Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/k_BwwbatSJ0RLK7rG1vY4jaa0XI.roa
File: k_BwwbatSJ0RLK7rG1vY4jaa0XI.roa (raw, json)
Hash identifier: 3GJMcEQc7MVF5Nb+wBsKnHEbwUcW69DdFejmfdE+MRw=
Subject key identifier: 93:F0:70:C1:B6:AD:48:9D:11:2C:AE:EB:1B:5B:D8:E2:36:9A:D1:72
Certificate issuer: /CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759
Certificate serial: 076404BB
Authority key identifier: AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/k_BwwbatSJ0RLK7rG1vY4jaa0XI.roa
Signing time: Sat 01 Jan 2022 02:53:00 +0000
ROA not before: Sat 01 Jan 2022 02:53:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211415
IP address blocks: 45.91.32.0/22 maxlen: 22
2a0e:ac0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123995323 (0x76404bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad5c2e74c6d46cc73c98a4c16087a8a3b3a6f759
Validity
Not Before: Jan 1 02:53:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93f070c1b6ad489d112caeeb1b5bd8e2369ad172
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:f4:17:20:19:7f:6f:8a:1f:3b:e6:f0:80:31:
49:b2:11:ab:2c:4e:20:5c:c8:7c:f4:80:69:5b:ca:
f9:36:99:ab:22:79:34:0b:8d:26:92:14:62:66:94:
77:90:5b:46:c8:55:37:ba:92:ea:b5:e9:09:95:ec:
dc:c2:24:01:80:a8:76:a6:5b:ef:fc:e1:cc:d2:a1:
1c:19:11:23:8f:1e:95:b4:d3:5b:35:fe:4f:9f:35:
04:3f:15:96:f5:9c:9e:57:da:d4:16:76:c7:70:24:
8c:84:6c:4f:74:22:c1:25:75:65:2d:05:de:5d:27:
29:45:80:4a:78:ec:9d:eb:36:3f:4c:5c:a5:b9:e3:
06:b3:42:e2:38:eb:d1:35:e5:59:ca:8e:db:7b:38:
5a:78:4f:0f:74:83:9b:dc:bd:bd:db:35:30:c8:88:
d9:d3:3c:3a:6f:dd:0f:6a:9f:d1:a4:bc:de:63:77:
8d:15:2e:51:ca:3f:05:8e:b1:a8:ab:8c:be:73:a0:
50:22:b0:63:98:18:0b:66:ef:92:ab:c7:cd:b4:65:
80:1f:2a:d9:e9:84:32:f4:48:91:e3:99:08:9b:f5:
86:f1:99:29:76:8c:1d:c0:ce:b4:4c:58:8b:5d:c0:
e4:23:64:0c:99:1e:c5:c2:4c:c9:4f:e3:9f:28:98:
1f:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:F0:70:C1:B6:AD:48:9D:11:2C:AE:EB:1B:5B:D8:E2:36:9A:D1:72
X509v3 Authority Key Identifier:
keyid:AD:5C:2E:74:C6:D4:6C:C7:3C:98:A4:C1:60:87:A8:A3:B3:A6:F7:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rVwudMbUbMc8mKTBYIeoo7Om91k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/k_BwwbatSJ0RLK7rG1vY4jaa0XI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5da375-99a9-4329-9d29-cec8931ce631/1/rVwudMbUbMc8mKTBYIeoo7Om91k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.32.0/22
IPv6:
2a0e:ac0::/29
Signature Algorithm: sha256WithRSAEncryption
81:92:08:69:a6:9d:24:6a:b7:29:74:e7:25:eb:9c:b2:73:30:
41:41:9b:de:7c:15:c2:49:54:4f:cb:d4:7a:1d:e8:90:44:a7:
9a:f6:ce:2e:62:39:3f:bb:0b:d4:f0:da:8b:2a:94:29:f2:70:
e4:71:75:10:8b:7c:69:3a:e7:71:80:3e:ea:a9:ca:cd:ad:3b:
21:f0:2b:a3:67:70:61:7f:34:a9:e9:e2:b6:61:97:10:29:fc:
7b:60:c1:30:ef:9e:13:72:ea:b1:5b:60:ca:98:16:41:33:a0:
ee:32:65:c8:91:bc:a4:18:e4:77:38:02:0c:9d:9d:f6:d3:59:
4f:85:94:12:a5:51:be:f9:39:a9:74:f1:49:ff:e9:7e:a2:ce:
82:2c:d5:5a:50:86:9d:68:0e:88:d6:91:89:d8:33:cf:e9:63:
a3:a8:17:ac:4b:2a:21:a7:3f:27:86:38:d3:e1:f9:b9:03:4c:
1d:7f:e1:5a:da:53:14:4b:1c:ac:9a:d0:26:cf:af:99:d4:d2:
7b:1c:c1:a2:a4:5f:9b:28:26:c4:1a:07:18:b5:51:0f:7f:db:
84:85:a8:19:17:a3:fc:f7:ba:2f:0c:25:df:73:a5:ba:ed:1b:
ae:40:a0:b1:17:f3:d3:66:ff:4e:c5:6f:73:aa:b1:46:ab:5b:
73:b3:0e:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:25 2023 by rpki-client on console-fra.rpki-client.org