Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/294c4e-5a2b-4bee-bc57-12ad146655ce/1/xUyvEv5QQRiU7pMw5hjTHYGWEmQ.roa
File: xUyvEv5QQRiU7pMw5hjTHYGWEmQ.roa (raw, json)
Hash identifier: Q1q2NOXOSnFouVSkbc+oi4WwHxPxwC3FhMfVX+VAtkc=
Subject key identifier: C5:4C:AF:12:FE:50:41:18:94:EE:93:30:E6:18:D3:1D:81:96:12:64
Certificate issuer: /CN=5b6fa6690997412e716616c81e4f7c0875ffd976
Certificate serial: 082BC6E1
Authority key identifier: 5B:6F:A6:69:09:97:41:2E:71:66:16:C8:1E:4F:7C:08:75:FF:D9:76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W2-maQmXQS5xZhbIHk98CHX_2XY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/294c4e-5a2b-4bee-bc57-12ad146655ce/1/xUyvEv5QQRiU7pMw5hjTHYGWEmQ.roa
Signing time: Wed 27 Apr 2022 13:06:18 +0000
ROA not before: Wed 27 Apr 2022 13:06:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 33916
IP address blocks: 195.242.192.0/22 maxlen: 22
45.133.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137086689 (0x82bc6e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b6fa6690997412e716616c81e4f7c0875ffd976
Validity
Not Before: Apr 27 13:06:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c54caf12fe50411894ee9330e618d31d81961264
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:80:01:4c:01:8d:39:87:f3:11:0e:b8:c6:0f:
36:af:e5:b3:bd:6e:fe:da:c8:7a:9d:df:87:5e:31:
83:58:60:2c:fa:ad:6d:79:d4:2e:74:07:41:a9:88:
88:67:3a:a4:80:c1:b8:b7:f5:12:2e:9f:f1:ff:49:
d7:61:7b:87:40:25:c2:ee:26:16:e8:8f:1b:44:e1:
32:4f:98:af:cb:a0:70:d3:63:b0:4d:bd:59:60:86:
e6:29:89:b3:a3:f4:95:a1:d6:26:91:83:77:c5:e1:
c7:ba:3e:45:a7:f0:6d:7f:5f:d0:a7:ba:2e:e5:d7:
8d:e2:6c:08:f7:a8:fd:dd:9c:9f:57:51:fc:93:65:
df:fb:ae:49:59:f0:54:fc:47:39:3a:0e:1a:4b:00:
92:59:ab:cd:98:f0:07:59:72:7d:17:9c:3f:19:2e:
8c:83:25:ee:43:12:f0:3e:be:4c:5f:b7:89:f6:2e:
1a:6c:9e:6d:1d:ff:98:4e:7a:b1:db:5f:ce:db:89:
db:5a:44:11:0d:5b:7a:16:7e:16:e7:81:a6:2f:8b:
ad:3b:4b:c1:8b:dd:97:9b:a7:99:c6:9c:f4:ba:f8:
26:90:a4:80:d5:59:48:13:8b:44:5f:c3:41:88:6c:
06:89:44:7e:c9:c4:4f:86:93:a2:44:44:d0:b0:dc:
bf:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:4C:AF:12:FE:50:41:18:94:EE:93:30:E6:18:D3:1D:81:96:12:64
X509v3 Authority Key Identifier:
keyid:5B:6F:A6:69:09:97:41:2E:71:66:16:C8:1E:4F:7C:08:75:FF:D9:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W2-maQmXQS5xZhbIHk98CHX_2XY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/294c4e-5a2b-4bee-bc57-12ad146655ce/1/xUyvEv5QQRiU7pMw5hjTHYGWEmQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/294c4e-5a2b-4bee-bc57-12ad146655ce/1/W2-maQmXQS5xZhbIHk98CHX_2XY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.164.0/22
195.242.192.0/22
Signature Algorithm: sha256WithRSAEncryption
21:93:35:a9:dc:b8:c9:cf:9d:39:b9:5f:f2:e7:ef:64:1d:e9:
a4:fc:c9:cb:58:32:7c:44:3a:e9:5c:fe:00:5e:d8:04:78:7d:
88:b1:26:b0:db:a2:46:03:84:17:2f:94:88:19:f4:1b:e6:6f:
c8:05:ab:15:0b:76:56:94:e2:cb:51:e7:41:51:38:ce:0e:9d:
b7:93:c3:1e:3f:ae:40:ef:ae:7d:34:7e:cb:6a:2e:cf:e8:ed:
3b:68:63:bb:9a:2e:eb:ac:7e:8c:c2:a2:24:c5:cf:26:28:42:
62:f2:1e:bf:23:6f:17:97:ad:b6:80:58:7d:a4:1b:89:42:ad:
88:77:80:1d:1c:8c:3e:21:65:72:01:53:2c:2d:20:c4:43:61:
af:7e:e7:53:35:f1:cf:c1:68:77:1f:ee:0b:98:c6:b9:a6:1c:
aa:41:d4:46:ed:30:51:5f:c1:14:f7:56:d9:86:5b:86:cd:74:
ff:af:11:1a:8e:92:dd:70:82:d5:0b:57:df:17:9c:9c:7d:df:
02:56:68:d8:74:bc:fe:02:81:89:d5:a3:d9:97:73:9e:55:e1:
87:39:11:43:d7:da:c6:18:c3:b2:06:47:5c:e2:cb:3e:ee:05:
0f:d1:8e:a8:54:78:11:3b:09:0a:c1:61:f6:fc:28:d8:99:db:
fd:65:b1:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:18 2023 by rpki-client on console-ams.rpki-client.org