Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gO8fXQS5m_u69mcswndakQd5vWE.roa
File: gO8fXQS5m_u69mcswndakQd5vWE.roa (raw, json)
Hash identifier: hoozn0s/12hAee2NhcujIFRR73IrX/EG1ljGajVMU1U=
Subject key identifier: 80:EF:1F:5D:04:B9:9B:FB:BA:F6:67:2C:C2:77:5A:91:07:79:BD:61
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 178CA9F2
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gO8fXQS5m_u69mcswndakQd5vWE.roa
Signing time: Sat 01 Jan 2022 04:53:49 +0000
ROA not before: Sat 01 Jan 2022 04:53:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 45.138.210.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395094514 (0x178ca9f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=80ef1f5d04b99bfbbaf6672cc2775a910779bd61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ab:8e:a8:d7:48:8e:ee:44:0d:58:1c:12:75:
f9:79:8e:54:e0:e1:09:b7:5d:69:a3:95:ca:15:bc:
bd:08:0a:d1:41:b9:44:24:45:6f:d6:07:21:0d:1d:
97:87:c9:bc:a8:6d:94:5b:66:62:bc:cd:c1:69:7f:
5c:0f:e3:e5:fb:9e:44:41:47:18:38:8a:43:b8:ab:
b3:07:5d:a1:79:99:89:76:34:ad:f0:e6:05:b9:b2:
4f:09:4b:91:32:22:e3:3a:e6:9d:9c:d4:29:83:c2:
f2:3e:31:e7:d5:5d:05:0b:eb:84:d3:2f:ef:7d:75:
1e:4c:78:99:eb:8c:c0:7f:10:a0:dc:e9:31:da:68:
32:8f:d9:5d:86:c8:2e:26:08:3c:b8:1f:60:af:c0:
30:f3:cb:e6:86:95:c4:f5:dd:c2:35:a0:d5:6e:c4:
d0:05:93:2e:3b:7e:c6:87:39:a4:29:a7:75:44:50:
e4:07:70:62:c9:96:27:cc:5c:70:31:15:36:a3:25:
e8:b7:db:59:83:89:87:53:48:8a:21:06:3f:e9:bf:
7e:c4:ac:7c:7e:72:01:aa:4d:ab:e2:b8:8c:df:08:
0a:f6:90:19:4a:23:65:24:b3:d7:cf:1a:a9:64:4e:
44:e9:bc:30:dc:50:cf:32:b5:f1:78:61:14:cb:fa:
e3:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:EF:1F:5D:04:B9:9B:FB:BA:F6:67:2C:C2:77:5A:91:07:79:BD:61
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/gO8fXQS5m_u69mcswndakQd5vWE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.210.0/24
Signature Algorithm: sha256WithRSAEncryption
98:38:d1:bd:94:65:ba:09:f2:ea:5d:a7:86:c0:20:f6:92:e9:
36:44:2a:7e:40:99:27:6b:cb:a4:6f:de:ea:16:89:33:46:b7:
f4:ca:a7:70:8f:2e:5a:48:88:11:8f:fd:48:29:02:a0:5f:6f:
c7:51:29:b1:e9:2a:65:b2:d6:45:5a:8a:ad:8a:dc:48:1d:e1:
a1:b3:2c:36:d3:af:62:94:8f:42:dc:39:31:16:a2:4f:50:b1:
7b:08:4d:97:08:22:2d:89:96:57:25:14:f3:c0:c7:c4:94:3d:
00:b8:b5:e6:97:20:01:41:2d:d8:83:a5:69:ca:f2:c3:4c:2b:
9a:ab:da:9f:4d:07:89:db:0d:b7:9a:ad:a2:27:3e:cf:68:22:
81:04:20:94:8b:cd:6f:d9:10:5d:17:e5:88:24:20:16:02:ce:
b7:9a:3d:5a:c3:1e:44:63:fd:cf:da:df:07:8d:37:fb:23:c2:
97:9f:33:f5:84:7e:de:e7:6a:27:de:28:30:7a:03:7a:ce:f1:
20:d6:97:b0:e2:19:72:39:05:17:6d:c0:51:99:1f:22:1a:ef:
63:1f:ed:da:68:6a:33:aa:d4:40:94:fe:49:06:c1:44:92:cb:
07:a2:4b:85:1a:51:88:2c:ae:de:c0:4f:05:95:b4:7c:08:b5:
80:e0:89:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org