Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/bSni9l-Pwo9aXBmlgTt3sNI_Yxc.roa
File: bSni9l-Pwo9aXBmlgTt3sNI_Yxc.roa (raw, json)
Hash identifier: Jk3+Xc7wDDQClAyN7w8hDaXGFEX2EYpeKhXw8UPjFno=
Subject key identifier: 6D:29:E2:F6:5F:8F:C2:8F:5A:5C:19:A5:81:3B:77:B0:D2:3F:63:17
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 0183E6D91C29FDED67699B751123DE20D7B9
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/bSni9l-Pwo9aXBmlgTt3sNI_Yxc.roa
Signing time: Mon 17 Oct 2022 16:48:51 +0000
ROA not before: Mon 17 Oct 2022 16:48:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 82.115.217.0/24 maxlen: 24
45.140.210.0/24 maxlen: 24
45.140.211.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:d9:1c:29:fd:ed:67:69:9b:75:11:23:de:20:d7:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Oct 17 16:48:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6d29e2f65f8fc28f5a5c19a5813b77b0d23f6317
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:d7:93:20:f4:25:68:f0:90:2b:6b:25:99:69:
bb:2d:ea:c8:00:ab:cb:1d:51:2f:f7:97:86:73:5f:
13:27:5d:87:d0:18:7b:5f:55:bf:b2:72:f8:1a:f6:
be:86:bc:a7:46:de:44:22:2c:6a:38:d8:0c:8e:6a:
2e:c1:f5:0c:fc:77:7b:a7:06:3a:91:aa:78:69:e2:
78:e7:a3:48:d2:27:5f:d6:11:76:80:69:b8:1d:66:
9f:c0:a9:75:bf:1a:81:db:fe:34:07:8a:97:c2:24:
a6:55:0f:ef:46:30:6e:fd:2c:9a:a2:ee:06:d0:35:
f6:7a:9e:5a:89:03:bd:58:f1:da:3c:4e:34:31:70:
59:5e:65:90:70:be:1e:61:0f:53:e2:b1:27:74:9f:
a7:10:26:70:7d:50:d8:35:98:63:78:f1:a3:6a:7c:
43:9d:52:3f:de:17:f7:e4:74:69:6a:84:e8:1e:ad:
be:5b:79:b7:6e:aa:79:ae:b4:bc:39:b9:9a:05:ed:
6c:8b:ba:73:ad:de:ff:24:45:ab:68:8a:9a:fa:48:
92:7a:ca:35:e8:83:2d:02:22:66:28:04:e3:fd:9c:
3a:91:f7:21:df:af:52:e7:d3:19:6a:f9:e0:3a:b4:
0d:fd:9f:6a:c8:82:1d:69:72:50:9d:40:de:2f:39:
27:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:29:E2:F6:5F:8F:C2:8F:5A:5C:19:A5:81:3B:77:B0:D2:3F:63:17
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/bSni9l-Pwo9aXBmlgTt3sNI_Yxc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.210.0/23
82.115.217.0/24
Signature Algorithm: sha256WithRSAEncryption
51:fc:ec:c4:1d:34:c9:0b:9e:fe:56:7e:0d:ea:92:5d:c3:92:
92:3a:f8:51:47:cd:37:91:99:8c:eb:7c:ac:80:b1:7e:aa:40:
47:ee:19:e7:8e:25:23:18:2e:fe:67:93:ab:d1:da:08:bf:2a:
c2:21:03:8d:8b:5a:5b:02:2c:5d:e9:44:03:75:23:ba:ea:62:
06:8c:f4:73:01:4d:cb:61:6a:61:41:5f:fb:16:31:b2:4b:eb:
d8:6f:57:87:d6:28:15:ee:d3:2b:51:65:43:d5:1b:74:37:d4:
d2:90:a7:8b:e6:3f:cf:09:bb:d1:35:d7:3f:23:e9:44:83:0c:
6e:9a:6c:e2:0b:27:62:a7:d0:9f:d7:7c:fb:28:7c:65:13:5e:
b8:29:0c:6c:2c:cb:a1:47:46:19:7d:8c:5a:24:0d:8e:f0:53:
e5:24:d6:d8:3d:ef:cf:87:16:fd:7f:70:b2:d8:8e:63:d7:01:
8e:8f:c6:ac:54:ac:23:b0:2e:5b:d9:6f:a6:7e:fb:a8:f3:16:
f6:21:13:ff:a7:5b:5e:2a:c5:6b:2e:7b:b8:88:15:8d:96:55:
00:dc:5f:31:21:46:32:63:41:3a:cd:1c:de:23:db:1e:0c:b0:
6f:26:0d:9d:08:14:10:1d:3d:7a:88:f2:a3:84:a3:a5:79:f0:
a1:8c:b5:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:44 2023 by rpki-client on console-fra.rpki-client.org