Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/g5Hw74pdaU0MShn-QD9rcMKguAI.roa
File: g5Hw74pdaU0MShn-QD9rcMKguAI.roa (raw, json)
Hash identifier: PEA/MQIYHY9Leu90mu2QiDVR3SpAYUmVww1lxVicBWU=
Subject key identifier: 83:91:F0:EF:8A:5D:69:4D:0C:4A:19:FE:40:3F:6B:70:C2:A0:B8:02
Certificate issuer: /CN=17526ccac4f9064e058549b30172c84439787fbc
Certificate serial: 01824439A13B7275A00B251D5F93A9ADA669
Authority key identifier: 17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/g5Hw74pdaU0MShn-QD9rcMKguAI.roa
Signing time: Thu 28 Jul 2022 09:53:23 +0000
ROA not before: Thu 28 Jul 2022 09:53:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 45.90.84.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:39:a1:3b:72:75:a0:0b:25:1d:5f:93:a9:ad:a6:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17526ccac4f9064e058549b30172c84439787fbc
Validity
Not Before: Jul 28 09:53:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8391f0ef8a5d694d0c4a19fe403f6b70c2a0b802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:13:c7:ec:56:e4:42:15:7b:08:ce:ac:08:41:
b4:39:ce:47:f8:2a:d6:7d:9c:6e:9b:9b:d1:a6:71:
d0:55:24:a8:47:cb:c3:ca:30:5e:fc:f6:2b:26:72:
d9:ea:3b:29:aa:e8:02:2a:4c:23:cc:28:17:ef:76:
cf:9f:72:31:4e:a6:f2:23:34:da:8a:be:71:3a:a9:
6a:e9:d5:a0:1f:21:3a:ad:5b:e7:bd:09:69:71:1a:
b5:bf:ac:18:8a:61:d0:24:92:74:b6:54:88:3e:bb:
6b:6d:53:fe:97:5a:ff:75:c0:3c:3e:4d:09:4d:f5:
b0:2b:10:e5:8c:dd:0d:c6:2b:1a:8d:3d:21:a2:09:
48:52:a8:b7:70:0e:7d:90:d6:3c:1a:48:54:34:2b:
a8:38:13:87:aa:3d:65:b4:b9:51:3d:3f:cc:23:e4:
8a:30:79:ea:5c:10:e2:a4:e2:45:dd:2f:14:a0:6c:
a2:0d:ab:ea:5d:36:b5:f5:cd:cb:9f:66:1e:2b:d7:
3c:a2:39:17:d8:cc:76:fc:59:91:4a:06:88:22:97:
d8:94:19:5b:53:2b:44:84:d6:c2:a9:c5:98:3a:14:
3b:4a:01:dc:4d:1c:aa:d5:96:37:21:c9:38:b3:b3:
b4:89:9d:20:66:4a:d1:51:5a:51:88:76:ce:a2:d2:
cc:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:91:F0:EF:8A:5D:69:4D:0C:4A:19:FE:40:3F:6B:70:C2:A0:B8:02
X509v3 Authority Key Identifier:
keyid:17:52:6C:CA:C4:F9:06:4E:05:85:49:B3:01:72:C8:44:39:78:7F:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F1JsysT5Bk4FhUmzAXLIRDl4f7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/g5Hw74pdaU0MShn-QD9rcMKguAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/c9aa81-5bfd-4535-9606-941cc6a7bad9/1/F1JsysT5Bk4FhUmzAXLIRDl4f7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.84.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:2a:37:0c:61:28:81:4e:a9:05:f7:bc:46:f1:6e:0d:da:8e:
a0:19:64:67:86:d9:ea:54:0f:09:82:80:0a:e6:a4:9e:2f:12:
df:98:bf:0e:68:67:c1:c4:22:bf:d4:85:ec:32:eb:b4:b7:b9:
23:b6:7f:36:1f:59:ac:72:85:b2:9b:3a:08:e0:0d:10:8d:86:
05:7c:ec:28:e7:cd:56:dc:64:da:7a:0a:db:0a:52:11:bb:6a:
b7:2d:62:4f:61:6a:6e:81:95:09:6b:c4:70:b4:e1:46:55:34:
d1:ec:96:94:f8:74:b1:9c:02:2d:0c:48:0f:59:dc:82:ac:92:
38:5f:f9:6b:9e:58:7f:bf:ce:ec:14:46:a8:26:56:78:b6:a7:
45:14:d3:aa:4d:7b:51:1e:f4:c1:58:71:8f:69:92:93:4e:34:
77:24:59:35:64:4a:f7:b1:8f:79:62:10:91:c7:88:1b:80:fe:
61:e9:64:4d:25:2c:cc:fb:25:a8:eb:93:52:d2:98:b9:22:43:
c1:5b:88:86:2a:7c:c2:a4:f9:81:f4:75:62:b6:51:aa:95:dd:
fb:b7:e0:1e:06:ec:84:3b:3a:13:a9:67:e5:21:6d:ca:99:ac:
21:26:9e:d5:08:3d:1d:48:cc:b0:0e:7d:38:bb:f7:55:27:3a:
44:26:58:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:27 2023 by rpki-client on console-fra.rpki-client.org