Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/d6hK6vL--CquQ0RNPYgl7XtWw1k.roa
File: d6hK6vL--CquQ0RNPYgl7XtWw1k.roa (raw, json)
Hash identifier: g0bY762gjVQIqYHesWZlMGi7W1S7l7JaFOkZYdbtjxw=
Subject key identifier: 77:A8:4A:EA:F2:FE:F8:2A:AE:43:44:4D:3D:88:25:ED:7B:56:C3:59
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 0183EAFC62BEF2E7D9678BF6F97E7053D456
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/d6hK6vL--CquQ0RNPYgl7XtWw1k.roa
Signing time: Tue 18 Oct 2022 12:05:52 +0000
ROA not before: Tue 18 Oct 2022 12:05:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 45.137.180.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ea:fc:62:be:f2:e7:d9:67:8b:f6:f9:7e:70:53:d4:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Oct 18 12:05:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=77a84aeaf2fef82aae43444d3d8825ed7b56c359
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:1a:2a:93:32:f8:31:1b:22:6a:25:9a:51:22:
f0:9e:87:a2:fe:f5:13:63:60:ce:ea:ee:df:43:95:
6a:a0:e0:1c:b4:0b:8f:ce:de:6f:82:af:df:37:ad:
63:f1:13:40:48:0d:9e:94:b6:e5:4c:71:c6:9a:b4:
47:8b:07:8d:8b:20:29:16:9b:fe:1e:51:7a:0f:d3:
5c:22:ff:da:3b:94:a7:a3:d1:f6:07:fa:c4:42:c4:
cb:44:42:25:34:0d:1f:32:34:7c:ea:df:61:10:34:
dc:3b:3b:4f:11:03:63:23:fb:88:de:44:4e:d6:7c:
97:2f:b5:4f:81:d7:98:99:cf:54:60:b1:20:2b:02:
d7:06:cd:aa:30:31:c7:70:74:1c:43:e9:f2:c9:67:
2c:ba:79:fd:49:c0:0d:ba:8a:8a:42:24:27:e4:2f:
11:56:f4:c4:62:df:9e:13:7c:dc:93:ee:95:73:e2:
36:33:ba:23:c9:99:2d:5c:91:5a:a8:b3:7e:52:70:
ec:ec:ff:79:e2:27:5e:58:0f:2d:20:4c:82:36:e0:
4f:e5:ec:59:39:e4:b2:36:b9:b7:ce:a0:f9:3c:96:
1a:1b:a9:7d:2e:81:82:03:65:05:a3:7a:c7:2b:50:
32:52:30:05:06:21:10:c7:b2:e0:b2:1a:d7:bc:bb:
1c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:A8:4A:EA:F2:FE:F8:2A:AE:43:44:4D:3D:88:25:ED:7B:56:C3:59
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/d6hK6vL--CquQ0RNPYgl7XtWw1k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.180.0/22
Signature Algorithm: sha256WithRSAEncryption
ab:58:66:3a:71:6b:6a:27:85:c9:f3:31:bd:da:fd:98:6c:74:
c3:ff:a9:06:c0:44:6d:4b:79:48:c4:86:6e:cf:aa:21:3c:88:
85:0f:ee:bb:6a:d1:78:07:10:4d:29:1f:b2:1a:da:74:df:09:
cf:9d:20:41:70:7c:55:b0:26:ab:60:1e:5c:b5:bc:a6:f9:ca:
e9:dd:38:71:8c:90:d1:5e:50:0c:55:df:26:9f:bd:77:e1:b6:
e8:a7:ed:33:6d:39:b7:48:38:48:82:8c:cb:08:43:d6:58:b7:
28:ed:b6:a0:22:e4:20:78:92:2e:c0:2f:ae:29:db:1d:77:d3:
73:2f:74:f4:ec:33:b0:a6:a6:e8:c9:6e:02:02:5c:50:69:24:
9f:fe:c2:72:ce:73:c2:f9:59:49:92:e9:11:7f:26:db:b6:32:
a1:f3:b5:e8:eb:c0:d4:c3:5d:4c:ff:2d:b7:83:32:76:ff:ba:
b6:ee:ec:a0:ab:62:79:fc:e7:67:73:8f:36:bf:5f:3d:20:02:
0e:13:c6:8a:01:ec:c0:04:24:f9:f6:a4:99:a9:d3:f4:42:7a:
cc:51:a3:a9:f2:ed:f6:85:bc:6f:bc:5f:ab:1a:b4:09:f4:e3:
6b:a9:fb:19:67:53:4a:1c:c4:57:c0:08:e3:82:d9:68:e3:93:
5c:b4:a6:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org