Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6oXVSwG0B4jpWGD8mquQ8QApV78.roa
File: 6oXVSwG0B4jpWGD8mquQ8QApV78.roa (raw, json)
Hash identifier: mbOFS2UiTZBxtw1EHoE9y2tmBlukxN/cgjBrjyBe57k=
Subject key identifier: EA:85:D5:4B:01:B4:07:88:E9:58:60:FC:9A:AB:90:F1:00:29:57:BF
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A184983
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6oXVSwG0B4jpWGD8mquQ8QApV78.roa
Signing time: Wed 16 Mar 2022 18:13:51 +0000
ROA not before: Wed 16 Mar 2022 18:13:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207471
IP address blocks: 45.153.24.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 169363843 (0xa184983)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 16 18:13:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ea85d54b01b40788e95860fc9aab90f1002957bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:68:23:e6:18:48:9c:67:1b:b4:b6:f6:a8:7e:
91:f4:1b:16:2f:07:e6:b9:d6:db:c9:2f:09:d6:d5:
98:09:96:4d:8c:63:d3:ae:ef:39:f3:ba:fb:1a:af:
3e:e1:d3:a3:36:90:7f:77:b1:de:6a:85:20:28:fc:
fd:fc:9c:47:d1:b3:ed:ce:29:87:27:b5:55:fa:dd:
07:ef:b6:c8:bb:3d:58:f2:9b:54:de:61:4d:97:8c:
43:98:9f:8d:93:fa:66:66:fb:d0:ca:1c:e8:8a:77:
96:b2:3c:2f:74:fc:b5:c6:14:5e:b8:10:e8:54:c0:
9d:8f:99:47:44:09:43:eb:23:7c:c3:ff:ea:60:d9:
dd:3f:62:72:4e:9e:3c:89:97:f6:b2:63:07:c2:db:
71:f8:08:8f:06:07:1b:f3:3b:a9:03:ed:44:47:62:
b4:21:9f:55:63:18:2c:36:21:fa:d8:94:5e:4e:6f:
51:f3:7f:fa:fc:1f:fa:bd:9f:1a:99:ce:34:85:29:
ff:19:5e:ca:9c:20:92:d1:2f:2c:17:e7:2e:aa:72:
08:60:4e:6c:55:6f:2b:e8:76:1e:b3:3e:cc:61:4b:
d5:3c:e3:fe:8c:b2:19:7b:32:09:63:fd:9c:d3:2a:
0f:aa:ff:5b:1f:79:30:9a:05:20:b5:f4:be:4d:6b:
60:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:85:D5:4B:01:B4:07:88:E9:58:60:FC:9A:AB:90:F1:00:29:57:BF
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/6oXVSwG0B4jpWGD8mquQ8QApV78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.24.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:39:12:bc:e7:bc:d7:a2:74:9f:2f:10:f7:da:76:a7:82:52:
59:cc:85:24:11:a3:03:3b:e8:2a:2e:bc:73:df:d5:a6:1d:36:
66:99:2e:ff:29:b4:0b:08:a9:f2:b8:59:9d:4e:57:f5:4c:41:
12:71:a2:47:18:7a:40:f2:f5:71:71:89:b1:02:eb:f9:84:5d:
47:cf:ed:88:4c:3d:22:1a:fc:8e:97:68:74:88:28:09:6d:c3:
2c:e7:54:da:3e:2a:ef:7c:b2:43:18:21:ab:d8:42:33:30:85:
03:20:47:ff:b6:db:43:5e:a5:94:93:0c:ef:e8:16:8d:b8:71:
58:59:84:68:bb:06:3b:91:b0:05:1d:e0:2b:a4:cd:e3:32:fe:
35:d7:b1:90:54:6c:2c:bc:cd:24:35:69:1c:53:69:d1:82:b1:
7e:38:b6:bf:4a:50:8d:1e:56:08:87:46:6b:0f:0d:0f:e3:56:
17:de:f0:9b:4f:55:77:c3:7b:23:9b:41:32:55:04:4b:c9:07:
50:f3:00:20:f0:c6:8c:85:6b:4c:6f:c1:f3:a4:bc:16:18:5b:
9d:65:29:a6:d7:47:2f:2d:ae:95:4e:26:9e:8c:5e:60:03:f0:
8a:e4:e9:06:4d:27:3d:dc:11:25:1d:b8:f7:8c:5a:1c:b8:b9:
97:5c:fd:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:27 2024 by rpki-client on console-fra.rpki-client.org