Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/i0DXiE5-xSVC0gdRMwJJ5MH0zI8.roa
File: i0DXiE5-xSVC0gdRMwJJ5MH0zI8.roa (raw, json)
Hash identifier: H2Ad3iFfJfja3DlPIWSW0TLS7pCkzhAEkmz8tlRbt5s=
Subject key identifier: 8B:40:D7:88:4E:7E:C5:25:42:D2:07:51:33:02:49:E4:C1:F4:CC:8F
Certificate issuer: /CN=9573c1a56ecc24a57d2b684e5482dab7b8d9d2cb
Certificate serial: 04A25820
Authority key identifier: 95:73:C1:A5:6E:CC:24:A5:7D:2B:68:4E:54:82:DA:B7:B8:D9:D2:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/lXPBpW7MJKV9K2hOVILat7jZ0ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/i0DXiE5-xSVC0gdRMwJJ5MH0zI8.roa
Signing time: Sat 01 Jan 2022 08:03:16 +0000
ROA not before: Sat 01 Jan 2022 08:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212906
IP address blocks: 45.153.160.0/24 maxlen: 24
2a0f:9100::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77748256 (0x4a25820)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9573c1a56ecc24a57d2b684e5482dab7b8d9d2cb
Validity
Not Before: Jan 1 08:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b40d7884e7ec52542d20751330249e4c1f4cc8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:62:d1:f4:99:dd:91:52:dc:53:24:b3:5c:eb:
5c:8d:a8:0e:06:fc:3d:eb:6a:c2:bb:70:86:8c:ea:
e8:62:a3:5b:c5:e2:01:3e:76:2c:f6:e8:37:22:a2:
69:b6:f5:aa:3b:46:83:db:3e:73:70:1f:f5:60:70:
a1:f5:18:de:7b:d5:41:c7:8a:ff:59:de:ae:a0:0c:
f7:ce:4e:d6:25:6f:c3:03:9e:23:9c:48:c3:30:78:
cb:e4:f0:c5:8c:3f:91:ad:48:85:e7:dd:f9:67:18:
24:fc:5d:87:2b:7d:b2:2c:1b:13:03:dc:22:e1:42:
7a:63:ae:00:65:2a:69:a0:1e:84:7a:72:43:be:c0:
e0:d8:7a:a8:2e:88:06:38:84:e4:ab:7d:49:b2:c9:
be:9f:20:2e:99:80:4d:2a:43:8f:b7:ab:88:5f:c8:
77:68:1b:04:50:51:38:fd:51:cf:66:b5:50:71:11:
0f:28:ff:b2:f3:d1:1b:6b:c6:a2:d6:0e:7b:20:49:
2f:b7:c0:57:c4:9e:03:fa:ac:60:12:e1:b3:23:f2:
74:51:5d:38:8b:eb:02:c5:32:a0:5c:52:b2:96:48:
15:4b:2f:f6:02:12:f2:c3:ff:8d:06:82:c2:88:66:
52:52:02:3b:11:60:6e:f0:bd:af:c1:e7:f9:f9:f0:
1f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:40:D7:88:4E:7E:C5:25:42:D2:07:51:33:02:49:E4:C1:F4:CC:8F
X509v3 Authority Key Identifier:
keyid:95:73:C1:A5:6E:CC:24:A5:7D:2B:68:4E:54:82:DA:B7:B8:D9:D2:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/lXPBpW7MJKV9K2hOVILat7jZ0ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/i0DXiE5-xSVC0gdRMwJJ5MH0zI8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/64284f-035c-4620-94db-4cb9ddf09d45/1/lXPBpW7MJKV9K2hOVILat7jZ0ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.160.0/24
IPv6:
2a0f:9100::/32
Signature Algorithm: sha256WithRSAEncryption
81:af:9d:ec:ec:97:50:45:47:2d:b2:9b:ab:91:ce:28:7f:95:
86:b6:1b:f0:4c:31:b8:d0:7e:06:36:32:97:3d:ff:88:5c:17:
42:13:00:33:47:82:5c:8a:9e:40:13:58:27:83:7d:39:0d:46:
23:ea:37:46:30:a1:c5:67:ae:44:97:b2:db:be:7a:37:93:05:
63:a6:a9:91:43:22:f2:b4:22:27:52:27:aa:a8:25:31:17:46:
b0:62:f4:84:8c:64:25:e7:dd:13:82:aa:72:07:d9:5f:36:cd:
62:9c:12:9a:2c:65:52:17:8f:b8:19:51:20:ec:f7:55:76:91:
ff:96:5f:46:3c:66:2a:53:be:94:93:c2:59:a5:c8:56:af:79:
07:0e:34:e5:12:2c:59:d6:1e:e7:30:e6:cd:ce:76:14:fa:80:
bd:10:cf:52:c1:eb:e5:8c:94:6d:4c:ce:97:51:d1:85:dc:d3:
de:36:e8:34:45:54:de:d6:9b:9d:63:23:6e:49:ff:a2:f4:af:
f8:e8:7b:3e:1e:8d:72:c8:31:15:a4:1b:f7:5d:c3:63:45:dc:
ca:d9:c5:dd:00:e0:68:d0:66:3d:1e:e0:df:83:de:21:16:f8:
73:38:9e:27:f6:e6:72:ed:ff:88:10:3f:f3:3d:17:3b:44:83:
c5:d0:e5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:57 2024 by rpki-client on console-fra.rpki-client.org