Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5tpO8uHAxz0hFg844h2jwf8OigU.roa
File: 5tpO8uHAxz0hFg844h2jwf8OigU.roa (raw, json)
Hash identifier: XD23HwgFNZbjbSe/84BZ4xav6iZurXmyTFWLPOJyKD0=
Subject key identifier: E6:DA:4E:F2:E1:C0:C7:3D:21:16:0F:38:E2:1D:A3:C1:FF:0E:8A:05
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01850C1B0153CA74C20A1ED16F89C208B60B
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5tpO8uHAxz0hFg844h2jwf8OigU.roa
Signing time: Tue 13 Dec 2022 15:29:34 +0000
ROA not before: Tue 13 Dec 2022 15:29:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 45.12.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0c:1b:01:53:ca:74:c2:0a:1e:d1:6f:89:c2:08:b6:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Dec 13 15:29:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6da4ef2e1c0c73d21160f38e21da3c1ff0e8a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:50:ea:e5:ff:4a:4d:a0:8a:4f:c3:b9:94:4e:
c7:0d:71:15:fd:42:7a:8d:ba:b2:5c:7c:d9:c6:52:
57:89:d4:87:20:1e:6a:97:94:ed:cd:45:d1:37:a5:
28:36:e3:bf:43:b9:c6:be:42:5f:13:8c:22:bf:b6:
8c:74:fa:0e:5d:29:9e:37:c6:1c:e7:a1:01:37:d6:
32:c6:26:66:65:d2:a4:4c:6c:77:95:15:eb:23:37:
03:86:5c:40:01:71:d8:16:c1:f3:54:e4:ce:d8:20:
8a:25:68:79:45:ff:76:53:02:50:57:a7:1d:2f:7e:
45:c8:dd:85:bd:f1:ad:f7:84:e4:64:78:6f:15:05:
b4:7c:77:2e:0a:84:e8:75:76:d3:db:78:02:b2:d5:
90:a4:f0:a8:22:b5:0b:0b:27:90:5a:6c:cd:80:3c:
2e:98:24:dd:de:c6:63:83:03:39:9f:93:f5:be:44:
f1:f2:9f:04:24:90:42:3a:77:7e:61:40:b8:58:bc:
c9:c3:a3:62:1c:a4:96:07:f9:10:93:66:b2:0b:48:
c5:c3:28:4c:26:0a:b1:af:3a:dd:1d:ab:14:58:38:
cd:fb:7d:51:32:a0:a9:36:46:8c:4d:be:13:fd:63:
73:c5:9b:75:15:47:3d:24:f4:c7:83:de:a8:1c:76:
5c:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:DA:4E:F2:E1:C0:C7:3D:21:16:0F:38:E2:1D:A3:C1:FF:0E:8A:05
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/5tpO8uHAxz0hFg844h2jwf8OigU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:48:f2:22:4f:10:2a:01:e8:04:5f:03:a5:9f:84:34:2e:ac:
78:32:f5:b9:9d:28:6f:ae:4d:35:60:66:49:1a:a5:6f:e2:a6:
1b:47:96:3c:fb:0f:54:cb:b0:4e:46:49:a2:cd:52:9d:23:fc:
3c:ca:bb:75:da:de:60:f0:22:08:4c:35:bd:31:b3:38:1b:7b:
10:1a:50:6e:81:d9:0e:3c:9a:d5:33:cd:d7:55:92:59:dd:96:
e6:bf:83:48:fd:21:cf:ec:16:a5:e1:8d:01:73:05:36:f1:b2:
fc:b0:51:aa:64:fe:ee:0e:a8:95:93:9e:5f:1b:52:46:2b:5d:
9f:3d:d0:7d:ad:f8:34:e7:0a:30:d4:18:a7:5f:7d:5b:9b:dd:
8f:87:b0:6c:9a:86:65:21:8a:6a:82:3d:99:54:d2:b5:c6:88:
83:dd:98:92:e5:c8:cd:d6:06:91:84:e9:05:c6:aa:ae:2f:e3:
97:70:7b:35:36:10:da:49:e3:56:b7:82:fe:7c:e8:5d:6e:c8:
33:ca:86:70:6c:c8:66:75:bc:d2:18:9e:af:64:43:f1:4c:6a:
6b:fb:29:66:5f:c1:3a:c0:89:94:ac:db:e0:72:32:85:88:04:
de:ce:67:83:5b:63:cc:2f:fa:fb:ec:75:c2:c8:0e:72:4b:a3:
a0:22:d9:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:55 2023 by rpki-client on console-ams.rpki-client.org