Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_tAiy6Q6UOWgIBJJyCD-ptXnarg.roa
File: _tAiy6Q6UOWgIBJJyCD-ptXnarg.roa (raw, json)
Hash identifier: bNg5Y600rcCsSPxyUkfi2WdeZO938sp9/iDCQuNByzY=
Subject key identifier: FE:D0:22:CB:A4:3A:50:E5:A0:20:12:49:C8:20:FE:A6:D5:E7:6A:B8
Certificate issuer: /CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Certificate serial: 01823F526FCA9368CD2A82D21B9CD3B7DC50
Authority key identifier: 5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_tAiy6Q6UOWgIBJJyCD-ptXnarg.roa
Signing time: Wed 27 Jul 2022 11:02:23 +0000
ROA not before: Wed 27 Jul 2022 11:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42375
IP address blocks: 45.67.215.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3f:52:6f:ca:93:68:cd:2a:82:d2:1b:9c:d3:b7:dc:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5da3941c27cfe5c234c4bf221ecb2a579b2deaab
Validity
Not Before: Jul 27 11:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fed022cba43a50e5a0201249c820fea6d5e76ab8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:97:98:17:c0:05:f8:67:f0:d3:8d:51:ed:d2:
0f:f7:23:1d:98:05:56:8a:51:50:17:60:dc:ab:2b:
ac:3b:68:e8:53:04:0e:ff:8f:ac:4c:07:11:fd:19:
55:23:a8:de:80:92:82:30:6c:90:ef:e4:4b:c3:48:
52:62:f3:06:59:b1:74:3f:ad:0f:fb:07:57:7a:66:
79:2c:c0:53:c9:e7:38:34:02:7b:2f:16:de:63:41:
4f:40:55:d7:74:f0:7a:46:5b:05:c5:ed:c2:c5:e7:
34:9d:dd:38:25:87:4b:12:6a:fb:7d:ae:c3:89:7b:
38:29:94:e9:04:ae:9c:89:4c:13:f5:cc:a8:58:40:
40:50:39:82:fe:e2:6b:88:99:32:1a:a7:08:ac:da:
a0:e2:e5:2f:02:38:c1:54:cc:38:c2:53:21:0a:04:
c6:bc:05:26:eb:02:bb:21:65:84:d1:4b:14:16:ef:
58:17:db:a4:2b:3c:86:4e:ab:89:71:5f:2c:05:9e:
75:02:4d:df:c1:f4:ac:2e:4b:dc:d3:c8:5a:29:68:
aa:e4:17:d4:2c:91:8a:67:14:26:db:c7:b0:b5:12:
9d:4b:b2:68:28:1a:c4:9b:68:d2:5a:6d:df:a5:06:
2a:8a:b3:c0:71:2c:76:19:82:6f:fd:b7:07:f3:62:
c0:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D0:22:CB:A4:3A:50:E5:A0:20:12:49:C8:20:FE:A6:D5:E7:6A:B8
X509v3 Authority Key Identifier:
keyid:5D:A3:94:1C:27:CF:E5:C2:34:C4:BF:22:1E:CB:2A:57:9B:2D:EA:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaOUHCfP5cI0xL8iHssqV5st6qs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/_tAiy6Q6UOWgIBJJyCD-ptXnarg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/30ed3e-c4c4-4de8-b4f1-f11a39f26c3b/1/XaOUHCfP5cI0xL8iHssqV5st6qs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.215.0/24
Signature Algorithm: sha256WithRSAEncryption
58:df:b1:a8:b0:e2:bf:aa:12:a1:90:87:fb:38:33:01:65:ab:
8d:a5:f5:6c:f9:44:d6:08:9f:a0:0a:95:1a:19:12:d4:a0:32:
b2:0c:ab:00:d3:de:e8:c9:a7:88:2e:94:7a:1e:b5:6a:c8:9f:
38:84:1c:b0:c6:d7:1a:f7:3d:90:a0:8d:6d:78:e2:e7:ba:1a:
28:4f:ec:59:25:bc:93:ec:f9:1a:b7:85:1d:c2:03:fb:15:1a:
d0:07:bb:d0:83:25:7d:06:b3:a8:39:6b:d5:40:1f:82:23:8d:
a5:39:78:52:0e:87:47:f1:0e:60:9b:73:a6:f2:bf:c1:af:d9:
ee:5e:5a:30:b6:2a:a0:87:78:53:c7:28:c9:75:b0:e3:7b:14:
56:88:b8:ce:84:52:4c:d1:c1:88:8b:4e:42:55:0e:ac:d0:86:
ca:10:20:51:69:b9:66:e4:a9:d5:08:bd:af:46:e6:e7:18:d8:
34:ee:3d:6d:79:88:e5:18:40:e5:50:02:47:cd:ae:a9:97:bc:
2c:45:1e:5e:27:fc:c2:b7:3b:3b:b5:36:85:1e:d0:da:24:04:
f3:4f:e1:d3:bf:0a:49:19:5f:a5:14:67:8d:88:e6:45:f8:6a:
a6:a6:98:81:49:93:e2:b1:77:23:28:f9:c2:14:57:58:6b:1b:
9b:d8:a2:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:34 2023 by rpki-client on console-fra.rpki-client.org