Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/uVgvx6vCM8FpYeCnOrSpWgEO43A.roa
File: uVgvx6vCM8FpYeCnOrSpWgEO43A.roa (raw, json)
Hash identifier: tG4PdcutbxqdAirRc1nIG8q3R9pGa8QbkW9hHJ3vPYc=
Subject key identifier: B9:58:2F:C7:AB:C2:33:C1:69:61:E0:A7:3A:B4:A9:5A:01:0E:E3:70
Certificate issuer: /CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Certificate serial: 0184CF89BCDFAD32046DB61AE2928DE3DB09
Authority key identifier: 5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/uVgvx6vCM8FpYeCnOrSpWgEO43A.roa
Signing time: Thu 01 Dec 2022 21:13:41 +0000
ROA not before: Thu 01 Dec 2022 21:13:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211237
IP address blocks: 45.151.69.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:cf:89:bc:df:ad:32:04:6d:b6:1a:e2:92:8d:e3:db:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5c892aed3833e6100f5e0cf12271fd80b755c361
Validity
Not Before: Dec 1 21:13:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9582fc7abc233c16961e0a73ab4a95a010ee370
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:70:b5:a9:2e:91:9d:e1:72:8a:01:aa:4c:be:
ea:f5:36:d2:98:03:0c:71:04:9c:cf:61:e9:0c:0e:
41:1f:d4:40:46:ed:9d:9b:f5:ac:fa:28:da:ab:96:
9a:81:da:fd:c6:45:d8:25:31:fb:eb:0a:80:d7:5e:
4a:3f:62:3b:cd:12:e1:e4:c5:84:0d:d6:9c:71:5c:
0b:86:a7:a5:51:60:06:b2:a5:0e:33:a3:3d:f4:c6:
1c:cf:c2:aa:20:4f:94:20:50:15:7e:28:b7:72:e0:
27:28:40:a1:e3:a8:a1:61:99:05:9f:69:36:0e:66:
06:25:2a:95:24:64:9e:07:b4:db:ff:af:89:ed:2b:
d2:8a:08:a4:75:ee:af:28:71:30:d9:28:9e:13:e6:
f5:a0:a7:b0:dc:a2:6c:54:98:9e:ae:2b:79:c2:94:
6f:a9:84:3e:9f:18:c3:53:65:44:96:72:ad:b5:a7:
f0:ca:05:1a:c2:de:68:51:7b:e0:9f:63:24:61:97:
3e:f7:a8:37:37:a8:21:86:e2:6b:c1:97:50:d5:ac:
51:90:1b:65:dc:e7:1f:78:75:51:4c:86:a7:c6:98:
26:2b:7d:c3:4e:50:a5:2c:cd:74:73:f8:2c:01:48:
65:db:74:0f:2e:35:53:a0:90:ce:66:3b:0e:eb:bf:
f3:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:58:2F:C7:AB:C2:33:C1:69:61:E0:A7:3A:B4:A9:5A:01:0E:E3:70
X509v3 Authority Key Identifier:
keyid:5C:89:2A:ED:38:33:E6:10:0F:5E:0C:F1:22:71:FD:80:B7:55:C3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XIkq7Tgz5hAPXgzxInH9gLdVw2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/uVgvx6vCM8FpYeCnOrSpWgEO43A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/86fb46-d712-4602-9cce-3aa7daa9d3ec/1/XIkq7Tgz5hAPXgzxInH9gLdVw2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.69.0/24
Signature Algorithm: sha256WithRSAEncryption
86:e1:ba:ce:90:a4:8e:e9:82:56:d8:77:e0:b0:12:31:cc:88:
5a:be:c0:52:ce:fe:db:fa:e6:eb:19:20:ba:01:d7:f9:dd:c7:
af:74:34:01:ed:72:d1:59:91:eb:79:c6:4d:6e:55:d2:50:91:
84:f4:7e:8e:9d:b5:9d:00:87:a2:7f:a3:3d:f6:77:1d:1d:71:
cd:e7:8a:3d:2a:2b:49:68:d7:c5:8a:63:2d:1d:71:02:07:36:
f3:a8:0e:a6:d8:c6:3c:e8:72:5e:cd:99:2e:f6:96:fa:55:3a:
42:17:aa:a3:df:73:f7:d8:2a:55:6b:8d:f6:eb:41:2b:a3:1a:
11:2d:8e:42:46:96:65:ed:f5:2f:83:5c:92:ef:95:c8:e3:d8:
0d:1d:2a:e8:86:b4:11:79:a0:12:c4:26:c5:17:40:6f:70:33:
60:be:a3:67:5f:3b:c2:c9:ea:8c:00:e9:b4:e9:cd:49:31:7a:
9d:aa:58:3d:75:1c:71:c2:f0:2c:4c:ef:ac:5f:29:a0:f3:14:
d4:56:9d:95:2a:1f:29:50:ea:00:dc:14:58:aa:3d:75:63:af:
cb:12:33:f1:f0:f5:b7:9d:ff:4d:54:98:1b:8a:25:d3:0e:43:
19:12:4e:6f:9e:cf:f8:3a:f5:41:19:af:6d:60:78:8a:fc:21:
e0:e2:b1:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:56:50 2023 by rpki-client on console-fra.rpki-client.org