Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/sFGAG2lDQ_T5sqizSoOMOsq2e2E.roa
File: sFGAG2lDQ_T5sqizSoOMOsq2e2E.roa (raw, json)
Hash identifier: y2TiyF30W/sBVtGm5HLSUHDEMLcKs4oyyrHZUEQXmDk=
Subject key identifier: B0:51:80:1B:69:43:43:F4:F9:B2:A8:B3:4A:83:8C:3A:CA:B6:7B:61
Certificate issuer: /CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Certificate serial: 0B69BB13
Authority key identifier: 56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/sFGAG2lDQ_T5sqizSoOMOsq2e2E.roa
Signing time: Sat 01 Jan 2022 08:58:44 +0000
ROA not before: Sat 01 Jan 2022 08:58:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 65544
IP address blocks: 45.156.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 191478547 (0xb69bb13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=568fe35cc962633a2757af10a0e6e8ab6d01f4c9
Validity
Not Before: Jan 1 08:58:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b051801b694343f4f9b2a8b34a838c3acab67b61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:45:19:a1:13:89:a9:70:63:6e:87:ff:30:64:
d5:1e:6e:b8:2a:b1:f2:41:2a:3f:8d:2b:2a:ef:c3:
f8:dc:4c:d2:46:55:86:b4:da:dd:06:c2:9f:2a:67:
82:d0:c2:3c:e5:2d:d3:b9:91:3a:6d:af:7b:df:b4:
f4:ec:e3:08:99:cb:6b:d2:af:eb:bd:65:13:72:c3:
33:41:52:c3:03:85:4c:77:1c:1d:39:20:c7:5b:0f:
92:ca:03:05:29:65:c8:e6:de:84:15:cb:35:c7:b6:
27:36:39:bc:42:b3:ed:7d:40:5c:74:fb:18:ef:9d:
d1:cf:5b:76:e6:e9:5c:cd:77:b4:bd:87:e9:9d:99:
7a:e7:00:88:23:82:ae:63:df:4b:33:fa:f0:87:4a:
90:fb:2e:a1:5d:2d:98:00:b6:29:83:a4:1e:27:00:
80:e2:98:6c:51:35:0b:c6:81:68:4e:ec:3c:d1:e0:
73:a6:55:31:32:0f:84:19:dd:b4:03:11:2e:97:e1:
13:e9:5f:52:e5:d4:5b:5e:fd:d7:08:ae:40:57:1a:
33:28:a5:0e:c2:f8:13:5f:5d:80:85:6a:fc:18:25:
fe:87:8d:e3:f2:10:73:e1:5e:b4:87:86:91:c2:45:
c6:56:52:3c:40:3d:d2:94:6f:0b:30:10:aa:98:b1:
21:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:51:80:1B:69:43:43:F4:F9:B2:A8:B3:4A:83:8C:3A:CA:B6:7B:61
X509v3 Authority Key Identifier:
keyid:56:8F:E3:5C:C9:62:63:3A:27:57:AF:10:A0:E6:E8:AB:6D:01:F4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Vo_jXMliYzonV68QoOboq20B9Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/sFGAG2lDQ_T5sqizSoOMOsq2e2E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/37ebe6-8bfe-4c1f-a183-83d648f79746/1/Vo_jXMliYzonV68QoOboq20B9Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.15.0/24
Signature Algorithm: sha256WithRSAEncryption
84:e2:b0:16:7e:76:91:bb:8e:4b:fb:c2:51:6c:13:b4:31:28:
01:a6:86:95:46:f6:a5:be:cf:58:05:2d:ab:0f:bc:23:fe:d8:
5e:b2:30:3f:b2:fd:7e:c7:82:2a:6f:91:b0:40:10:b8:49:6a:
09:39:8c:e0:41:f7:1d:03:ee:b0:81:b4:9b:47:cc:14:34:5c:
7d:02:33:50:8e:d5:ee:fa:08:9e:ae:05:06:1a:5c:61:b2:78:
b7:d9:a5:1f:29:43:95:5d:48:cf:e7:4a:79:26:41:2c:04:5a:
30:94:59:4f:e4:e1:96:88:9e:cb:9f:71:59:de:d8:a5:21:37:
f3:69:cf:5e:a5:6b:fd:ff:a1:c0:75:55:5b:e0:18:7d:03:a1:
3d:69:d5:17:50:39:32:e5:69:0c:7d:2f:5f:02:4a:60:bb:7c:
aa:ee:4f:43:75:ad:09:95:2c:83:a5:58:64:58:d2:95:e6:cf:
0f:83:f8:7d:4d:28:b2:78:27:9c:c7:a6:29:cf:9e:a6:ba:51:
61:cb:bb:38:61:cb:7e:f7:ee:c8:ce:bb:d2:6c:5e:b8:25:1b:
eb:8d:09:3f:4d:4b:58:74:f6:86:63:34:79:1b:11:fd:bf:b3:
3c:6a:37:f7:1a:9f:ff:e9:88:c2:87:84:b4:77:9a:a8:8e:ad:
35:e1:7b:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:11 2023 by rpki-client on console-fra.rpki-client.org