Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XRi1b4-A4tN7t-FD2lC1slYOV1w.roa
File: XRi1b4-A4tN7t-FD2lC1slYOV1w.roa (raw, json)
Hash identifier: HPYExlocUkzfz/C8zkCgUAa+LEgtEXLab1QjYb2zlIw=
Subject key identifier: 5D:18:B5:6F:8F:80:E2:D3:7B:B7:E1:43:DA:50:B5:B2:56:0E:57:5C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 092F25AD
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XRi1b4-A4tN7t-FD2lC1slYOV1w.roa
Signing time: Sat 01 Jan 2022 06:00:21 +0000
ROA not before: Sat 01 Jan 2022 06:00:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7489
IP address blocks: 45.137.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 154084781 (0x92f25ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jan 1 06:00:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d18b56f8f80e2d37bb7e143da50b5b2560e575c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a0:de:48:24:67:6b:f1:ce:8b:7d:b6:82:81:
84:5b:28:d9:bf:2b:71:6b:f1:a3:c7:60:7a:97:37:
bf:14:2f:f7:7f:c0:5f:2b:a9:42:34:55:4e:7c:72:
16:4c:62:2d:e3:79:a2:aa:e6:ca:ec:7a:10:7f:4b:
46:11:13:61:a5:8b:b3:f1:d4:09:48:31:3f:79:7b:
03:93:68:fd:51:bc:a9:ad:e1:1c:21:d0:bd:d7:64:
16:25:f0:62:46:d6:60:0c:5f:9b:d2:50:49:c9:61:
0e:10:4d:e9:a4:6d:d3:8e:f2:33:bc:12:6f:72:f9:
d0:4e:d9:f1:cc:13:8d:4a:23:e1:2f:3a:2a:04:0a:
c1:7d:94:63:49:12:e2:0b:7a:af:e5:4d:f8:d0:f4:
9d:04:97:20:68:3a:a4:01:a4:ac:3e:00:9b:e5:c0:
70:cb:92:22:6b:15:c5:3b:c5:a4:fd:fa:19:e3:89:
43:bd:af:e4:f9:55:a2:9a:81:cb:65:af:0b:d1:e7:
eb:ea:46:dc:a1:76:3e:20:e4:95:1e:b3:60:d0:4e:
70:3e:af:50:af:a4:14:10:78:40:15:fa:eb:a9:39:
4e:ec:dc:f9:e1:56:cc:c0:c7:11:45:7b:86:af:39:
bd:61:a3:65:15:9e:53:1d:80:31:7f:08:80:87:90:
81:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:18:B5:6F:8F:80:E2:D3:7B:B7:E1:43:DA:50:B5:B2:56:0E:57:5C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XRi1b4-A4tN7t-FD2lC1slYOV1w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.201.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:b4:4f:e4:9a:9f:b7:98:6b:fe:17:47:b9:3f:ba:1a:ed:29:
29:19:25:88:0f:36:ab:ca:43:1e:c4:fe:e9:91:88:9a:93:06:
73:77:b2:d0:53:c9:eb:1a:14:5b:49:c8:e5:5b:0a:e0:ea:d3:
fb:15:94:9d:66:9a:09:79:6f:b5:99:8d:c2:62:97:29:e1:0a:
92:c4:c5:a4:35:40:96:05:4a:5a:28:84:15:59:da:ba:62:30:
79:b0:59:1f:3c:e7:08:08:be:f5:c4:60:97:21:69:80:f3:a7:
1e:ae:29:66:6e:c1:82:2a:fb:7e:60:11:83:47:9f:df:5f:7b:
e0:01:c0:cc:75:c8:b3:dd:a7:fc:bd:88:95:8f:48:3c:6e:2a:
79:ef:b4:9b:79:95:1a:ed:39:a1:98:11:b7:ac:44:86:03:78:
73:83:8d:d1:a4:13:f3:41:bf:14:6b:06:6a:9e:af:29:b9:62:
3a:c2:c0:f5:92:32:5b:f6:09:d3:e7:4b:f7:a3:b4:5c:6d:de:
98:52:a0:a2:40:e8:b0:c1:05:22:24:ed:cf:64:9d:b2:41:29:
be:bf:8c:f7:75:09:e3:43:ac:6f:05:41:28:90:b1:f5:10:32:
8e:11:dd:61:eb:93:ee:da:bf:e5:36:56:03:f1:82:f1:96:5f:
6b:ca:4e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org