Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/6WWfT4Iq4jDL9ccBXL7w0BmSlmM.roa
File: 6WWfT4Iq4jDL9ccBXL7w0BmSlmM.roa (raw, json)
Hash identifier: 4dlcA+d0U9v2sRNQl39RKC/DvJJfI0O+vV7xLKr2EFs=
Subject key identifier: E9:65:9F:4F:82:2A:E2:30:CB:F5:C7:01:5C:BE:F0:D0:19:92:96:63
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01834A072ABB42FAEC02C7727A709F6D9344
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/6WWfT4Iq4jDL9ccBXL7w0BmSlmM.roa
Signing time: Sat 17 Sep 2022 05:58:47 +0000
ROA not before: Sat 17 Sep 2022 05:58:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 36351
IP address blocks: 45.128.198.0/24 maxlen: 24
2a0f:2740::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:4a:07:2a:bb:42:fa:ec:02:c7:72:7a:70:9f:6d:93:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Sep 17 05:58:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e9659f4f822ae230cbf5c7015cbef0d019929663
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:79:4e:4f:a7:9c:42:60:47:df:24:0f:ac:e2:
10:7c:63:99:e1:fb:b1:45:da:83:7e:5a:33:5d:13:
98:68:14:f3:95:a3:b4:48:9b:4b:cb:87:be:e1:b6:
c5:47:78:82:46:cd:97:0e:d2:a3:86:89:5e:39:91:
17:21:b2:7c:eb:de:aa:16:25:3a:ed:9d:b4:36:ab:
1a:dc:21:6e:03:89:15:9a:37:55:9a:23:48:b8:95:
fd:60:da:e0:31:79:a1:d9:77:fe:cc:65:b8:bc:ca:
c2:e1:8d:2c:f1:6c:ba:be:b8:a3:85:f3:d3:b9:94:
e8:c0:47:8a:a8:a2:31:86:5e:95:b6:9d:02:75:10:
bf:02:b5:7f:5d:5d:13:2f:95:24:b2:e2:45:bb:ca:
5d:4d:84:61:e9:6f:99:a9:39:81:ca:00:80:f9:3e:
ac:22:64:7d:cd:80:e0:a0:87:52:e3:47:1c:c4:41:
c5:d6:aa:fe:5c:95:15:48:2f:f6:71:07:c6:ae:db:
ba:3e:59:13:2b:f6:61:d7:88:c5:2d:67:b1:48:52:
43:79:62:99:aa:ea:fc:17:a3:93:f7:19:37:39:1d:
9c:99:ca:fb:1a:9b:87:b5:66:14:e0:bf:15:f2:4b:
32:79:aa:47:f7:f5:bf:2e:14:8e:3e:75:6c:ec:71:
e2:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:65:9F:4F:82:2A:E2:30:CB:F5:C7:01:5C:BE:F0:D0:19:92:96:63
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/6WWfT4Iq4jDL9ccBXL7w0BmSlmM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.198.0/24
IPv6:
2a0f:2740::/29
Signature Algorithm: sha256WithRSAEncryption
1d:6b:dc:11:19:9f:97:b9:a9:73:fe:77:40:3b:77:49:cd:e3:
1f:ab:03:88:d2:2f:43:60:c5:c2:e1:da:7f:48:11:c5:1c:66:
2f:d7:73:e4:64:70:41:d0:4c:27:fd:cb:3e:a0:16:52:b4:91:
41:9a:79:cb:5f:20:16:35:5a:3c:70:d7:ec:79:cc:ac:41:a6:
33:39:c8:46:a8:a4:2c:c4:cc:6d:37:a8:e8:89:2c:a6:f3:f1:
8a:89:7c:f7:a3:f3:34:c1:05:7e:0d:2c:83:bf:e4:76:4e:a7:
d0:65:e6:24:61:89:f0:bf:b6:10:7c:2b:47:b3:10:61:4e:d4:
4e:c5:9b:d5:fd:5f:19:f3:eb:42:c5:9e:7d:66:cf:55:50:f6:
99:2a:a6:3f:e5:3a:2c:8c:48:01:62:7f:26:eb:da:22:1e:44:
15:41:0d:79:29:bb:91:c2:0d:9c:e5:d3:32:d1:1f:2b:b7:f1:
74:03:3d:62:05:df:0d:e8:cc:ac:8a:94:04:f6:af:64:86:85:
c1:f8:96:b6:77:4f:94:05:be:49:a7:ed:53:2c:85:8e:4d:7c:
8e:c2:c1:11:f1:9d:25:81:49:7e:b8:cb:61:ad:ee:b2:89:f3:
92:ff:1c:73:95:4b:ed:9c:32:9f:b0:ed:8d:16:94:38:5f:f1:
81:0f:7d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org