Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/RlDIctvvqH7t711TkSP03DUgrqk.roa
File: RlDIctvvqH7t711TkSP03DUgrqk.roa (raw, json)
Hash identifier: eU9haqsOg6M7E/LnQoTgSEV4GAiMHIaufJvrveroys4=
Subject key identifier: 46:50:C8:72:DB:EF:A8:7E:ED:EF:5D:53:91:23:F4:DC:35:20:AE:A9
Certificate issuer: /CN=6bd0c5b3fa6c288860ccb6d90200cbb8e57db7f7
Certificate serial: 081014F9
Authority key identifier: 6B:D0:C5:B3:FA:6C:28:88:60:CC:B6:D9:02:00:CB:B8:E5:7D:B7:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a9DFs_psKIhgzLbZAgDLuOV9t_c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/RlDIctvvqH7t711TkSP03DUgrqk.roa
Signing time: Fri 25 Feb 2022 14:05:50 +0000
ROA not before: Fri 25 Feb 2022 14:05:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211975
IP address blocks: 45.150.5.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135271673 (0x81014f9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6bd0c5b3fa6c288860ccb6d90200cbb8e57db7f7
Validity
Not Before: Feb 25 14:05:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4650c872dbefa87eedef5d539123f4dc3520aea9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:08:82:60:51:99:02:35:ff:0a:c0:44:d7:09:
e6:63:76:38:49:cd:e8:77:66:d3:c6:e9:ac:17:99:
ca:8a:3f:a0:75:bf:75:ad:cf:9e:17:b5:12:47:41:
ee:51:7d:7d:0d:0a:e5:df:37:84:11:23:aa:7a:33:
2e:e5:05:47:e0:d2:e2:67:56:85:20:09:b4:ac:c0:
cf:b6:34:80:70:45:5c:f5:55:ff:c4:e7:fd:78:75:
eb:de:c4:23:c4:18:a8:35:be:5c:5b:97:a4:cc:17:
28:72:a5:2e:fc:2b:9d:5f:bf:95:8e:ac:e6:88:a8:
c2:61:4a:b5:66:e8:fa:e5:ca:5e:0a:c1:1d:6c:c3:
b7:64:c1:14:74:28:b5:da:82:10:48:26:b3:97:82:
3f:34:da:f9:aa:3d:b6:56:e2:bc:d8:7a:4a:51:9d:
d7:db:cf:f0:40:b5:f6:07:3d:58:50:10:d2:ed:f9:
9a:00:40:8f:1c:7f:74:97:47:e6:28:60:c1:4b:a3:
8c:cf:47:9c:25:a4:74:d3:8e:b8:42:0b:b0:10:78:
74:7f:73:6a:33:3b:50:ee:38:ca:34:66:88:ca:3a:
83:25:17:b9:c1:97:2a:b1:11:6d:44:85:f8:d2:b8:
03:ef:f6:80:a3:bf:e6:5d:25:bb:c7:38:96:e6:03:
cf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:50:C8:72:DB:EF:A8:7E:ED:EF:5D:53:91:23:F4:DC:35:20:AE:A9
X509v3 Authority Key Identifier:
keyid:6B:D0:C5:B3:FA:6C:28:88:60:CC:B6:D9:02:00:CB:B8:E5:7D:B7:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9DFs_psKIhgzLbZAgDLuOV9t_c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/RlDIctvvqH7t711TkSP03DUgrqk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/b4f584-f256-4cab-adbb-c4620fab1f19/1/a9DFs_psKIhgzLbZAgDLuOV9t_c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.5.0/24
Signature Algorithm: sha256WithRSAEncryption
54:22:11:b4:a7:1a:9a:42:52:bc:c4:e2:5e:30:05:8b:85:c4:
39:eb:88:5b:24:72:12:27:d4:fa:a6:38:17:a3:a7:27:02:bc:
18:f6:8e:9c:67:4f:1b:08:0e:da:d5:dc:c8:f6:25:15:11:fc:
0b:c9:f1:16:84:15:6a:5f:62:2a:84:3e:d9:51:58:53:02:a6:
73:d2:02:85:64:71:50:3b:31:66:41:e4:cf:3c:3d:c3:59:8f:
64:d4:fa:d9:4d:2c:55:b4:0b:8f:36:ed:68:96:b7:ad:76:db:
1f:dd:9b:28:32:9f:92:77:f4:fa:21:e2:dc:44:50:9e:05:1d:
cc:ca:32:58:b6:c6:2c:ed:c9:a1:ff:39:c3:a8:4f:36:0b:1b:
2f:f7:fb:0d:05:c8:86:b5:50:3c:1c:95:5f:be:40:4a:50:b2:
78:a4:c2:ac:9f:57:d2:44:34:0e:b6:ca:bb:71:30:24:67:d3:
5b:34:ce:e1:f4:f8:12:76:c3:2e:e5:dc:c6:81:77:66:20:69:
b9:d7:06:56:ce:a5:d3:08:12:e6:c7:61:40:16:d7:e3:14:42:
02:4b:64:1d:28:ea:3c:d9:53:62:84:95:27:84:25:e3:a6:11:
b8:d0:4b:b1:a2:18:b7:85:e7:6f:a6:a3:ab:9b:dd:50:56:48:
4c:17:db:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:18 2023 by rpki-client on console-ams.rpki-client.org