Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/hr5RO7PaJ_VyqmgHkIEgqQi8uyQ.roa
File: hr5RO7PaJ_VyqmgHkIEgqQi8uyQ.roa (raw, json)
Hash identifier: b5/wSMMC/sXFxc+kEYea42pKjYUFCPpVSfvT998CkGI=
Subject key identifier: 86:BE:51:3B:B3:DA:27:F5:72:AA:68:07:90:81:20:A9:08:BC:BB:24
Certificate issuer: /CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Certificate serial: 034D2D7B
Authority key identifier: 82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/hr5RO7PaJ_VyqmgHkIEgqQi8uyQ.roa
Signing time: Tue 21 Jun 2022 12:52:47 +0000
ROA not before: Tue 21 Jun 2022 12:52:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397373
IP address blocks: 45.157.72.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55389563 (0x34d2d7b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821a3f21fb0c294d6d4a529b2f1dbd4bd1119bd7
Validity
Not Before: Jun 21 12:52:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86be513bb3da27f572aa6807908120a908bcbb24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:a4:fb:e2:64:cf:d6:32:d7:f9:ac:75:b9:15:
2d:a5:9b:7d:c3:47:e8:16:45:51:0e:fb:21:2e:16:
9f:81:f3:db:a8:75:00:da:a9:a2:e0:f3:ed:67:0c:
c7:e3:67:ca:a5:49:18:46:8e:7e:41:8b:f8:a2:d7:
53:d7:97:c1:a0:96:52:b4:cb:c9:ae:cb:6c:59:b8:
ad:cf:25:1b:24:fb:d7:87:8d:40:0f:14:fd:5d:a3:
ee:0d:b5:32:ef:05:c8:f6:54:4d:33:80:c9:8f:c3:
6e:3d:0a:05:ca:ef:ce:d3:bc:7f:84:3a:37:eb:c9:
77:75:0c:6f:2c:e0:73:27:7c:cd:94:13:f3:a6:98:
da:95:18:7b:ae:38:e5:fb:45:41:70:3c:8c:ed:44:
ba:29:af:64:e2:02:54:03:5c:d9:ea:3e:ee:bf:ef:
6a:bc:c1:51:10:71:64:25:55:38:98:a5:dd:65:4c:
b4:fb:1b:59:8d:31:ed:cc:52:87:d5:d9:7f:09:7a:
7f:db:70:06:22:23:2e:4f:5f:17:66:29:7a:0c:e1:
5e:81:79:a0:d8:31:d2:a6:bc:6b:0e:45:64:60:38:
bb:ea:87:92:91:75:33:52:e4:5a:cc:29:45:b7:bc:
11:f5:9c:21:3a:bc:ba:01:b3:ea:7b:21:58:6f:97:
58:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:BE:51:3B:B3:DA:27:F5:72:AA:68:07:90:81:20:A9:08:BC:BB:24
X509v3 Authority Key Identifier:
keyid:82:1A:3F:21:FB:0C:29:4D:6D:4A:52:9B:2F:1D:BD:4B:D1:11:9B:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gho_IfsMKU1tSlKbLx29S9ERm9c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/hr5RO7PaJ_VyqmgHkIEgqQi8uyQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/edc855-f2bc-4e9c-8c0c-b6f2ac86ef27/1/gho_IfsMKU1tSlKbLx29S9ERm9c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.72.0/23
Signature Algorithm: sha256WithRSAEncryption
16:cb:69:75:91:b4:54:55:ca:03:4e:3a:fb:6a:73:a5:d8:86:
30:5a:d0:2d:78:a4:c9:7c:a3:47:bc:06:e8:61:0c:cf:37:09:
a7:34:5d:10:d8:b6:0c:cc:a8:1c:c4:f1:32:a7:31:b6:dd:f5:
da:7b:59:96:3b:fa:8d:81:a6:65:15:d1:de:f4:38:84:e1:4a:
1b:a7:fa:2f:b6:da:62:bd:ee:e7:ee:e0:70:18:33:a3:dc:98:
8d:6e:25:b5:b8:1a:e8:ec:0e:54:5d:66:df:37:5b:d0:b0:f7:
28:7f:00:2e:d8:28:cd:b9:76:b6:8e:7d:f9:86:9b:0d:dd:fe:
56:65:7b:be:75:82:46:09:a5:90:41:ee:ad:f4:8f:75:49:43:
87:6e:fe:db:1d:b2:61:a4:dd:f6:aa:38:7e:71:a9:76:a8:86:
a3:2b:6d:e4:3c:6e:4f:7a:34:83:a3:cb:19:4c:f8:9b:d0:6f:
16:18:07:c2:4a:2f:d5:22:dc:36:e3:40:d1:a4:ef:16:f3:97:
c3:72:9b:e2:7b:f3:00:8b:a3:4d:fa:4c:c7:4c:95:58:e6:d9:
e8:5c:56:1f:32:f3:41:30:c3:7b:be:98:f0:81:75:27:18:91:
51:e9:ba:1a:88:2a:46:44:32:bc:30:16:29:1b:97:bf:e3:30:
c7:ec:af:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:17 2023 by rpki-client on console-fra.rpki-client.org