Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/hvchclYXIPsC7tr5lJfMhT0mLTI.roa
File: hvchclYXIPsC7tr5lJfMhT0mLTI.roa (raw, json)
Hash identifier: sIor0NEu+v2McYnPXFI6eEgIZPzGTn3J8P5SCOnjQ1s=
Subject key identifier: 86:F7:21:72:56:17:20:FB:02:EE:DA:F9:94:97:CC:85:3D:26:2D:32
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 0155183B
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/hvchclYXIPsC7tr5lJfMhT0mLTI.roa
Signing time: Sat 01 Jan 2022 01:00:26 +0000
ROA not before: Sat 01 Jan 2022 01:00:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212815
IP address blocks: 45.154.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 22353979 (0x155183b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=86f72172561720fb02eedaf99497cc853d262d32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:3e:50:ec:4a:3b:f3:25:a0:83:49:f3:76:31:
c6:c5:e9:a8:d2:01:6d:6c:e7:25:b2:4f:0a:67:a6:
50:d0:ea:70:a3:d5:ec:fc:1e:40:6b:9f:43:df:16:
ec:15:8e:05:6e:55:29:56:34:57:cf:90:44:bf:fc:
2e:f7:86:d9:1f:5c:9c:dd:49:84:42:87:80:b2:82:
95:81:71:98:d8:02:dc:87:71:b5:86:e3:2d:30:c9:
a7:05:2e:70:7b:42:f1:8b:9d:9f:62:67:de:d9:3b:
48:df:5b:02:15:08:d6:c2:8d:b0:de:e3:17:23:d8:
80:a5:92:3b:92:5a:4a:41:8d:31:af:2a:0e:5c:7b:
ce:4d:34:4d:af:7b:8d:93:64:6d:12:9f:05:02:89:
7c:cc:0f:49:2e:bc:02:54:f7:4e:64:49:d7:00:dc:
0e:47:2f:f0:55:40:a9:81:a8:76:42:05:28:5a:d0:
36:65:8d:26:f9:cb:9e:ec:1a:7a:23:75:91:85:64:
4a:0b:fb:99:ba:99:e1:02:d0:58:24:d1:fb:35:04:
42:a2:62:e6:b9:ed:36:19:ba:10:7f:eb:b3:73:f6:
09:c3:48:68:0b:57:8b:0c:2f:6a:10:d6:f6:f0:91:
81:bd:9b:9a:df:6c:40:48:48:7b:e8:1f:86:f9:e1:
81:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:F7:21:72:56:17:20:FB:02:EE:DA:F9:94:97:CC:85:3D:26:2D:32
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/hvchclYXIPsC7tr5lJfMhT0mLTI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.96.0/24
Signature Algorithm: sha256WithRSAEncryption
89:c6:d5:ea:62:ad:d8:2f:c8:76:6d:47:18:76:95:c7:20:1c:
53:26:1b:10:64:d9:c3:58:8e:48:06:35:50:a0:1a:c1:6a:8d:
9b:28:91:2d:13:14:58:9c:7e:0c:a5:56:2e:43:14:e8:4f:d2:
ee:8d:5f:c0:0e:58:9f:3e:9f:c1:c0:37:2c:79:a0:c9:3f:bc:
37:b0:dc:a8:70:b1:a6:6e:4b:b8:14:83:16:f5:4f:c0:1e:a5:
06:8c:a9:3f:82:0b:f2:cc:3a:50:7d:73:9c:17:1a:bb:8f:73:
1a:0f:53:f6:a9:1a:77:c0:a6:22:29:7f:20:a9:dd:5d:95:05:
bd:85:10:61:f0:78:7f:80:8a:2d:21:de:95:77:68:52:a8:d0:
7a:da:dd:2d:02:72:63:6a:ec:c5:48:31:dc:91:4a:c1:f5:00:
94:ab:20:87:4f:86:fe:0e:a3:e9:9c:56:83:ad:42:19:0f:a1:
42:07:29:31:b9:70:bf:71:9d:b7:6a:b2:b3:4a:59:0b:2f:f2:
d6:a2:f7:10:d4:88:b6:c6:25:27:cc:c5:0d:ca:94:cc:eb:61:
52:ec:6e:03:43:db:d4:57:49:b2:64:63:65:7c:74:ad:cc:5d:
e4:de:d5:32:1f:4e:75:ea:6b:97:23:5f:8e:8f:a4:f6:e4:c5:
f8:15:99:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:25 2023 by rpki-client on console-ams.rpki-client.org