Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5mxdP3BFbjprysFycnweCrfsabI.roa
File: 5mxdP3BFbjprysFycnweCrfsabI.roa (raw, json)
Hash identifier: 0tTjuzbCh5Iz3XGeuQ0F1VA8IZioiVnaeqRLMw3UYwM=
Subject key identifier: E6:6C:5D:3F:70:45:6E:3A:6B:CA:C1:72:72:7C:1E:0A:B7:EC:69:B2
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 0182161BE814B09314E509F24BD3F2D52DD9
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5mxdP3BFbjprysFycnweCrfsabI.roa
Signing time: Tue 19 Jul 2022 10:58:23 +0000
ROA not before: Tue 19 Jul 2022 10:58:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211851
IP address blocks: 45.131.187.0/24 maxlen: 24
2a10:cc40:1d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:16:1b:e8:14:b0:93:14:e5:09:f2:4b:d3:f2:d5:2d:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 19 10:58:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e66c5d3f70456e3a6bcac172727c1e0ab7ec69b2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:6e:d1:8a:50:f4:a2:49:4c:2a:e4:7a:5f:33:
b2:42:2d:19:ad:0d:71:56:44:a2:fb:75:21:ae:3e:
90:05:b2:1f:56:d3:ac:cf:21:f2:1a:b9:a3:f9:cc:
22:95:e8:4a:7a:6b:ed:09:00:03:a1:6b:6a:73:14:
56:6f:a5:74:1c:d8:1e:4f:88:f8:2a:1a:d3:f9:b3:
1f:37:a7:df:aa:da:be:d6:23:3d:4b:31:35:a5:1d:
b5:91:a0:9b:91:bb:12:c0:61:3e:e3:15:7f:e7:9d:
4d:d7:22:7e:7c:c4:2a:98:24:a6:ce:d9:b5:bb:bc:
41:06:7b:11:89:e0:d1:1f:2f:6c:45:58:58:2a:4d:
31:60:2f:8a:18:a2:06:ff:42:b1:e2:82:07:5b:d2:
91:64:43:a3:72:d4:f0:57:b9:be:bf:b4:64:92:61:
77:2a:f7:5f:73:2b:4c:cf:56:ae:8b:15:94:fe:f8:
7e:bb:52:69:3d:fa:7f:33:fa:f1:9c:1e:ea:71:e5:
29:17:8a:fb:c8:ff:ca:ca:f5:8a:8d:2c:be:4f:cb:
98:95:33:37:df:cb:c4:94:7f:2f:8a:80:b5:67:fc:
67:e9:17:51:99:05:f5:6d:a6:5f:28:71:14:40:eb:
5b:7d:bd:2c:c3:a4:1f:3e:92:8f:32:88:a2:22:f9:
3e:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:6C:5D:3F:70:45:6E:3A:6B:CA:C1:72:72:7C:1E:0A:B7:EC:69:B2
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5mxdP3BFbjprysFycnweCrfsabI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.187.0/24
IPv6:
2a10:cc40:1d0::/44
Signature Algorithm: sha256WithRSAEncryption
51:ae:30:e8:61:5f:77:29:37:31:8c:eb:99:ce:43:9e:fd:20:
ce:01:0a:12:93:c5:e8:f0:10:d3:1e:b2:09:33:6c:7d:de:74:
4d:4b:de:54:d0:21:8b:6c:1d:9c:78:2d:a4:60:c1:28:15:e3:
6c:06:53:af:12:8e:a4:2f:5d:38:30:37:1e:84:20:5b:23:d8:
c6:57:9b:3d:1a:a2:96:49:27:2e:02:ec:88:da:32:ca:07:50:
95:eb:f3:43:31:7d:35:89:ef:66:af:3d:f8:e7:8d:f4:1a:e3:
79:9b:23:ba:9b:7b:db:d1:46:d9:1a:3c:f0:c4:e7:5e:d8:51:
94:9c:c0:e8:1c:f1:01:8e:c1:8e:a3:4b:9c:28:ba:7c:0a:bb:
27:1e:23:e5:44:e1:8a:25:6e:a6:ee:44:ad:68:0d:79:62:f3:
dd:6a:c1:43:bc:cd:bd:1a:cd:ad:bc:16:49:f6:e6:e0:c8:55:
4b:e2:22:e5:02:6b:58:64:33:66:5d:69:41:24:de:0f:6d:0c:
5d:e6:fe:87:8e:36:12:f3:12:c0:0c:9e:db:f6:84:b3:88:3f:
c0:41:9b:45:79:c8:0b:a1:eb:d8:1d:e3:56:6b:5f:d6:4e:b3:
85:e4:0d:89:39:1f:ff:55:b7:82:bc:be:1d:c3:13:7c:2e:f1:
f7:9e:d7:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:13 2023 by rpki-client on console-fra.rpki-client.org