Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BkQVc1YmdqkDiopXdodM5TUn_WA.roa
File: BkQVc1YmdqkDiopXdodM5TUn_WA.roa (raw, json)
Hash identifier: hIuRUrBzdBoQnhZCGWtATNe3exk3iwxfv3G9IqTGZ6Q=
Subject key identifier: 06:44:15:73:56:26:76:A9:03:8A:8A:57:76:87:4C:E5:35:27:FD:60
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 082618BE
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BkQVc1YmdqkDiopXdodM5TUn_WA.roa
Signing time: Fri 24 Jun 2022 06:07:19 +0000
ROA not before: Fri 24 Jun 2022 06:07:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.11.191.0/24 maxlen: 24
45.154.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136714430 (0x82618be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jun 24 06:07:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06441573562676a9038a8a5776874ce53527fd60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:32:c2:e9:cd:86:43:e9:50:e0:42:6a:f7:f5:
65:1f:3e:ee:4e:44:58:eb:a1:e7:ca:22:2d:dc:2e:
b4:d5:29:36:86:e2:fb:88:e9:d5:ba:a5:45:92:f7:
46:36:25:85:2c:57:a3:ea:88:5f:9d:37:a7:2a:1b:
ba:5b:2e:92:65:27:ac:15:79:9e:1f:51:4c:7b:6e:
19:08:6c:21:e5:94:72:7c:bb:9a:be:35:f0:f7:aa:
85:f9:20:9a:e8:d7:26:4c:0b:8b:dd:78:b6:3e:a6:
b7:1a:13:50:9a:16:2e:e2:88:02:38:71:b3:5a:0b:
5b:b4:b7:9e:4a:d1:3a:a0:a5:47:81:81:c2:c0:f5:
79:50:c4:ca:d7:d0:4b:b9:77:25:40:a5:48:d5:d2:
55:e2:a9:1b:20:4b:b4:34:9d:ff:05:83:98:de:8e:
ee:cf:f5:6b:3c:24:84:11:80:53:19:85:b5:61:de:
6a:1e:b3:3d:33:3a:d4:ed:71:95:bb:c6:86:d0:8c:
c0:ce:81:1a:48:d0:e4:8e:0a:e4:cc:d6:94:f0:24:
35:a5:cc:43:a5:20:a3:e3:5b:32:be:0d:4c:2f:84:
57:c0:69:a4:48:20:59:f9:e5:00:e5:06:14:18:86:
df:3c:61:c5:a6:6e:58:1f:f2:f4:1e:bd:cc:78:ac:
e3:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:44:15:73:56:26:76:A9:03:8A:8A:57:76:87:4C:E5:35:27:FD:60
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BkQVc1YmdqkDiopXdodM5TUn_WA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.191.0/24
45.154.159.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:6e:4a:98:57:f4:b8:7b:a2:a5:20:05:d6:7f:ee:ca:42:e3:
6f:83:3b:b7:df:e9:db:67:4d:c5:59:58:e0:12:fd:86:08:99:
b6:80:0a:97:03:4f:41:ca:cf:ce:27:92:b9:3e:7c:94:54:b2:
e3:1c:08:89:17:20:ac:23:69:79:ed:9d:4d:56:de:bf:48:71:
5b:23:eb:cf:15:78:88:60:9b:1b:56:4f:e3:ec:c3:bb:64:33:
ec:79:15:4c:d5:fc:40:74:c1:a3:26:25:34:50:ef:3f:7a:cf:
06:62:3f:99:31:67:ca:28:c4:19:31:49:46:ad:88:8b:33:f1:
9f:69:b2:5f:f5:d7:25:ff:17:aa:b4:9c:30:f1:4a:97:b7:18:
09:98:e1:48:b1:f3:8e:5b:ff:97:97:54:a5:e8:30:d2:68:9c:
28:3c:70:38:13:a0:72:70:ea:c9:15:a5:ee:fe:ac:43:33:2a:
f3:0b:b1:3a:65:e8:d8:a8:88:b0:73:8a:75:f8:9e:c4:0a:92:
39:6f:ba:48:30:fc:1b:19:b4:b2:5d:4b:c5:7d:53:cc:51:3a:
16:6f:f3:ef:8c:c6:3e:9a:3f:44:60:50:af:fc:e3:fb:60:bf:
e8:70:43:52:ea:3b:51:05:c4:7b:d5:b6:33:f5:da:94:1e:97:
bc:6c:e9:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org