Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/CR5apzgLPM05mJUIrqSVKNyB1ao.roa
File: CR5apzgLPM05mJUIrqSVKNyB1ao.roa (raw, json)
Hash identifier: U+qrFBpnY8azLPHN3/8MBzlil5ymRufi27tAoJzCkKo=
Subject key identifier: 09:1E:5A:A7:38:0B:3C:CD:39:98:95:08:AE:A4:95:28:DC:81:D5:AA
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0183A2CE35A93B3929036BCB2F0003411993
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/CR5apzgLPM05mJUIrqSVKNyB1ao.roa
Signing time: Tue 04 Oct 2022 11:42:46 +0000
ROA not before: Tue 04 Oct 2022 11:42:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 29670
IP address blocks: 45.11.230.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a2:ce:35:a9:3b:39:29:03:6b:cb:2f:00:03:41:19:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 4 11:42:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=091e5aa7380b3ccd39989508aea49528dc81d5aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:95:34:85:ca:ef:a5:5e:86:83:08:05:47:f0:
44:32:8f:fa:a4:30:18:6a:5a:f1:c9:17:0d:53:bb:
7f:0d:51:79:55:db:a9:89:ed:2a:7b:39:4c:c2:5f:
69:c5:d4:32:93:89:98:85:5c:ca:94:15:3f:78:5e:
ae:24:2d:57:8e:e0:18:6c:f2:04:5f:d4:6b:e0:f9:
1e:e3:20:5e:35:86:c4:3c:ea:d2:83:20:25:00:c3:
53:76:ed:96:fc:2f:a1:19:cd:52:12:2c:68:1d:ad:
a1:f2:38:cb:56:6c:d4:7b:76:b5:d2:bf:e1:ff:d4:
98:86:2b:74:e5:c9:02:e2:e7:e4:d8:f1:82:dd:28:
b2:36:55:c4:59:39:8a:0f:dd:ac:1c:53:8e:a3:e9:
e1:30:6f:99:a0:1e:a9:30:8f:58:21:8b:9a:9c:05:
67:de:58:d2:96:2d:eb:73:bb:cf:9b:72:d6:11:72:
b5:39:b7:3e:cf:54:72:2a:a4:26:d0:11:7f:be:af:
66:35:15:98:12:5b:d3:52:ce:9c:87:dc:19:44:8e:
a6:6d:fb:25:d3:50:53:e9:fc:11:a7:87:e1:36:24:
16:59:33:25:2d:5a:21:7f:6b:b3:c2:81:d6:85:2e:
c3:82:89:7f:63:f6:63:c9:29:3f:b6:62:18:d5:49:
79:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1E:5A:A7:38:0B:3C:CD:39:98:95:08:AE:A4:95:28:DC:81:D5:AA
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/CR5apzgLPM05mJUIrqSVKNyB1ao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.230.0/24
Signature Algorithm: sha256WithRSAEncryption
20:a4:64:fe:c0:8f:1e:0a:0f:18:f1:42:ec:3c:21:d7:cb:16:
cf:f4:3f:9e:69:84:2a:4b:85:6a:a3:45:e5:d8:d3:ef:9d:b1:
08:3e:67:cb:0d:fa:fd:15:6e:d9:92:f1:02:37:31:6f:99:c1:
0f:6a:d4:5f:e2:61:dd:7d:c6:29:e5:5d:41:f5:de:aa:93:44:
00:16:fd:43:6f:4f:90:36:44:91:a0:b2:b7:64:9e:6a:8d:01:
eb:66:cb:09:da:07:52:f6:d6:8b:5e:ad:57:9c:58:8b:d9:fa:
a2:71:1d:03:bd:3d:2e:44:7e:33:d2:1a:65:cd:2b:58:0f:38:
cd:b1:9e:dc:b7:30:27:8f:35:f7:3e:86:e9:a1:ce:4e:18:2b:
45:8f:7f:80:43:56:17:e7:44:d4:51:78:d2:0e:be:83:fe:19:
a1:23:2c:47:50:ab:d2:01:78:a3:b2:62:e8:e7:36:01:5a:1b:
b8:d0:1a:cf:63:e6:a3:6d:80:f3:90:b2:b2:a5:89:01:b0:a5:
93:64:1c:fd:7d:bd:41:15:38:0c:7d:33:09:39:03:de:35:cf:
00:43:1e:d5:7a:7e:3f:65:fb:42:f2:bb:56:18:a9:48:2e:41:
a6:ec:0c:52:4b:a0:91:03:2e:14:6a:cc:b9:85:58:e3:be:6e:
72:99:92:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org