Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/5fPmv-QGuxrFx99j3TqFQznnS2E.roa
File: 5fPmv-QGuxrFx99j3TqFQznnS2E.roa (raw, json)
Hash identifier: oGiKALS0R0sARx17LZPw+QWQZFel6qndEV36xNxmJGs=
Subject key identifier: E5:F3:E6:BF:E4:06:BB:1A:C5:C7:DF:63:DD:3A:85:43:39:E7:4B:61
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0183DBF344484B29E3E2944294620FABD7D3
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/5fPmv-QGuxrFx99j3TqFQznnS2E.roa
Signing time: Sat 15 Oct 2022 14:01:36 +0000
ROA not before: Sat 15 Oct 2022 14:01:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 272073
IP address blocks: 45.153.165.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:db:f3:44:48:4b:29:e3:e2:94:42:94:62:0f:ab:d7:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Oct 15 14:01:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5f3e6bfe406bb1ac5c7df63dd3a854339e74b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ee:d2:e7:0e:33:4f:fd:42:6d:0f:d4:05:7b:
39:28:5d:2d:5c:d7:85:5b:80:04:79:54:93:b7:c8:
90:7b:a6:ef:70:00:31:d0:2e:ff:b6:7e:0e:fc:23:
49:ba:3c:36:b9:e3:2d:99:b5:e3:9e:a0:cd:00:13:
16:a7:cd:71:04:6a:b7:c2:f6:c0:a6:8e:e9:3a:44:
06:ca:86:8f:0c:69:b3:c2:9c:3d:67:e4:82:16:f9:
ad:09:7c:80:56:a3:2f:9f:89:63:7b:c2:be:13:70:
58:98:db:7f:87:fd:d9:7c:13:1b:72:43:58:b4:1d:
5e:c3:3e:cc:02:8b:bd:3f:72:19:80:e5:a6:a9:c7:
5f:8a:be:b8:43:db:e7:ef:01:78:2d:99:25:c1:7f:
5d:58:8f:27:d3:c9:c7:33:6c:d8:b9:fe:7e:23:42:
50:1e:ee:b8:6c:d8:12:6d:1d:b0:ec:7e:e4:81:28:
55:a4:b3:f6:79:99:0b:cd:c2:3d:2f:85:e9:42:63:
67:c6:67:b8:6a:df:b4:24:c3:78:50:ab:69:3f:e0:
b8:54:2c:c1:9e:f4:0c:35:a5:53:26:a0:84:63:5d:
09:03:61:72:3d:cd:20:a8:2d:52:e5:90:25:b1:31:
cb:2b:31:59:1c:a8:3d:65:6f:a2:b8:53:f9:22:7d:
ba:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:F3:E6:BF:E4:06:BB:1A:C5:C7:DF:63:DD:3A:85:43:39:E7:4B:61
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/5fPmv-QGuxrFx99j3TqFQznnS2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.165.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:f2:d0:0e:b1:1a:24:9b:5c:b9:20:95:b2:7d:32:29:6a:56:
86:48:dc:15:41:dd:0d:b6:a5:87:c7:b0:ee:ce:92:31:f7:3f:
77:94:86:11:43:2d:f8:8d:e1:93:5b:70:6c:31:c2:98:23:98:
9d:69:f4:3a:ef:d0:a7:4b:1f:a5:19:b6:08:e5:74:e8:59:27:
0b:76:b6:bb:d6:f8:8f:f8:d7:cc:a4:61:70:c0:0c:7e:5c:02:
3b:5b:e3:62:8c:30:19:bf:02:72:bd:ed:27:72:0d:78:50:92:
f2:21:c4:c4:70:2a:24:43:db:f1:76:1f:f4:2d:db:27:5b:53:
a3:b8:0d:86:39:5c:ac:72:b1:3b:a9:03:3e:ed:c1:cc:73:14:
c3:c1:93:9a:ec:77:56:00:95:a5:c8:46:b6:c8:c0:4c:03:27:
85:76:89:2d:7b:81:3e:ed:32:d4:24:01:b1:34:25:b3:de:0a:
da:c3:d5:d2:6a:88:a5:82:b9:d5:ae:16:72:0d:8c:87:33:b2:
62:74:3b:ab:03:e6:22:20:b0:ad:cd:a0:65:92:33:ac:84:ac:
4d:e1:c9:ae:06:63:17:97:62:8a:87:ba:08:f5:90:7f:e2:1f:
64:cb:dd:5a:2e:e3:97:eb:d7:24:0d:dc:29:46:11:bb:37:95:
0e:e0:b6:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org