Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/xbE2ZyYpbYzUYUn85T8fAtQiUns.roa
File: xbE2ZyYpbYzUYUn85T8fAtQiUns.roa (raw, json)
Hash identifier: Qkm0Pqcbe3oRD87lDaQQ9cjuhjzCipv+MPGq/zLAJ2s=
Subject key identifier: C5:B1:36:67:26:29:6D:8C:D4:61:49:FC:E5:3F:1F:02:D4:22:52:7B
Certificate issuer: /CN=6e83f698800d6ae719970adfaa4fb882fa5156df
Certificate serial: 082E8D46
Authority key identifier: 6E:83:F6:98:80:0D:6A:E7:19:97:0A:DF:AA:4F:B8:82:FA:51:56:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boP2mIANaucZlwrfqk-4gvpRVt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/xbE2ZyYpbYzUYUn85T8fAtQiUns.roa
Signing time: Mon 21 Mar 2022 16:26:48 +0000
ROA not before: Mon 21 Mar 2022 16:26:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.144.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137268550 (0x82e8d46)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e83f698800d6ae719970adfaa4fb882fa5156df
Validity
Not Before: Mar 21 16:26:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5b1366726296d8cd46149fce53f1f02d422527b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:d5:87:b4:c0:1c:26:e8:93:7e:7a:06:7b:06:
7a:43:fa:26:2d:27:58:ab:f4:0a:77:9c:1e:8f:09:
f0:b2:21:1d:dc:76:28:90:97:22:bf:74:24:ef:e7:
fd:a0:d2:b3:6c:67:de:a9:98:86:3e:28:1f:97:80:
01:a2:b4:a8:4e:1e:33:48:5e:e6:78:a3:b5:a4:1e:
fc:3c:43:ed:82:54:a6:8d:0d:ce:40:88:cf:55:14:
37:7b:c9:15:c6:e7:1d:57:9e:3a:12:6e:ff:bf:1e:
9f:9f:26:e0:c7:25:65:04:a6:82:69:00:fd:f6:e4:
9e:ae:01:4e:01:a6:f9:0f:09:58:c8:10:e4:d7:8e:
c1:1f:25:f0:e9:04:e9:03:3c:dc:08:70:8e:9d:81:
e0:9e:b3:05:b3:68:26:ed:65:4f:d8:84:ed:4d:ef:
f1:bd:7f:93:03:19:fe:df:0c:8c:ec:68:8c:2e:3e:
64:6a:1b:15:af:a0:0c:ab:1b:5e:7c:c7:9b:85:dd:
85:d9:6d:2e:cc:9c:a7:9e:d4:ff:9f:a0:14:be:b4:
ce:f8:d7:32:bf:60:e7:8e:1e:90:b6:17:e0:ad:8a:
9a:4a:02:1e:e4:2f:4e:91:8e:18:85:d6:b3:67:f9:
3f:81:b5:8c:25:b9:10:a7:d5:2a:b7:3b:fb:2f:e4:
db:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:B1:36:67:26:29:6D:8C:D4:61:49:FC:E5:3F:1F:02:D4:22:52:7B
X509v3 Authority Key Identifier:
keyid:6E:83:F6:98:80:0D:6A:E7:19:97:0A:DF:AA:4F:B8:82:FA:51:56:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boP2mIANaucZlwrfqk-4gvpRVt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/xbE2ZyYpbYzUYUn85T8fAtQiUns.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/boP2mIANaucZlwrfqk-4gvpRVt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.173.0/24
Signature Algorithm: sha256WithRSAEncryption
28:a0:f7:00:f0:23:1f:b1:30:5c:e1:28:37:cd:52:91:52:76:
cd:7e:48:33:ce:09:c1:d4:bf:88:44:18:f2:2e:dc:14:f3:28:
a1:00:26:f2:39:69:8a:07:6d:f8:8f:56:b2:98:88:59:00:cc:
d2:3c:4b:e2:b0:6e:a9:1d:4b:ce:81:56:01:96:b7:06:31:52:
14:a6:77:e3:c8:f8:6d:70:24:ca:26:c0:fc:60:19:36:62:02:
05:d7:d8:d9:2a:08:f2:2e:ed:b2:3b:e3:ca:05:16:cb:83:9d:
28:ab:a5:b7:fc:85:2a:d8:6c:31:06:d0:14:77:33:c3:b8:16:
85:12:cf:5f:8f:46:6b:36:52:a9:44:32:85:0f:07:77:63:fc:
f7:10:d6:d6:0a:7c:51:c9:92:ee:66:29:91:d6:08:9a:c5:2a:
c1:55:f6:3d:4e:86:29:dc:f7:48:f3:1e:48:e0:60:9b:a2:fd:
32:16:69:ec:9a:90:67:bd:d4:5b:e6:50:6f:9a:a2:c5:30:50:
6f:87:b1:c5:63:bc:18:b0:ce:d9:9c:2d:e1:e1:f6:f5:76:c3:
87:c5:3b:2f:b0:21:cf:fb:8a:4a:b8:98:c8:d6:5e:29:65:22:
04:39:f1:87:f4:05:22:65:07:39:7c:06:92:66:e1:3c:eb:31:
71:ce:23:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:04 2023 by rpki-client on console-fra.rpki-client.org