Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/9xWxZf5b8nKsrDzSSheUYm-5Xac.roa
File: 9xWxZf5b8nKsrDzSSheUYm-5Xac.roa (raw, json)
Hash identifier: K5KA3vMkRDGKXJF7L7cNNTcBU1dnaSAqDw6TVIe6h04=
Subject key identifier: F7:15:B1:65:FE:5B:F2:72:AC:AC:3C:D2:4A:17:94:62:6F:B9:5D:A7
Certificate issuer: /CN=1fc5955940bbd7555df0a2e417379fc447ef0cdc
Certificate serial: 06908864
Authority key identifier: 1F:C5:95:59:40:BB:D7:55:5D:F0:A2:E4:17:37:9F:C4:47:EF:0C:DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/9xWxZf5b8nKsrDzSSheUYm-5Xac.roa
Signing time: Sat 01 Jan 2022 14:59:06 +0000
ROA not before: Sat 01 Jan 2022 14:59:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.159.120.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110135396 (0x6908864)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1fc5955940bbd7555df0a2e417379fc447ef0cdc
Validity
Not Before: Jan 1 14:59:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f715b165fe5bf272acac3cd24a1794626fb95da7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:40:2f:66:e7:ed:cb:4a:73:e5:94:d0:0a:b2:
5f:be:37:76:9b:f1:01:3b:b1:81:00:d2:f7:44:5a:
b4:42:74:b0:81:94:47:d6:82:f9:03:2a:be:da:54:
ad:d8:0d:03:14:fe:0a:62:fd:1f:11:cb:b0:e8:27:
ac:4a:21:fc:0d:e2:cf:31:c7:89:33:db:d9:05:3f:
1c:32:10:4b:8f:1e:ba:8c:2f:74:1b:91:75:4e:6f:
e0:d5:8a:a7:61:3c:f1:66:dd:0e:e0:2a:6c:56:8f:
35:b8:cc:6a:bc:e2:9f:00:ab:bb:bf:e2:73:b6:08:
49:8c:bc:cd:96:cd:a3:0e:c2:8d:4d:cf:85:a3:9e:
88:b4:fc:2d:23:0d:62:79:ab:36:20:ef:68:a6:79:
3a:f7:a0:e6:9c:53:11:f1:2e:df:c3:c8:48:0c:90:
22:7a:6b:bf:cc:99:77:b2:24:9f:af:59:4b:e3:59:
0c:a7:fe:cc:c4:09:9e:a6:26:08:b4:79:cc:68:41:
8c:a8:55:cd:3c:a5:cc:3b:2a:18:0b:3f:a6:55:a1:
1b:46:09:d9:99:c7:4f:a3:30:dd:d9:d7:33:84:13:
cc:37:1f:fa:2c:de:b4:ac:71:06:76:20:46:ea:f4:
d9:7b:79:0f:82:67:de:30:10:b0:3f:f0:a9:db:4f:
a3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:15:B1:65:FE:5B:F2:72:AC:AC:3C:D2:4A:17:94:62:6F:B9:5D:A7
X509v3 Authority Key Identifier:
keyid:1F:C5:95:59:40:BB:D7:55:5D:F0:A2:E4:17:37:9F:C4:47:EF:0C:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H8WVWUC711Vd8KLkFzefxEfvDNw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/9xWxZf5b8nKsrDzSSheUYm-5Xac.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/1c8896-7be2-42cd-911f-2fdb7ab65d52/1/H8WVWUC711Vd8KLkFzefxEfvDNw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.120.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:aa:28:74:af:30:d7:1d:67:3d:e8:4f:76:e2:59:c2:25:1f:
78:71:46:43:37:f7:93:18:e1:7d:eb:0b:cd:32:88:01:eb:ef:
12:29:87:f4:7c:0e:08:85:d8:9b:c2:3c:42:22:fd:d1:23:db:
bb:9f:b5:d0:2b:8d:55:e2:4f:d5:fa:8a:20:07:fd:cd:15:87:
3e:89:58:ed:e9:02:bd:74:ec:71:73:1f:c3:48:12:29:45:70:
4a:cb:be:9a:ae:e5:62:b0:ab:6f:c3:8a:c5:50:01:2d:e4:f1:
b9:58:39:53:e7:5f:8c:42:1b:f6:e4:d2:c9:0a:6b:c8:88:54:
77:9a:67:78:a4:b5:92:19:05:a2:ed:ea:da:2f:77:49:9b:7d:
ee:2e:45:9e:ff:20:9b:83:da:26:83:85:7d:ef:f7:3e:bd:54:
2c:cf:d6:cd:c8:0b:1e:27:68:73:ef:0e:1a:63:84:7a:c7:bf:
d0:40:39:8d:3b:12:ef:39:07:de:2c:ee:0d:3a:2e:ea:ca:61:
1f:cc:dc:a7:b7:ab:f5:4b:77:ec:0c:59:79:fc:22:f8:96:24:
72:6b:b8:f9:af:d4:e6:11:3e:07:bf:b8:24:bd:d9:a9:d9:4c:
9a:9b:c6:2d:cc:d1:de:1d:35:73:83:ee:a6:13:1f:46:0c:39:
8a:8f:a6:7e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:47 2024 by rpki-client on console-ams.rpki-client.org