6:de:6f:0b:
fd:f5:15:c3:7a:a0:05:f5:97:b0:41:24:c0:f0:96:
2d:31:2e:d9:a1:74:89:14:6e:11:a6:7e:10:4c:7e:
d1:19:9b:40:17:dd:9f:be:28:ed:ce:4a:f1:9e:1f:
39:81:eb:8c:7f:d3:88:05:95:57:ec:81:b1:30:cd:
ca:7a:96:d5:66:f3:b0:1a:f6:be:fd:5d:43:58:fd:
d6:7e:96:d1:28:92:e3:7e:b5:59:4e:60:a4:d5:e8:
70:55:cd:e6:43:35:7c:9e:94:c5:44:cc:d6:7e:51:
96:8a:16:ce:69:88:8d:f1:e9:64:47:e6:35:b9:de:
ae:16:20:4d:7b:99:bd:3b:2b:e3:0f:6d:63:7a:86:
eb:49:51:59:c0:c1:c8:97:54:09:ca:b4:45:02:36:
40:c8:80:91:7d:f1:87:ff:2c:bc:43:8e:cd:05:11:
bc:b9:17:d5:86:d5:fa:82:c4:0b:09:a8:ff:98:6b:
12:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:C1:E0:5D:BC:83:A6:E5:04:EC:9C:6F:0E:46:F5:DC:D0:7E:B2:0C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/usHgXbyDpuUE7JxvDkb13NB-sgw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.24.0/22
Signature Algorithm: sha256WithRSAEncryption
03:d7:1c:84:3e:76:d2:76:62:4e:88:cf:50:30:cb:d7:11:a5:
9e:7f:c3:61:7e:46:93:26:22:a1:1b:e1:21:0a:90:ec:1c:a7:
c2:3a:e9:11:3e:fe:39:59:5e:bc:a3:f7:44:a8:cf:59:3d:70:
f1:f4:84:c6:42:e0:92:13:5b:bf:a1:df:20:2a:2d:8e:f7:78:
66:a2:7d:da:25:d9:ee:22:6e:2d:5f:2b:21:46:53:64:ba:0e:
b9:39:6c:d4:34:46:de:b1:29:7e:d8:ed:8d:a2:bc:3d:94:f4:
dc:47:ee:bc:3f:5e:30:ec:89:b8:80:45:f0:df:2e:09:01:67:
cb:31:da:de:8e:1f:5a:0b:ce:5b:c1:e1:f6:c3:ba:fe:c9:df:
24:27:c6:23:5d:e7:d2:a7:ba:e6:05:40:25:4b:8e:c1:9d:75:
65:5a:33:88:e5:47:39:1d:03:c0:4f:74:30:be:cc:c3:b9:f8:
20:4a:35:ed:75:af:4f:5b:4d:7f:64:8d:30:60:30:bf:e0:4d:
08:4a:c8:62:26:38:27:cf:5f:05:8d:62:e8:3f:70:9f:90:59:
6a:9a:81:4f:84:4f:a6:f8:0a:59:b4:f4:ac:2b:8a:33:0b:84:
33:01:1d:32:f7:df:69:f6:90:53:9e:f5:9e:7a:c7:06:ee:9f:
3f:4b:4e:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org