Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_wEzfnDx-OSPWhejdLyIp-66dlE.roa
File: _wEzfnDx-OSPWhejdLyIp-66dlE.roa (raw, json)
Hash identifier: sIlZDGUey8pBowpRdiPQ4pl6MaCByZJ/Dc3oQRgAnEs=
Subject key identifier: FF:01:33:7E:70:F1:F8:E4:8F:5A:17:A3:74:BC:88:A7:EE:BA:76:51
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 047BA54B
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_wEzfnDx-OSPWhejdLyIp-66dlE.roa
Signing time: Tue 03 May 2022 12:13:48 +0000
ROA not before: Tue 03 May 2022 12:13:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 45.153.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75212107 (0x47ba54b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: May 3 12:13:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ff01337e70f1f8e48f5a17a374bc88a7eeba7651
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:28:9a:d3:58:32:05:ac:7c:58:c6:24:b6:98:
d3:60:66:7a:e1:d6:0b:0c:48:db:eb:28:d6:7b:e5:
b2:97:2f:0b:6d:d6:20:d9:8f:0e:05:c4:23:f5:9f:
ba:df:0e:62:9f:2b:d9:ca:fc:04:b2:5f:ba:0a:81:
31:f5:2b:60:88:a0:24:bf:5e:ed:27:19:94:50:f2:
f2:f2:e8:34:43:72:4f:2b:40:29:6d:51:f9:02:a6:
a6:53:ec:55:b8:bf:0a:7f:5e:23:49:d7:84:c6:5b:
9e:bb:28:e1:0d:32:44:f1:57:a8:5d:2d:10:6a:45:
08:02:6e:a9:85:06:78:f9:f5:64:c0:d8:51:84:3c:
40:6d:2b:e1:08:8a:15:ac:8b:7a:81:76:ad:77:b3:
23:04:fa:f5:43:0e:4f:cd:61:df:c7:2e:c0:b9:ef:
87:05:77:e5:d3:0e:1c:74:d7:78:05:dd:b0:30:3d:
3f:d6:6a:b5:65:fc:0e:a1:78:c8:98:cb:d5:d0:a7:
97:bf:e7:c1:61:75:14:ed:9c:7f:63:96:f7:9c:be:
c8:cb:ac:f2:d8:2f:3c:4f:c7:f7:1b:82:a6:96:db:
bc:b3:26:c8:b3:38:fd:ca:31:ab:28:f8:c8:d4:ab:
36:6f:16:6f:f5:43:db:aa:8f:da:1d:0d:ef:84:72:
3a:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:01:33:7E:70:F1:F8:E4:8F:5A:17:A3:74:BC:88:A7:EE:BA:76:51
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/_wEzfnDx-OSPWhejdLyIp-66dlE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.164.0/24
Signature Algorithm: sha256WithRSAEncryption
6d:f8:b6:a7:19:db:c5:22:2c:03:06:cc:7d:ca:4a:2b:68:2d:
83:11:2d:c6:d8:5f:5c:b4:e4:e4:85:53:21:1a:30:7b:78:0c:
4a:38:66:e6:d2:23:b4:cc:73:19:49:9c:bc:80:fb:e5:d2:07:
21:e4:cb:9e:26:f6:98:91:50:05:c3:9e:d0:2b:4b:c4:f0:5d:
d2:04:be:49:3b:e5:93:f5:d7:63:ee:78:6f:f3:19:c0:f7:7f:
45:d6:ff:e5:8f:44:c4:ee:65:e7:4b:ed:38:cb:a8:a8:ad:00:
b9:50:1c:0a:30:ed:1d:a9:21:ec:e4:44:b8:3c:5d:91:26:b6:
d5:8c:76:f0:26:f6:10:bb:29:6d:58:18:07:fb:78:64:93:b4:
03:c7:cd:a7:7b:8a:ef:f6:af:3c:78:87:53:b1:34:93:9b:72:
4a:21:25:5a:29:4d:1b:3c:d5:2f:ff:9e:83:b9:5f:88:29:69:
9a:15:a5:cb:12:7b:52:6f:61:96:b5:18:b3:38:dd:64:36:fc:
82:eb:39:af:aa:14:4e:46:91:53:20:29:80:15:11:80:9b:42:
bc:1b:c5:b1:8b:b3:8b:a4:88:64:c4:e1:cd:a6:a3:a2:da:ea:
58:fd:bb:71:e2:3c:d8:d3:92:24:8c:2f:f4:d0:13:6c:fb:b3:
dc:c0:9b:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org