Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/cNF-771yfaiXyyaYk2IB047vG2I.roa
File: cNF-771yfaiXyyaYk2IB047vG2I.roa (raw, json)
Hash identifier: zhnxwfes1giUxJpW9EjZedbAsflttNW0n1QZ006NpwA=
Subject key identifier: 70:D1:7E:EF:BD:72:7D:A8:97:CB:26:98:93:62:01:D3:8E:EF:1B:62
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 01838D966A17074C107BA350A9E254AA7DA8
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/cNF-771yfaiXyyaYk2IB047vG2I.roa
Signing time: Fri 30 Sep 2022 08:49:48 +0000
ROA not before: Fri 30 Sep 2022 08:49:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.151.70.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:8d:96:6a:17:07:4c:10:7b:a3:50:a9:e2:54:aa:7d:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Sep 30 08:49:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70d17eefbd727da897cb2698936201d38eef1b62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:44:a5:86:ca:57:a7:b0:29:16:20:86:60:99:
16:d2:e3:60:2e:0f:e4:f6:8d:06:9e:8e:41:e2:ac:
bd:ce:b3:ba:a0:68:b1:b8:bd:d5:9d:40:21:f0:bd:
6d:26:9a:ef:c9:36:9f:d7:8f:ac:b3:07:b4:a7:2d:
73:7a:15:11:2e:ed:af:27:97:6d:71:27:97:16:3a:
94:37:06:9c:36:11:2d:b6:77:36:38:b4:81:9c:26:
83:ee:bb:44:87:f2:73:fb:be:46:16:4b:3d:1d:52:
1b:1d:be:ea:be:88:0f:28:1c:fd:6d:93:65:ae:b3:
48:ff:01:ac:04:e7:78:21:fc:98:0b:87:a2:1e:81:
6a:8e:89:2a:39:cc:1f:e3:8b:66:0a:dc:ca:db:28:
f5:f1:e0:e4:87:01:98:78:66:67:84:8d:e4:1f:d0:
aa:35:68:7d:e0:79:ce:c3:74:db:9b:cb:8b:c9:9c:
43:a8:f0:31:46:a3:2d:4e:db:4d:50:a3:5a:6a:f1:
8c:ba:0c:61:5f:37:4c:08:9b:5d:5d:ac:6f:5a:fa:
35:08:e0:bc:14:06:a7:1d:a9:ba:d0:e3:ad:57:1b:
e7:79:4e:95:39:16:69:1f:bb:ed:20:41:b6:0f:86:
d0:0f:68:61:18:7d:c7:bf:b7:23:4f:70:b8:d3:2f:
f3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:D1:7E:EF:BD:72:7D:A8:97:CB:26:98:93:62:01:D3:8E:EF:1B:62
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/cNF-771yfaiXyyaYk2IB047vG2I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.70.0/24
Signature Algorithm: sha256WithRSAEncryption
79:68:ca:58:4f:c0:e1:76:3a:3d:de:07:19:23:48:ff:cc:73:
65:77:f8:72:89:6d:a7:56:86:3f:8f:cf:c7:a0:0e:aa:e2:69:
bf:56:14:1c:a9:b0:c6:09:8d:9c:01:63:09:c2:6a:25:7c:d5:
ea:4d:1a:1a:72:c5:8e:22:b1:29:06:d9:3b:a0:16:39:a5:5a:
fd:82:15:fe:03:1e:fd:c1:c0:ec:3e:ef:5f:7f:95:8f:81:dd:
24:9c:ac:8a:c0:ca:39:42:e6:80:7c:8f:03:e6:7a:c4:c9:f9:
a0:31:2b:2b:35:2a:d5:78:85:a5:07:6e:c6:6a:86:eb:65:db:
9d:0d:02:d3:4f:c0:d9:38:45:a5:c7:f8:e1:ca:07:73:33:f7:
bd:ca:8d:ee:b8:3b:dd:7d:90:0e:1f:ba:88:6f:c8:20:f5:ac:
17:d0:81:f5:d4:cd:1a:ac:d9:2d:3b:c0:47:f4:73:1a:24:57:
bd:e2:5a:78:9c:58:cf:d2:19:4c:6f:af:e1:7d:b5:f5:a2:f3:
ee:76:2c:4d:b2:b4:2a:1e:59:c0:e2:dd:b7:98:e6:e2:1c:ba:
1e:ee:b4:b5:d0:25:01:5a:6e:cd:fc:00:68:4e:7a:44:fe:ff:
16:9e:61:c0:62:f3:15:65:0b:a3:97:9f:1b:08:9d:df:b5:90:
15:16:81:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org