Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/bL1oiJPbf8tDKHcC-2BkCNTJ5os.roa
File: bL1oiJPbf8tDKHcC-2BkCNTJ5os.roa (raw, json)
Hash identifier: UVPJ2RkZkzvOrEl0FpNCmG6YVL6caF2HxJhdaWDYkyM=
Subject key identifier: 6C:BD:68:88:93:DB:7F:CB:43:28:77:02:FB:60:64:08:D4:C9:E6:8B
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01838D966A876B11B83EE677298646FD2371
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/bL1oiJPbf8tDKHcC-2BkCNTJ5os.roa
Signing time: Fri 30 Sep 2022 08:49:48 +0000
ROA not before: Fri 30 Sep 2022 08:49:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205570
IP address blocks: 45.151.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8d:96:6a:87:6b:11:b8:3e:e6:77:29:86:46:fd:23:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Sep 30 08:49:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cbd688893db7fcb43287702fb606408d4c9e68b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:8f:15:2f:ce:43:51:15:1a:6b:45:0f:a8:c7:
28:16:ba:4a:e4:e5:63:da:27:dc:db:47:f3:b3:f0:
bb:8a:1b:3f:38:26:f8:dd:90:ec:e2:c5:a0:b6:f1:
19:32:43:fd:22:f8:9e:b1:18:7a:56:b2:de:60:cb:
e3:c9:36:f3:cf:df:50:30:b5:21:3d:09:f4:7c:b2:
60:b3:da:90:14:08:ee:53:bb:3d:c4:d3:dd:47:fa:
a8:9c:de:09:92:1f:9c:61:2c:fe:a1:bf:23:e9:b7:
b9:82:be:da:e5:1f:91:83:dd:6c:7c:2d:63:73:fd:
f1:cd:ec:58:b5:6e:36:38:dd:81:b8:a8:ea:31:47:
be:9a:7d:b2:12:cd:b8:32:9c:f3:55:ca:b7:f7:d1:
95:7a:f5:cb:64:f6:9b:a0:9b:a8:bb:a0:86:3d:60:
3d:c7:a5:65:dc:71:60:4a:8c:57:c9:e6:07:c3:cd:
61:5f:e5:65:f4:a5:c6:97:55:c0:2f:a3:d9:fe:3f:
72:44:36:82:cb:e5:6c:de:e9:13:4e:16:82:58:d7:
ff:2a:4c:cd:14:55:a0:c4:ad:e0:a5:56:9d:7e:99:
a0:61:f2:01:51:67:36:d7:2a:ad:44:ae:ab:34:be:
8d:8e:d3:be:76:3d:31:c4:97:cc:de:5c:ac:1f:b7:
53:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:BD:68:88:93:DB:7F:CB:43:28:77:02:FB:60:64:08:D4:C9:E6:8B
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/bL1oiJPbf8tDKHcC-2BkCNTJ5os.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.69.0/24
Signature Algorithm: sha256WithRSAEncryption
5a:b8:8c:b1:ec:af:a2:aa:40:14:13:a9:1d:ce:dd:73:33:03:
43:ef:cf:3b:29:98:28:8e:de:00:7b:3b:b2:a0:74:36:76:da:
f6:a5:2f:2d:64:b6:1f:fb:13:d5:a7:f2:fe:a4:77:97:9a:9d:
88:bb:51:40:9f:32:4d:6d:00:a6:05:da:12:44:c9:da:38:d7:
68:f2:cd:e3:9b:59:ee:6c:67:36:d3:fb:ad:89:7d:6f:0e:b8:
1a:03:ad:79:bc:d5:66:07:44:94:87:ac:77:19:f1:f7:59:95:
f4:de:93:cc:d8:09:c4:e2:cb:2d:81:b4:45:c5:54:5d:4f:2c:
2b:65:ce:2b:a9:91:ec:fa:fa:c7:7f:ee:c4:dd:e8:ce:70:5a:
98:4e:64:53:5b:07:61:aa:f2:e8:7d:62:97:fb:02:5d:8f:d4:
86:5d:c3:35:29:93:c4:01:4c:ca:f6:c9:36:40:06:05:e8:46:
b4:f9:9f:cc:3c:92:8d:8d:63:93:d3:83:dd:24:0b:74:64:61:
a1:5f:89:19:a5:27:da:fe:f9:d0:40:1a:5e:66:95:eb:67:15:
80:d7:e0:1d:e0:75:15:1a:a1:78:d9:70:d6:9a:64:60:8f:c1:
c1:6d:73:15:ee:5b:a4:b1:c2:a4:0a:98:71:74:61:a8:f0:03:
87:e7:58:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:34 2023 by rpki-client on console-ams.rpki-client.org