Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/VxI_yKa7GEdBtyGFbZk0rwbjFc4.roa
File: VxI_yKa7GEdBtyGFbZk0rwbjFc4.roa (raw, json)
Hash identifier: aB51z9v+v2PknW/u05FNLpxLYXpYK+qudwOOV0yvitQ=
Subject key identifier: 57:12:3F:C8:A6:BB:18:47:41:B7:21:85:6D:99:34:AF:06:E3:15:CE
Certificate issuer: /CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Certificate serial: 0505C1BF
Authority key identifier: 1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/VxI_yKa7GEdBtyGFbZk0rwbjFc4.roa
Signing time: Tue 10 May 2022 10:16:01 +0000
ROA not before: Tue 10 May 2022 10:16:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.83.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84263359 (0x505c1bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f4738389cb3b998ec4fa6d4272f8dd799fbc4a9
Validity
Not Before: May 10 10:16:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57123fc8a6bb184741b721856d9934af06e315ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:e1:78:c7:68:00:24:7c:40:73:dd:95:e8:96:
9e:37:94:ca:6a:d7:5b:d2:b0:ee:8c:9d:8c:b9:c1:
e3:a1:fe:a3:e6:c8:14:ef:e9:48:b8:b2:d6:e9:11:
e6:ef:ce:3d:c0:5f:a0:de:0f:f3:28:43:be:71:be:
c1:da:57:5d:1c:6f:25:99:c0:95:0e:9e:c4:4b:6a:
22:43:5d:90:6a:99:43:db:88:6e:b4:67:c5:c8:94:
d2:d4:8b:56:53:e1:d2:d8:f5:47:85:08:11:6e:46:
02:31:5f:bb:67:e5:da:99:0b:be:2a:a5:a7:12:ec:
a5:dd:6c:7f:50:c7:7d:e3:d4:06:ab:63:d2:a4:42:
46:b5:cd:51:e3:87:a0:28:db:8e:08:16:70:c9:3c:
c2:17:1c:d4:b1:dc:60:2e:4d:00:6a:89:2e:13:f1:
d5:51:b8:48:38:75:11:2f:f2:d5:de:13:5b:9f:a8:
e2:eb:a8:21:3e:8b:d7:76:cc:7d:f4:c0:7e:5f:1a:
e9:5a:17:06:17:8b:5f:14:a4:0d:4e:38:81:9e:71:
9c:be:a7:39:ef:8a:50:ba:43:5c:e4:f8:fb:79:a6:
81:ce:bc:8a:22:f4:23:c1:ee:be:3e:ac:cd:53:cc:
15:05:ac:0d:f5:8b:a4:83:45:67:a8:3f:b7:f4:6d:
e1:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:12:3F:C8:A6:BB:18:47:41:B7:21:85:6D:99:34:AF:06:E3:15:CE
X509v3 Authority Key Identifier:
keyid:1F:47:38:38:9C:B3:B9:98:EC:4F:A6:D4:27:2F:8D:D7:99:FB:C4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H0c4OJyzuZjsT6bUJy-N15n7xKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/VxI_yKa7GEdBtyGFbZk0rwbjFc4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/517694-c8a1-458b-9cf2-6c7e5685890c/1/H0c4OJyzuZjsT6bUJy-N15n7xKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.239.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:45:fa:24:bc:e9:c9:50:2d:9d:de:54:9e:34:f8:7f:37:ed:
bd:e1:d7:3b:e2:7c:66:e1:f9:14:7c:4e:96:65:37:7d:76:0f:
fa:c6:85:67:52:2c:41:d9:ed:18:30:5c:e3:0b:53:b0:c1:56:
91:d5:1b:56:01:93:fb:41:51:3f:b4:0c:fb:1d:10:02:cb:ce:
05:1f:5b:60:9a:cc:72:b0:d3:a0:bf:c8:4e:9a:fe:16:89:17:
85:fc:cc:04:4d:f1:2e:eb:f1:16:bc:ae:2e:55:1a:94:d5:0a:
50:1b:9e:95:19:0f:ba:69:43:51:63:48:39:eb:ca:c8:62:db:
51:a5:d8:86:8c:75:ab:68:0a:bd:19:89:b6:27:5c:fb:35:e6:
f5:fe:71:a6:a2:52:83:28:a1:4e:33:df:e4:af:43:38:25:cc:
03:54:bf:01:49:87:90:0a:6e:fa:aa:45:36:c3:db:ae:57:25:
0f:18:08:39:e1:c0:80:1c:ce:2d:58:49:00:30:69:d7:16:c9:
0a:cb:db:3d:bf:4c:68:f2:fb:a0:e8:0b:f6:3a:c2:2e:a9:84:
da:2f:7d:6f:d5:ef:43:df:39:66:ad:8f:d5:74:e6:85:61:9f:
0c:55:39:97:48:e9:e5:c4:0d:50:3a:23:27:b5:67:12:10:f1:
77:96:82:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:01 2023 by rpki-client on console-fra.rpki-client.org