Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/XZFsgt1y9vdsHmwBITdPxXKLVf0.roa
File: XZFsgt1y9vdsHmwBITdPxXKLVf0.roa (raw, json)
Hash identifier: HgJ8jWbJnxSpCYOabUvXbFc2nZUoSBpHb2deJbh5oXQ=
Subject key identifier: 5D:91:6C:82:DD:72:F6:F7:6C:1E:6C:01:21:37:4F:C5:72:8B:55:FD
Certificate issuer: /CN=13e281475b7bf8d0fa1f669d5ad2de1635e8c04f
Certificate serial: 01855ABAFC132B3F59F71217708459C71911
Authority key identifier: 13:E2:81:47:5B:7B:F8:D0:FA:1F:66:9D:5A:D2:DE:16:35:E8:C0:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/XZFsgt1y9vdsHmwBITdPxXKLVf0.roa
Signing time: Wed 28 Dec 2022 21:54:41 +0000
ROA not before: Wed 28 Dec 2022 21:54:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.80.51.0/24 maxlen: 24
45.80.50.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5a:ba:fc:13:2b:3f:59:f7:12:17:70:84:59:c7:19:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=13e281475b7bf8d0fa1f669d5ad2de1635e8c04f
Validity
Not Before: Dec 28 21:54:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d916c82dd72f6f76c1e6c0121374fc5728b55fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:5e:13:0f:f4:92:10:b3:bf:47:f8:6d:83:0e:
55:dc:5d:69:e5:33:d2:b9:b3:b2:99:ae:64:ec:bc:
e5:95:2f:34:38:9d:6b:d8:b8:ad:22:43:74:91:28:
35:7e:49:df:69:67:b9:0f:27:8e:13:48:a1:04:0e:
9b:40:42:38:c4:08:e7:a8:89:fb:71:ea:35:7b:6f:
00:83:4d:95:c2:75:43:ec:cd:83:0c:4c:9c:37:27:
ba:cb:06:56:54:d8:ee:7c:65:29:34:50:75:eb:e2:
96:4c:b3:9e:4b:ae:a5:58:9f:74:03:6f:9e:62:09:
75:4d:03:9f:5c:72:a5:ca:df:ad:10:55:0a:c5:29:
b4:8f:8b:f5:16:81:2c:52:5d:3f:9e:0b:22:3a:f4:
38:89:33:8c:43:25:a4:09:99:d2:8a:06:4c:87:16:
03:3b:c8:69:84:1f:23:78:bb:dd:48:ab:88:f9:0a:
40:b1:aa:40:c0:8e:7e:72:2b:19:88:cb:54:a1:8b:
dc:5e:2b:83:76:68:1a:a1:8f:c1:7e:53:eb:cd:21:
ed:a5:d1:e6:83:92:30:65:cd:3a:b7:44:68:09:c1:
b9:85:94:65:a6:c1:1a:a3:7b:a1:a9:a3:47:cf:75:
bc:79:48:f4:c7:bd:26:d7:bc:33:b7:e9:5c:80:87:
18:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:91:6C:82:DD:72:F6:F7:6C:1E:6C:01:21:37:4F:C5:72:8B:55:FD
X509v3 Authority Key Identifier:
keyid:13:E2:81:47:5B:7B:F8:D0:FA:1F:66:9D:5A:D2:DE:16:35:E8:C0:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/E-KBR1t7-ND6H2adWtLeFjXowE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/XZFsgt1y9vdsHmwBITdPxXKLVf0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05b5d8-4541-48a9-8c0a-44fd04393e2b/1/E-KBR1t7-ND6H2adWtLeFjXowE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.50.0/23
Signature Algorithm: sha256WithRSAEncryption
43:f3:68:c1:e1:83:6f:95:ed:83:06:10:1d:1e:33:45:6a:eb:
a0:5d:d4:2b:94:01:e6:be:62:53:17:b0:ea:0a:af:e4:59:3f:
f3:89:52:d5:d4:60:9d:00:e0:80:d1:8f:eb:a4:f3:da:2a:18:
23:3f:53:b0:26:00:b4:95:cf:d3:83:df:74:a1:b1:62:a4:7c:
ab:b4:1d:96:f9:84:91:e7:36:f6:f5:61:52:c4:6f:01:11:9b:
d9:09:01:ed:d0:c4:22:77:7e:e0:75:99:de:26:38:f4:1c:f5:
b1:2a:f5:da:9a:f4:4f:88:1f:a7:56:67:cf:6b:90:b9:2b:b9:
66:f6:28:a3:87:ee:35:a2:2c:ac:ec:ae:93:5b:64:1d:41:5e:
be:8e:17:be:1a:c7:e5:37:5e:bb:46:4a:a5:e6:ec:c5:f8:7d:
2a:b2:59:18:de:b4:47:6f:6a:ae:79:a9:8a:57:90:48:73:12:
3b:6a:39:a2:94:89:b3:15:9d:6b:11:7e:ac:61:e7:be:7c:d9:
f2:ca:be:b2:c4:38:92:74:2d:b8:30:35:26:44:29:52:a1:78:
df:df:31:2b:fb:8a:ff:12:8f:3f:6f:e2:9e:72:4a:64:6e:31:
36:0e:92:a5:e6:ed:39:ec:37:f0:9c:a7:a3:10:84:04:fa:6e:
52:7c:f0:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:05 2023 by rpki-client on console-ams.rpki-client.org