Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/t2Z5tDDkxUeW9ai0Dl2zhDD3BUI.roa
File: t2Z5tDDkxUeW9ai0Dl2zhDD3BUI.roa (raw, json)
Hash identifier: lpi2yN/0hurV/WU+/o75yJCNtuwtVCSX9l1ypoYXx1w=
Subject key identifier: B7:66:79:B4:30:E4:C5:47:96:F5:A8:B4:0E:5D:B3:84:30:F7:05:42
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 0355FB5F
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/t2Z5tDDkxUeW9ai0Dl2zhDD3BUI.roa
Signing time: Sat 01 Jan 2022 07:01:41 +0000
ROA not before: Sat 01 Jan 2022 07:01:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6461
IP address blocks: 45.153.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55966559 (0x355fb5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 07:01:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b76679b430e4c54796f5a8b40e5db38430f70542
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0d:2d:67:7e:34:12:63:00:f8:78:8d:fd:93:
3a:e1:d1:fd:f7:5d:be:db:2a:92:c1:12:f4:a7:52:
49:6b:fc:a5:cf:3d:2d:b1:0d:13:5a:06:c7:0f:8f:
89:e8:68:97:d1:1d:de:6a:02:53:df:af:bb:cd:32:
2a:a5:b9:a3:63:f3:3a:5e:f6:d8:36:f7:33:e5:04:
7a:e6:4c:cb:cf:cb:b0:87:c2:89:c1:06:30:38:39:
0f:8d:82:e0:a7:f2:a6:88:a4:17:e2:ca:df:ad:46:
da:f5:7d:71:53:9c:ba:15:df:40:5a:28:f2:22:ed:
06:f8:c8:3b:8b:87:ea:14:39:b6:20:67:ad:08:6d:
5c:07:40:07:71:5c:de:78:6d:f3:85:8f:39:a6:d3:
7a:2f:3f:42:c7:e7:50:eb:f1:ee:fe:bd:d3:b3:48:
31:97:b9:f1:9a:a6:71:8b:e2:23:5a:83:78:99:1a:
5d:1c:9a:52:28:64:ee:e7:63:1f:e0:4c:04:51:b7:
bd:24:ff:a3:9f:d9:73:f1:15:6b:40:0f:23:6d:49:
76:d0:85:19:c5:d1:4d:a3:13:a3:1b:b9:c5:9a:2b:
78:48:43:c1:92:7e:06:ad:26:bd:a2:fa:17:ea:6d:
b8:86:4c:91:3d:8f:ce:2c:d1:54:96:30:50:a8:9e:
f1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:66:79:B4:30:E4:C5:47:96:F5:A8:B4:0E:5D:B3:84:30:F7:05:42
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/t2Z5tDDkxUeW9ai0Dl2zhDD3BUI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.164.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:ff:c9:6d:e8:a6:c3:f9:4b:45:2a:52:d7:0d:01:c9:aa:87:
4b:81:de:45:6b:aa:7b:14:3b:12:68:a4:d6:66:ed:65:69:68:
31:f8:b9:e8:a8:30:4b:e5:54:5c:f8:e7:41:33:ba:58:f2:7b:
ef:20:2c:3d:a8:25:b0:33:31:42:51:34:11:8f:35:b9:da:a0:
96:c5:80:fc:83:a4:44:d9:0f:b9:58:86:e1:2e:2a:65:96:f6:
7a:51:a2:99:a4:c4:af:d5:8d:cb:9b:c3:fd:e1:16:6d:f6:79:
e6:0e:1c:5e:f6:b7:65:09:d4:f9:05:8e:fa:8f:84:ec:f6:15:
56:24:bd:d7:25:c6:d7:59:dd:90:4d:3c:d3:27:7f:d0:38:f3:
e6:9d:dc:f4:ed:95:bd:aa:84:0f:6b:33:11:61:4f:2b:1e:52:
7e:54:f3:a4:9e:9a:df:bf:4e:45:fb:9d:d8:2f:77:37:d7:63:
73:04:40:1e:4d:0e:a4:fb:69:45:09:93:d5:9f:1c:e4:6d:0c:
16:ac:9a:e1:f4:b1:fb:fe:98:df:33:5c:22:41:81:45:a0:5f:
2a:5f:03:7b:9c:bc:38:a4:d9:ce:9e:fa:ae:e0:3f:10:6c:f8:
53:f6:71:61:dd:50:6d:85:8c:fc:ec:6d:83:ed:2a:27:49:37:
8a:51:4c:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org