Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/v5xUHeYO8PLR3gKCsD0MAYCxYng.roa
File: v5xUHeYO8PLR3gKCsD0MAYCxYng.roa (raw, json)
Hash identifier: hlc4BBmBC4SnQUCh5ebkak55PpmdbLYl3VrkZjccsQw=
Subject key identifier: BF:9C:54:1D:E6:0E:F0:F2:D1:DE:02:82:B0:3D:0C:01:80:B1:62:78
Certificate issuer: /CN=36900183cf08a6e5bc807846294a46062e190e3b
Certificate serial: 390EDD
Authority key identifier: 36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/v5xUHeYO8PLR3gKCsD0MAYCxYng.roa
Signing time: Sat 01 Jan 2022 00:55:42 +0000
ROA not before: Sat 01 Jan 2022 00:55:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400040
IP address blocks: 45.11.187.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3739357 (0x390edd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36900183cf08a6e5bc807846294a46062e190e3b
Validity
Not Before: Jan 1 00:55:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bf9c541de60ef0f2d1de0282b03d0c0180b16278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:1e:75:da:89:1e:f2:54:f5:6c:df:a2:41:15:
70:c1:83:d1:46:5a:ab:f7:0c:df:3d:9e:84:e2:f1:
04:84:ea:ab:db:21:72:53:84:7d:27:6c:ae:73:c3:
39:ac:ba:63:7c:a1:0c:0e:c2:b5:cc:b4:fe:10:70:
b0:71:90:42:53:50:df:28:a0:1d:39:42:1f:53:bb:
18:d2:61:cf:77:9f:fc:ff:3e:bd:85:f5:c9:56:17:
5e:90:94:b1:1e:41:ff:02:fc:da:5c:4c:fe:83:7b:
d7:71:6b:76:61:9c:1b:ac:dd:8e:55:7d:fb:29:e8:
aa:6c:d9:66:9c:74:b8:7d:f8:de:4f:97:d0:23:5d:
5d:34:fb:19:b6:7a:b2:ab:8f:77:35:49:1b:d5:3d:
86:35:31:07:4a:18:4b:79:ef:51:c4:70:86:87:fa:
cc:9b:2f:d8:af:7c:b7:e5:b0:0a:c1:f8:4f:95:b3:
3b:2e:2a:57:55:8f:dd:1b:62:41:5a:9c:73:60:b4:
5c:2a:83:1a:55:24:c3:3b:55:40:16:3b:2a:ee:99:
98:58:32:2c:19:7f:ee:5b:53:4d:db:51:b9:f7:73:
1b:81:a5:82:73:6a:f8:37:fd:f2:4f:14:04:eb:84:
94:96:2f:1e:76:10:9c:f1:6c:73:f5:27:71:29:a0:
12:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:9C:54:1D:E6:0E:F0:F2:D1:DE:02:82:B0:3D:0C:01:80:B1:62:78
X509v3 Authority Key Identifier:
keyid:36:90:01:83:CF:08:A6:E5:BC:80:78:46:29:4A:46:06:2E:19:0E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NpABg88IpuW8gHhGKUpGBi4ZDjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/v5xUHeYO8PLR3gKCsD0MAYCxYng.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/5a32bc-0836-47ec-b5b3-2f5b6a83faf3/1/NpABg88IpuW8gHhGKUpGBi4ZDjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.187.0/24
Signature Algorithm: sha256WithRSAEncryption
c6:a6:b2:cb:c7:f4:b5:65:c0:ea:92:9b:6e:59:5c:a1:2a:66:
27:93:a0:a2:ea:f3:9b:ab:d0:a9:d1:83:e4:36:54:42:6d:42:
28:08:c4:f3:b6:63:0b:af:d8:60:d8:e3:5c:d2:d2:7e:81:fd:
43:3b:60:00:79:14:63:30:03:85:ad:a2:71:81:99:d5:03:4d:
9f:af:89:6d:9c:f8:11:ac:66:08:9d:11:c4:6c:32:75:f3:4e:
e5:78:29:ef:e3:75:98:bc:e6:32:40:81:2b:79:8a:94:4b:9b:
00:49:71:41:e2:c2:71:c9:95:19:20:7b:e1:2a:cb:4e:7f:00:
c1:24:32:99:84:6a:d4:96:28:30:c9:7f:a4:f3:d2:cd:6a:4f:
20:17:6b:e9:ac:fe:f9:3f:61:00:1f:c0:51:1e:4e:f2:7c:db:
f4:76:8d:ab:d2:ed:ff:5e:07:87:1e:74:27:2c:e9:02:0d:01:
61:56:14:db:8b:a1:cb:de:03:4c:98:2b:03:b0:7b:51:13:de:
b4:9d:6c:55:7b:af:26:00:37:19:c5:e5:ac:aa:b4:7b:b1:ee:
40:df:d4:99:2a:60:62:34:e2:54:c7:0d:46:e5:0d:60:46:a1:
3d:95:5f:a3:05:7b:3f:13:bb:f9:b0:02:8d:c6:2c:86:a6:99:
b2:cc:87:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:09 2023 by rpki-client on console-fra.rpki-client.org