Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/AfZQupOm9fE8UD-MxpVWtIZA4Vg.roa
File: AfZQupOm9fE8UD-MxpVWtIZA4Vg.roa (raw, json)
Hash identifier: A/XOBKWQHVQl5I6ffGj9OT0E5+vmuspMXa/rvRxHMPQ=
Subject key identifier: 01:F6:50:BA:93:A6:F5:F1:3C:50:3F:8C:C6:95:56:B4:86:40:E1:58
Certificate issuer: /CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Certificate serial: 177C6199
Authority key identifier: 21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/AfZQupOm9fE8UD-MxpVWtIZA4Vg.roa
Signing time: Sun 17 Apr 2022 04:36:30 +0000
ROA not before: Sun 17 Apr 2022 04:36:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60631
IP address blocks: 45.90.72.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 394027417 (0x177c6199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=215266435617fa0f1fd2837ec80c6d83b0b9d608
Validity
Not Before: Apr 17 04:36:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=01f650ba93a6f5f13c503f8cc69556b48640e158
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:66:3e:3a:82:fb:a5:35:9a:21:bc:79:dd:eb:
62:8c:7c:d2:8b:c0:f5:c5:8e:54:e3:80:64:76:9d:
e3:7d:07:1d:47:1d:b8:be:7c:6f:2b:17:ba:50:37:
92:51:26:e3:b6:dd:82:fe:7c:0b:3b:ea:33:63:66:
a4:4a:80:71:40:16:de:13:92:04:70:75:a6:06:a4:
f2:70:a6:ce:96:b0:a5:7b:5d:ca:06:c9:77:8e:2c:
0d:61:94:d0:aa:48:3a:02:4a:a0:3c:aa:34:57:df:
8e:53:4f:ee:5c:31:77:96:9f:e9:2c:b3:4a:d8:fb:
c3:02:35:b7:4a:4a:10:d8:74:9c:f1:1c:0a:f5:3b:
9e:0a:72:2b:6c:5a:27:2a:6e:60:5f:01:be:3e:a1:
ce:b6:8d:fe:bd:00:10:f7:95:04:9d:c8:8c:10:13:
29:6e:fb:f1:f5:97:5c:d6:86:7f:b2:e1:d1:f3:f4:
00:84:fe:16:40:9a:7d:4a:17:83:35:76:64:76:8d:
44:30:28:03:0e:0d:02:4d:2e:e0:80:e4:86:d3:6b:
a6:a5:bc:f3:cd:e6:dc:f8:77:54:ca:a8:de:45:a8:
f3:84:2a:5c:c8:3b:59:ae:89:c3:0d:e7:47:cb:06:
fc:f0:0c:d5:2b:f8:ff:99:e9:e3:ec:9b:b9:00:19:
23:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:F6:50:BA:93:A6:F5:F1:3C:50:3F:8C:C6:95:56:B4:86:40:E1:58
X509v3 Authority Key Identifier:
keyid:21:52:66:43:56:17:FA:0F:1F:D2:83:7E:C8:0C:6D:83:B0:B9:D6:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IVJmQ1YX-g8f0oN-yAxtg7C51gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/AfZQupOm9fE8UD-MxpVWtIZA4Vg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/c072ae-15d7-42a8-bfc2-bc93ca679e1f/1/IVJmQ1YX-g8f0oN-yAxtg7C51gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.72.0/22
Signature Algorithm: sha256WithRSAEncryption
24:1e:b3:a3:14:be:bb:4f:29:68:bb:66:46:32:43:46:09:bf:
64:c9:ee:8d:aa:75:c8:7b:ef:dc:18:81:77:86:f3:c8:98:ec:
f4:0c:a0:6e:32:33:99:b1:61:07:0e:69:c5:84:99:81:e2:40:
cf:78:af:b7:f0:c6:c4:2b:aa:98:f4:74:10:83:d1:d1:7d:cb:
cb:86:d5:54:66:63:9f:6a:8a:a2:8b:7f:8b:79:c9:ec:94:30:
70:38:8c:64:e6:00:38:c0:f0:dc:9d:d7:8a:34:02:5c:85:ef:
8f:44:12:c3:89:42:ef:31:3c:df:90:e7:92:fd:78:99:2d:59:
28:43:84:22:2f:70:e0:0c:d7:aa:64:a6:25:61:87:04:d2:46:
8e:03:bb:95:0b:a5:6e:a0:6a:3f:33:8e:80:88:f6:c5:b3:0f:
50:eb:8e:3d:ee:51:27:ae:ca:70:27:2f:ec:c1:e3:98:52:69:
e0:e6:f7:3d:41:3f:a2:8e:e7:96:3f:7d:dd:bd:c4:47:da:48:
30:73:89:30:63:08:23:3c:51:61:ea:b0:c6:92:8b:a7:72:9a:
a7:de:2e:90:b9:ad:c5:aa:36:a1:02:8c:07:c8:d3:2c:4d:6a:
50:dd:71:2f:3d:c2:2c:ff:e0:c9:23:c9:8a:95:c8:8d:a6:8e:
91:24:bb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:03 2023 by rpki-client on console-fra.rpki-client.org