Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/Xwt94F8TH8dmNZhH6sC4wtphflA.roa
File: Xwt94F8TH8dmNZhH6sC4wtphflA.roa (raw, json)
Hash identifier: ZZOuqoTjLfQLLo/bzmB5k2RdkwVR7WH3U1SiqBE5VJQ=
Subject key identifier: 5F:0B:7D:E0:5F:13:1F:C7:66:35:98:47:EA:C0:B8:C2:DA:61:7E:50
Certificate issuer: /CN=2628cc7f06ea09a247f6be9e9e574c4f37b4e9b6
Certificate serial: 06C85901
Authority key identifier: 26:28:CC:7F:06:EA:09:A2:47:F6:BE:9E:9E:57:4C:4F:37:B4:E9:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JijMfwbqCaJH9r6enldMTze06bY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/Xwt94F8TH8dmNZhH6sC4wtphflA.roa
Signing time: Sat 01 Jan 2022 12:55:53 +0000
ROA not before: Sat 01 Jan 2022 12:55:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56595
IP address blocks: 45.149.252.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113793281 (0x6c85901)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2628cc7f06ea09a247f6be9e9e574c4f37b4e9b6
Validity
Not Before: Jan 1 12:55:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f0b7de05f131fc766359847eac0b8c2da617e50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f8:d6:8f:52:92:0f:e7:1f:02:4f:2c:2e:06:
69:5c:b8:ac:34:05:96:a9:5b:74:0b:f6:d4:f0:97:
a8:c8:ed:7a:67:52:8a:a8:20:e3:da:24:9f:06:27:
21:dc:7f:a1:b2:94:0a:ce:88:c6:23:d2:81:ea:a2:
6b:a9:30:e7:fd:8b:b2:b9:cd:a8:b0:d7:fd:e2:45:
11:38:d7:a0:f3:84:67:69:2b:77:12:3e:44:05:12:
e8:3d:5a:f8:b3:30:82:0c:a4:5d:4c:e7:60:20:0b:
42:36:66:f2:d5:d9:52:3a:a1:14:af:f6:1a:f8:b9:
22:f9:00:a4:6e:28:4b:32:de:54:9f:30:8c:69:ed:
61:69:6a:0a:22:73:21:b3:66:df:94:19:5e:cc:13:
94:93:a9:98:bd:8b:30:07:ff:08:55:d4:41:3c:e1:
bb:95:74:86:59:92:74:f4:40:1a:d1:27:18:da:5a:
92:93:17:fd:5d:16:6a:05:fb:18:d4:2d:45:b5:af:
bf:3b:39:cf:f3:bd:09:24:1e:e6:e5:ef:68:13:01:
11:97:98:99:d1:d5:db:a5:ca:62:91:62:f3:93:1d:
0d:11:1b:f1:38:a7:26:ce:78:5b:9f:c1:81:bb:8d:
d9:d3:9c:37:36:df:2f:e3:6d:d0:2e:10:10:f5:da:
37:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:0B:7D:E0:5F:13:1F:C7:66:35:98:47:EA:C0:B8:C2:DA:61:7E:50
X509v3 Authority Key Identifier:
keyid:26:28:CC:7F:06:EA:09:A2:47:F6:BE:9E:9E:57:4C:4F:37:B4:E9:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JijMfwbqCaJH9r6enldMTze06bY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/Xwt94F8TH8dmNZhH6sC4wtphflA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/27145a-3e6f-4b92-b95b-12a29761e094/1/JijMfwbqCaJH9r6enldMTze06bY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.252.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:2e:f0:95:b3:f4:e8:21:e9:91:88:67:e4:65:c8:e0:f1:2d:
77:8a:c1:63:6c:f3:a8:a0:3b:5b:55:87:9c:cf:65:5f:6d:aa:
6b:4f:04:4c:fe:c3:33:1b:78:a6:4f:c7:e2:8c:88:cd:1c:5c:
49:51:7b:84:93:6d:0f:d3:56:6d:ca:c2:17:5b:92:ec:38:d4:
6e:c0:5c:a3:79:ea:92:3f:79:47:e0:df:00:da:9b:16:b4:28:
b8:d7:10:e5:08:11:1a:d4:ca:6e:50:4e:62:2f:08:47:aa:03:
42:4a:eb:38:ed:bc:98:f5:4e:ad:4f:38:1e:5e:c9:53:54:b8:
49:04:b6:e7:99:c4:cf:c1:4e:ca:fd:49:1e:b7:8d:2c:c8:d4:
85:70:f1:f1:1e:88:59:4a:94:11:32:82:85:0f:3e:42:82:29:
60:52:2c:fe:19:42:a5:7f:3c:d3:d9:87:3e:4d:d1:d0:ba:2f:
3e:d6:d5:c3:29:d8:eb:e3:0b:9b:47:76:cb:eb:e8:2c:51:f3:
42:a0:24:43:3c:15:64:3a:d8:59:d2:fa:e6:26:37:a8:c9:d3:
f9:96:dc:65:09:0d:19:bc:f8:f7:f8:18:f7:2d:4a:1d:5e:b2:
fc:d5:d8:44:b4:92:c1:76:bb:19:fd:9a:68:5b:57:51:e1:5b:
ff:99:cd:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:55 2024 by rpki-client on console-fra.rpki-client.org