Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/t6n1ZU5MyvES8kNoq1vgbk_pTIw.roa
File: t6n1ZU5MyvES8kNoq1vgbk_pTIw.roa (raw, json)
Hash identifier: 4CtvHb+AOO1ZqvYZR9zfQ+IPn5VeHuEjB05UpU15m8w=
Subject key identifier: B7:A9:F5:65:4E:4C:CA:F1:12:F2:43:68:AB:5B:E0:6E:4F:E9:4C:8C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09B78E54
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/t6n1ZU5MyvES8kNoq1vgbk_pTIw.roa
Signing time: Tue 08 Feb 2022 09:24:58 +0000
ROA not before: Tue 08 Feb 2022 09:24:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210851
IP address blocks: 45.137.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163024468 (0x9b78e54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Feb 8 09:24:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b7a9f5654e4ccaf112f24368ab5be06e4fe94c8c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:bb:bb:5b:dd:fe:80:ba:95:e4:3f:4b:2a:80:
38:9e:7e:51:1e:33:0b:78:e5:9c:e0:f6:92:4d:df:
71:54:6e:1b:f6:4b:ff:e3:5e:ce:2b:36:e3:ed:1c:
fc:13:74:98:73:39:31:83:e2:88:93:c6:c9:89:fd:
9d:3f:ed:0a:06:90:eb:c8:bc:f8:7d:9f:d8:9c:a0:
9a:16:f0:1d:3f:91:1d:c4:9a:87:0c:4c:42:1d:40:
c8:e4:2c:d4:5c:7a:c8:96:d9:c4:1e:33:01:48:79:
2e:87:a3:19:7a:4f:fa:8c:b2:e1:cc:49:a6:23:ae:
39:6c:9b:2c:21:90:f4:99:90:ee:79:63:11:92:3c:
66:cf:68:78:24:9e:a7:0e:fb:98:48:15:47:3f:82:
31:05:dd:40:93:8b:d6:5c:3a:aa:a7:51:8d:27:95:
86:b3:a3:5f:c0:7b:53:fe:34:07:cc:f8:7c:a4:6e:
aa:63:77:f7:24:2c:3a:b7:13:5b:7e:1f:a3:9c:6f:
b7:3b:5d:92:6f:e7:04:2f:98:6d:19:67:90:94:26:
38:91:d3:1c:0d:ac:db:6b:81:00:f4:30:f5:13:c1:
d2:dc:25:53:a7:1d:ef:82:10:48:3a:ea:cd:1e:38:
8f:0d:68:24:45:83:18:89:12:64:a9:c8:95:89:5b:
a2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:A9:F5:65:4E:4C:CA:F1:12:F2:43:68:AB:5B:E0:6E:4F:E9:4C:8C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/t6n1ZU5MyvES8kNoq1vgbk_pTIw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.200.0/24
Signature Algorithm: sha256WithRSAEncryption
48:56:f0:58:21:cd:29:de:37:9e:b2:92:6e:50:0f:50:fa:66:
ee:27:ed:42:29:d9:60:ec:56:c0:e9:ff:15:ae:9c:b0:91:33:
5b:66:45:17:87:b3:3a:9b:39:d6:66:03:26:93:df:6a:e7:0a:
b0:37:85:43:07:f5:50:0b:0d:6d:94:d4:86:21:e9:36:4c:f5:
5d:f2:8b:3d:50:42:be:be:d3:7d:5b:39:94:b0:47:cf:bf:15:
01:90:c5:d2:f7:08:cf:3a:bb:57:a5:fb:56:b7:18:6b:cd:b3:
c0:c3:24:76:70:c5:31:ad:66:30:e4:14:d0:c0:d9:a5:81:f6:
07:1d:ff:5f:64:46:4a:2b:0b:30:0c:13:99:28:c5:d8:76:13:
ad:43:da:e6:a8:4b:3b:84:46:76:87:12:95:88:7e:3b:2b:06:
74:9c:3b:b4:c9:50:f2:46:79:95:25:39:36:e6:d9:de:6c:f7:
78:f9:28:22:71:61:58:8e:ad:f7:f1:78:09:ae:ce:fe:4e:5e:
e4:38:95:e9:cc:9a:42:f8:fa:d1:78:7d:c4:24:34:12:bc:c0:
11:98:66:cd:51:87:10:bb:90:89:f2:b8:b3:61:07:6b:a8:56:
87:8b:20:9d:77:13:11:00:0d:50:7d:81:1d:61:c2:48:c3:0e:
aa:42:7a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:14 2024 by rpki-client on console-ams.rpki-client.org