Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/f5a548-897f-4007-96bb-388ef9997a72/1/BBBqlZn83Av0mPFgmrW9Qw-wvM0.roa
File: BBBqlZn83Av0mPFgmrW9Qw-wvM0.roa (raw, json)
Hash identifier: 3zy34AJKykwD/Ke82U2TysW3k9MguPEw2pWwlt+pjiY=
Subject key identifier: 04:10:6A:95:99:FC:DC:0B:F4:98:F1:60:9A:B5:BD:43:0F:B0:BC:CD
Certificate issuer: /CN=c732c680ce512d72f15c136293b737e098ac255f
Certificate serial: 0118B86B
Authority key identifier: C7:32:C6:80:CE:51:2D:72:F1:5C:13:62:93:B7:37:E0:98:AC:25:5F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xzLGgM5RLXLxXBNik7c34JisJV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/f5a548-897f-4007-96bb-388ef9997a72/1/BBBqlZn83Av0mPFgmrW9Qw-wvM0.roa
Signing time: Sat 01 Jan 2022 01:56:52 +0000
ROA not before: Sat 01 Jan 2022 01:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.90.184.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18397291 (0x118b86b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c732c680ce512d72f15c136293b737e098ac255f
Validity
Not Before: Jan 1 01:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=04106a9599fcdc0bf498f1609ab5bd430fb0bccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:27:d6:dd:55:76:2b:4f:50:c3:07:e3:e6:f8:
ca:cb:e4:b3:00:16:b2:63:84:8d:d5:d2:33:79:45:
ed:62:dc:6a:e8:ca:f6:a6:93:2e:87:c5:42:08:5c:
fc:bc:b9:1c:a5:7f:e8:40:14:ad:42:aa:86:9e:e2:
77:47:89:d9:14:86:13:f3:11:24:27:1d:6c:f2:67:
7b:50:de:8c:9e:dc:28:cd:9a:5a:46:16:0a:e9:27:
6b:56:75:f6:15:40:80:b7:38:40:37:e3:a0:18:b0:
98:c0:e8:0a:d5:d4:ef:bb:70:3b:8f:2d:df:11:91:
5c:de:d4:2b:30:b2:8f:24:9d:1e:76:c6:65:8f:b5:
5b:36:13:9e:3e:4f:75:ec:7b:26:c3:f6:69:1d:c5:
e2:4a:db:2a:4d:ea:78:1a:d6:ef:9d:27:7d:cf:37:
72:87:1c:0a:5c:53:8d:84:3f:f6:4b:d0:db:80:f4:
0f:a1:26:d4:62:56:b7:80:58:82:05:b3:49:10:42:
de:31:a4:10:5f:ea:37:2d:43:56:72:db:3c:e4:d9:
85:95:83:2d:59:82:db:12:c3:99:5a:1d:09:4d:d4:
2b:b6:d1:8e:ec:63:a7:83:4d:e4:38:e4:dd:83:b6:
4f:42:8d:36:22:a4:6d:6f:09:63:98:48:32:cd:c6:
d5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:10:6A:95:99:FC:DC:0B:F4:98:F1:60:9A:B5:BD:43:0F:B0:BC:CD
X509v3 Authority Key Identifier:
keyid:C7:32:C6:80:CE:51:2D:72:F1:5C:13:62:93:B7:37:E0:98:AC:25:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xzLGgM5RLXLxXBNik7c34JisJV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f5a548-897f-4007-96bb-388ef9997a72/1/BBBqlZn83Av0mPFgmrW9Qw-wvM0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/f5a548-897f-4007-96bb-388ef9997a72/1/xzLGgM5RLXLxXBNik7c34JisJV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.184.0/22
Signature Algorithm: sha256WithRSAEncryption
a7:68:c0:48:85:ad:1b:f4:4a:0a:2d:31:3e:65:1a:3b:9b:d5:
6d:5d:fb:3e:fb:2f:2a:d0:e3:75:9f:8a:26:0b:ad:a5:2f:ba:
0c:79:41:1b:1a:bf:23:86:c5:79:ed:85:52:e8:b8:39:96:e2:
0f:0d:6c:5e:03:be:0e:e7:ee:d5:91:dc:b4:c4:2f:a3:72:41:
a6:7a:c2:c5:0c:9d:46:ac:1d:3a:72:ad:69:a4:0c:f6:0b:62:
2c:8e:15:bc:e6:2c:42:fe:c8:c3:68:8f:fb:a7:b7:8d:b6:48:
0d:11:40:5a:df:66:a5:5d:f7:9f:5d:12:76:67:05:fb:12:47:
43:3f:f3:2e:e7:72:a4:bd:97:58:f5:f0:f1:76:2a:b9:1a:af:
d5:31:54:cc:f8:9c:82:ac:7a:4c:2a:d4:98:bb:0d:0a:d4:c6:
82:46:0b:52:b8:fe:8c:e6:50:eb:51:31:c6:5e:34:29:0f:31:
8c:9b:81:ce:14:58:3d:57:e4:e0:76:b9:6f:cc:ab:d8:0b:6b:
fc:de:40:67:f7:42:ba:e2:e3:08:06:77:6a:d4:54:28:dd:fa:
42:18:63:96:81:37:52:2a:78:a9:0f:20:42:6d:e0:ef:87:82:
9a:80:ee:30:56:2b:7c:61:3f:bf:a5:52:b1:ef:df:93:7b:6b:
c4:7f:8f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:38 2023 by rpki-client on console-fra.rpki-client.org