Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/fX5a6dxsbsoDegvOUErTflqqhjg.roa
File: fX5a6dxsbsoDegvOUErTflqqhjg.roa (raw, json)
Hash identifier: P6Sh+EXT9T3/hhafeen2ex7bDs6jyJu1QUQnU0z0dqM=
Subject key identifier: 7D:7E:5A:E9:DC:6C:6E:CA:03:7A:0B:CE:50:4A:D3:7E:5A:AA:86:38
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 0798A1EA
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/fX5a6dxsbsoDegvOUErTflqqhjg.roa
Signing time: Sat 01 Jan 2022 02:52:52 +0000
ROA not before: Sat 01 Jan 2022 02:52:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 139660
IP address blocks: 45.95.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127443434 (0x798a1ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Jan 1 02:52:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d7e5ae9dc6c6eca037a0bce504ad37e5aaa8638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:b4:69:85:c1:27:ce:d2:a9:90:ee:47:9f:a8:
7f:1e:f7:75:e0:17:e9:9d:e5:0a:f2:31:94:b0:95:
98:cc:d9:2e:3f:a1:59:f6:24:97:10:db:7f:80:a9:
a4:24:e7:7f:66:64:81:65:b4:b2:ee:65:60:c7:72:
86:0c:d0:cb:7f:b1:8a:1f:5f:88:74:c9:e9:8a:c0:
c6:33:04:48:24:22:9b:2d:c1:05:1e:74:6c:c1:1d:
a7:ed:14:0a:b4:e6:c5:e3:c0:94:73:9f:77:75:59:
53:f3:e9:d5:f3:0b:8a:b0:4b:dd:6a:92:43:c2:90:
c2:ee:6f:26:dd:d5:9f:73:a3:40:03:e0:45:9c:52:
1f:d5:d1:d0:9b:cc:c1:47:96:c9:14:e8:19:cf:b2:
5c:d7:c2:a6:df:d4:93:ce:bb:6f:db:9a:86:b5:9d:
72:bf:a2:c1:c3:92:3c:88:f0:01:3b:09:4c:de:d0:
b0:dc:3e:2d:ee:9c:00:8d:64:d7:d8:81:54:b0:07:
87:9a:5a:84:d2:b1:6c:e9:8e:df:b6:4e:6e:5c:e5:
9b:91:f1:0b:a3:0a:b2:eb:b5:d4:a5:b3:c1:51:aa:
2d:aa:d3:cc:28:fa:15:53:f6:2f:87:02:74:44:8b:
8d:10:b1:4b:6a:c9:76:91:93:0c:fd:2b:6a:f9:b6:
47:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:7E:5A:E9:DC:6C:6E:CA:03:7A:0B:CE:50:4A:D3:7E:5A:AA:86:38
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/fX5a6dxsbsoDegvOUErTflqqhjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.206.0/24
Signature Algorithm: sha256WithRSAEncryption
52:85:9f:66:47:aa:d4:cc:1b:e6:db:04:07:1e:e7:0e:2a:0a:
53:ca:43:c1:01:fa:c5:0e:6d:d0:3b:60:b5:ad:14:25:18:f9:
66:b6:d4:6a:53:ee:80:6e:4c:f2:2c:82:5a:8d:0e:68:1c:5d:
dc:cf:d9:26:e5:12:89:2d:84:dd:db:44:0c:b3:00:70:fb:32:
c7:87:65:31:d5:2b:87:b5:73:60:c6:f8:fe:4e:ef:f7:61:fa:
41:be:47:6f:39:cb:d2:15:78:76:07:ab:38:44:91:b0:20:66:
a9:a7:48:74:a9:d6:47:ce:e0:79:de:a3:be:0a:a5:76:4e:8e:
9b:27:ed:11:4b:b4:4f:ae:96:c4:61:6c:c0:c1:ec:46:4f:3d:
8e:3a:1a:db:3b:d6:77:8e:ff:d4:c8:fb:a0:5f:0a:e3:af:5b:
64:56:b1:33:6b:44:5a:8d:b6:9b:9b:f3:36:87:0b:db:b6:ee:
32:8b:19:d0:6d:12:ed:2a:a7:54:45:91:a6:90:b3:2a:af:20:
1f:2d:8d:9b:fd:ee:8a:61:8b:1f:95:66:82:a3:6a:db:ca:bd:
cc:dc:22:f7:b2:91:4e:56:f6:a7:88:07:d4:cb:d3:cc:ff:ad:
1d:c6:5f:62:00:16:55:09:0b:be:7e:de:f4:44:71:00:94:da:
ad:7e:ea:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:05 2023 by rpki-client on console-fra.rpki-client.org