Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/9fsVkGJM0hr0olBPSs4SwOfsXxw.roa
File: 9fsVkGJM0hr0olBPSs4SwOfsXxw.roa (raw, json)
Hash identifier: h2GWRBAddecaK4VDdBm32Szy8rmE8FqI3KOCZV0PpxM=
Subject key identifier: F5:FB:15:90:62:4C:D2:1A:F4:A2:50:4F:4A:CE:12:C0:E7:EC:5F:1C
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 01849FB25A8A55BA47F67FEB9B45D8838852
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/9fsVkGJM0hr0olBPSs4SwOfsXxw.roa
Signing time: Tue 22 Nov 2022 14:16:16 +0000
ROA not before: Tue 22 Nov 2022 14:16:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212669
IP address blocks: 45.153.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9f:b2:5a:8a:55:ba:47:f6:7f:eb:9b:45:d8:83:88:52
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Nov 22 14:16:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5fb1590624cd21af4a2504f4ace12c0e7ec5f1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:d5:63:54:0f:3b:6c:80:15:82:79:65:7f:84:
c1:34:0d:e3:46:ec:5b:ed:85:7d:59:d3:2d:d7:67:
2c:2d:e2:64:dd:79:02:d0:19:59:a6:f2:36:ef:23:
3b:e1:6b:7a:41:f9:0d:3b:75:8f:4f:f6:8e:60:8b:
6d:08:91:0f:3d:79:70:85:29:ae:44:4b:f9:ad:a1:
fc:41:d4:ca:82:6d:d5:ca:ab:47:bf:a1:78:bb:82:
ea:3a:43:2d:ea:26:0a:86:e0:b2:40:d7:93:9a:69:
5b:be:b4:b0:89:43:a2:7a:b6:40:06:2d:97:b0:0a:
73:11:41:e7:d6:37:74:05:e9:7d:bd:4a:82:e1:99:
e5:63:b4:7b:e5:c0:02:ba:b8:d0:b3:ff:ce:17:67:
45:ee:4f:65:bb:56:8c:c0:1e:f1:57:0b:87:d6:a3:
df:81:53:58:ec:67:0d:35:f3:d9:e6:14:55:9f:ee:
b3:ba:8a:d1:bf:d5:07:f4:98:9e:85:de:1f:fe:8d:
4f:af:bf:b7:40:bc:b2:89:d7:b2:52:98:7e:fa:f6:
6c:36:51:10:d9:94:ff:24:bd:1a:f2:54:b2:05:6b:
6f:cf:b4:0b:7b:14:e9:12:a9:30:19:bd:5d:b6:b5:
d9:1a:95:fb:5e:93:1a:93:85:27:f0:60:f7:c7:06:
ff:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:FB:15:90:62:4C:D2:1A:F4:A2:50:4F:4A:CE:12:C0:E7:EC:5F:1C
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/9fsVkGJM0hr0olBPSs4SwOfsXxw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.164.0/24
Signature Algorithm: sha256WithRSAEncryption
96:af:80:46:d1:44:ce:97:8d:4a:2f:1e:9d:f6:08:4e:26:b7:
64:35:36:b8:a1:21:2a:28:2b:05:16:c6:4c:12:e8:f8:d6:d0:
1d:87:49:a6:ed:cf:63:9d:a5:cb:4f:3c:1e:73:8a:2b:7a:aa:
c0:75:b7:0b:9e:69:20:e3:e4:04:d7:f3:8c:35:5e:3d:a2:42:
e5:a8:89:c3:77:f5:97:03:5a:98:e7:82:9d:b7:86:9a:3b:49:
f8:3e:a7:38:82:fe:54:43:20:a2:b8:d8:ea:38:03:86:0d:ed:
60:cd:2f:51:05:95:23:ad:99:9d:d6:70:08:e9:ff:c2:68:b7:
17:3e:de:c9:4f:0c:7b:eb:18:31:16:37:34:ae:a3:a7:06:fb:
e2:8a:d5:22:3e:72:c2:3e:cd:82:5e:ab:35:27:6a:12:06:e9:
cf:51:d3:aa:3c:88:48:bc:d3:07:46:05:27:7b:f9:35:47:b7:
3d:31:49:b5:f0:bb:5b:ed:1a:d4:53:50:50:bc:fe:54:17:26:
70:a5:2f:95:44:78:f3:c3:bb:30:41:59:ae:d1:89:a0:56:a1:
c2:f9:30:c6:78:da:38:9b:5c:8b:28:62:1d:bc:5a:35:8d:69:
71:d6:4d:74:e3:e2:df:86:61:7f:67:7d:73:3a:b9:b9:a9:c0:
7d:c0:5a:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org