Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/B2pLBbx84S3hQoLXtBV8XURkW6E.roa
File: B2pLBbx84S3hQoLXtBV8XURkW6E.roa (raw, json)
Hash identifier: ILdBEVUf/Ad/XXlausrgq+WBHdU2s8XGkb92VeqgaS4=
Subject key identifier: 07:6A:4B:05:BC:7C:E1:2D:E1:42:82:D7:B4:15:7C:5D:44:64:5B:A1
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 02FC1975
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/B2pLBbx84S3hQoLXtBV8XURkW6E.roa
Signing time: Sat 01 Jan 2022 09:01:29 +0000
ROA not before: Sat 01 Jan 2022 09:01:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 45.81.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50076021 (0x2fc1975)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Jan 1 09:01:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=076a4b05bc7ce12de14282d7b4157c5d44645ba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:2d:a1:3b:75:32:38:e2:4c:85:86:b8:8b:08:
47:68:e4:ab:89:4d:1b:78:76:6e:58:ec:0b:39:4b:
12:08:fe:e7:b8:56:d0:6a:c4:42:48:cd:e7:54:29:
c3:a3:28:72:aa:ab:f1:51:30:3a:7a:0c:84:cf:61:
13:8a:fb:1e:4a:7e:ff:2b:08:1f:ae:c3:10:52:28:
6d:35:ad:7f:24:53:d1:ef:6a:0a:d8:34:9e:11:b0:
08:de:63:78:f1:2c:09:26:54:02:4a:99:0f:25:a3:
a2:5c:aa:3f:37:a2:af:1c:c7:60:36:b7:22:93:81:
30:7a:bc:9f:6c:8a:72:0d:9e:2d:ad:74:43:ed:33:
97:cd:45:2a:cf:0c:0c:36:a8:92:24:a4:fc:6b:1c:
85:81:cf:b4:82:52:5c:4f:e3:0e:18:67:fe:6d:77:
97:7b:8a:41:06:2b:a1:e7:1c:b1:d5:cd:d9:9b:f4:
e9:c0:4c:8e:ac:f1:54:7d:6f:00:e1:b7:00:de:a7:
36:13:d3:46:21:ce:1e:3d:bd:bf:4e:3a:a9:d7:3f:
c8:6e:c8:b8:36:1d:b1:33:4c:d9:b1:dd:7c:04:c7:
00:1a:2f:a3:44:39:54:4f:ad:6f:5c:cd:f8:d4:5f:
87:9d:a0:9b:5b:1f:70:93:32:f5:ab:b4:f3:b1:41:
a1:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:6A:4B:05:BC:7C:E1:2D:E1:42:82:D7:B4:15:7C:5D:44:64:5B:A1
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/B2pLBbx84S3hQoLXtBV8XURkW6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.253.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:e6:6b:19:a6:fb:74:27:c2:a0:44:c3:04:27:7f:0f:a7:d9:
8e:67:00:c0:6f:cb:da:84:6b:39:5c:c7:c5:50:6c:1d:e1:ba:
07:fa:62:8b:41:36:87:cd:cf:82:ec:54:5c:bb:af:6c:29:9f:
ca:48:f2:eb:f9:90:13:21:f8:9e:57:ea:57:a6:a1:f9:e1:3a:
91:d4:3f:0f:41:9d:29:b9:62:4f:ec:34:1c:81:90:00:05:0d:
22:c8:a6:a2:75:81:43:4e:99:f4:3a:9c:05:75:4a:b1:bf:36:
8c:ee:1a:ba:4b:ec:1b:43:9a:30:0a:77:34:01:ad:72:28:41:
6d:67:9a:8f:e5:02:13:f0:2c:9f:c3:5a:f5:1d:dd:96:1a:74:
62:e2:cd:12:24:c8:8a:a9:5c:1c:62:6d:5e:ec:28:7c:36:af:
e9:bc:1d:4b:b2:7d:72:09:ef:8c:53:f5:61:aa:9c:47:5f:79:
8f:f1:06:0c:ef:2e:87:c6:d2:c6:77:5d:2d:35:4f:58:07:6a:
08:86:f6:22:06:7b:36:c5:24:ec:01:30:04:85:39:75:4d:11:
18:ff:b6:49:96:fe:cb:a7:fd:60:1b:73:00:79:e7:b2:0a:54:
09:6f:1c:5c:28:f0:05:6f:4d:89:cd:0f:16:72:38:f1:9d:d8:
e6:60:50:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-ams.rpki-client.org