Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/3GVoGuCtiLAHSGjM9nx8CiUnazs.roa
File: 3GVoGuCtiLAHSGjM9nx8CiUnazs.roa (raw, json)
Hash identifier: oPBk3zNLcLsu9FDuK/P0OzzXPoKiFdMf29r7GvSHTAs=
Subject key identifier: DC:65:68:1A:E0:AD:88:B0:07:48:68:CC:F6:7C:7C:0A:25:27:6B:3B
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: A006FF
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/3GVoGuCtiLAHSGjM9nx8CiUnazs.roa
Signing time: Sat 04 Jun 2022 10:26:20 +0000
ROA not before: Sat 04 Jun 2022 10:26:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 45.151.70.0/24 maxlen: 24
45.151.71.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10487551 (0xa006ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Jun 4 10:26:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=dc65681ae0ad88b0074868ccf67c7c0a25276b3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:bc:ee:33:d7:9a:67:63:7b:7d:87:49:7e:3a:
43:06:1c:b2:33:79:88:fe:0f:dc:c9:2a:9d:64:d8:
90:0f:47:45:be:2e:85:8b:ca:3b:4d:af:7e:30:79:
12:bf:a9:a4:5b:2c:88:cb:77:73:19:0d:d9:d6:43:
c1:35:6b:61:f1:39:47:5c:d7:78:24:38:ac:9e:eb:
01:fd:15:46:56:cb:4e:89:aa:95:87:f1:b7:25:6e:
59:25:c3:b7:fa:ef:27:49:1b:23:6e:78:08:f9:8f:
70:99:d7:f2:c0:96:54:5d:24:2e:42:15:7b:b1:f2:
90:96:31:02:6d:1e:48:71:ae:81:55:18:a1:92:5d:
d9:dc:45:80:ca:8d:a0:b0:37:fb:52:fb:33:87:91:
e3:77:03:37:59:5e:eb:8e:8a:15:8f:aa:8a:c8:82:
f0:b5:1f:32:49:89:26:f0:49:22:98:d3:3e:fb:62:
13:be:4e:02:b6:5a:14:6b:de:16:15:f5:51:78:ce:
8f:dd:1f:4e:36:c6:6d:d1:23:b6:c6:39:50:2d:59:
7b:dc:d5:7a:47:bd:ff:fb:af:c0:60:37:30:55:e5:
b7:9e:04:d0:db:f2:c4:84:19:1c:96:9a:5b:68:a1:
6b:cb:8a:57:1e:35:ac:a9:da:6f:da:a8:7b:1b:df:
38:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:65:68:1A:E0:AD:88:B0:07:48:68:CC:F6:7C:7C:0A:25:27:6B:3B
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/3GVoGuCtiLAHSGjM9nx8CiUnazs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.70.0/23
Signature Algorithm: sha256WithRSAEncryption
a0:15:07:4a:fe:d5:d3:dd:cf:80:32:81:40:09:73:4a:f1:9e:
56:d7:e3:4a:ba:2b:85:7a:95:3d:c7:f4:2b:ea:46:43:5d:e5:
61:89:62:ce:58:4c:dc:16:7f:3f:05:b5:21:ea:f2:2d:a8:6f:
25:14:1d:78:16:06:0c:94:d5:48:90:54:14:a1:e4:ef:08:21:
64:22:ce:0c:b2:e7:73:b6:96:a0:69:23:f0:f5:55:7b:8f:56:
d2:c4:fc:b6:36:a4:40:ca:80:5a:82:dd:8e:77:e0:07:bc:be:
57:45:2c:e8:d1:6f:3e:6e:ed:93:12:af:11:6c:7c:c6:91:a0:
8a:0b:b4:f3:87:9a:a0:4f:d5:81:94:02:98:ac:b8:a6:61:45:
0e:fe:18:b2:0f:07:83:bb:f7:68:31:02:1d:30:78:e1:8f:61:
d9:87:da:b8:06:fc:31:a2:f2:fc:a1:b9:2e:9a:f0:59:e6:17:
7f:40:50:88:4f:0b:b1:60:39:cd:88:59:e8:f1:e9:d9:d2:e2:
27:55:e8:76:e3:eb:10:21:c6:0e:f4:de:8c:86:5e:3b:5f:81:
59:a0:62:1a:66:9b:4d:f9:35:6b:90:23:8c:21:a3:79:f9:47:
61:0c:78:64:55:ca:1b:a6:80:a0:35:73:7a:22:8e:f2:e5:0a:
4d:73:33:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:32:03 2024 by rpki-client on console-fra.rpki-client.org