Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/XfBc0yCl5AofZAUOe89jVba5xNo.roa
File: XfBc0yCl5AofZAUOe89jVba5xNo.roa (raw, json)
Hash identifier: 3ObIJyQtR0/hnZiv6tPOJOBa3zioBod+n73Hek5dx2Q=
Subject key identifier: 5D:F0:5C:D3:20:A5:E4:0A:1F:64:05:0E:7B:CF:63:55:B6:B9:C4:DA
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 036A8003
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/XfBc0yCl5AofZAUOe89jVba5xNo.roa
Signing time: Fri 07 Jan 2022 15:17:40 +0000
ROA not before: Fri 07 Jan 2022 15:17:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.140.192.0/24 maxlen: 24
45.140.193.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57311235 (0x36a8003)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 7 15:17:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5df05cd320a5e40a1f64050e7bcf6355b6b9c4da
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:fe:64:c0:85:d4:39:03:6f:f4:cb:38:42:d7:
cf:58:8d:fa:6e:4e:c6:0d:9e:80:ae:f4:1f:ce:99:
70:69:ae:31:66:58:64:31:f8:85:9b:3b:5b:2a:46:
19:85:43:00:0e:30:dc:d9:b7:08:92:af:8c:b8:54:
0e:74:88:4b:72:40:e4:c8:94:0c:9a:12:6f:35:aa:
b7:41:7f:df:db:eb:4b:15:e6:93:72:35:f0:ca:5e:
59:38:e8:b3:a3:41:9d:7d:ef:43:12:f0:a8:ec:ce:
ae:4c:62:10:73:9c:67:99:ce:ed:bf:5b:af:7d:75:
60:e8:37:8c:57:ea:9f:cd:d7:0e:80:08:44:62:6f:
b4:3b:f3:ac:d0:a8:2a:6e:60:af:17:c1:63:05:f4:
b6:09:a1:8c:48:17:b5:b3:a4:f3:52:83:84:44:60:
d5:6c:84:b8:09:4d:26:d1:fd:b7:a8:86:4a:7d:09:
e5:27:b1:b2:ff:97:bd:2f:13:2c:a8:b2:06:ec:36:
4a:15:d5:6b:d6:09:61:ca:f2:1a:5a:21:f3:7b:2e:
62:30:21:61:9d:86:0a:c5:db:c6:a1:9b:13:77:19:
d9:2f:d0:d2:d5:90:56:4d:8d:0f:60:3d:70:66:e7:
2b:3d:6d:53:8e:e1:e6:ed:b8:b9:da:5b:01:72:bb:
5c:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:F0:5C:D3:20:A5:E4:0A:1F:64:05:0E:7B:CF:63:55:B6:B9:C4:DA
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/XfBc0yCl5AofZAUOe89jVba5xNo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.192.0/23
Signature Algorithm: sha256WithRSAEncryption
77:de:5c:36:a0:c8:33:5e:48:e7:e8:52:bf:4e:79:89:44:ab:
4c:b7:81:e6:5e:5a:53:d8:2e:d4:cc:f4:b5:51:1e:a2:5f:54:
84:e9:76:7f:d6:18:b1:11:aa:54:24:d2:48:a0:f9:b2:47:84:
50:5f:00:b4:b7:29:d1:fc:9b:1b:cd:1d:f4:2f:ae:ae:8d:7c:
56:a2:0d:9c:6c:a5:6e:be:cf:41:df:64:b7:2c:0e:04:f1:84:
09:29:0d:57:5e:ca:d3:2f:e7:8b:04:d6:a5:91:9c:94:02:b2:
67:9f:dc:17:dd:21:09:25:e9:da:17:fe:cb:1f:55:10:31:43:
31:8e:f8:98:71:42:56:9f:2a:29:36:55:2f:4b:b4:10:44:15:
23:d5:69:82:83:79:28:79:1a:e0:52:65:87:d8:c1:dc:c5:db:
e9:79:87:7e:0f:43:21:97:d9:fa:9d:db:59:4e:1c:da:e6:07:
3e:2c:d0:0f:80:46:0c:83:86:7c:51:ab:a0:ba:e5:bc:64:3a:
f1:d0:1d:76:ac:8e:2a:ca:3a:66:b1:ea:56:18:8c:73:ed:60:
a8:76:21:12:c8:16:ba:d7:eb:29:c0:c2:fb:c3:03:cb:62:cd:
36:95:7d:5c:e0:0d:47:08:db:3f:90:c2:ff:cc:2c:84:44:a1:
6c:9a:3a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:45 2024 by rpki-client on console-ams.rpki-client.org