Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/b955fd-39e8-42e6-ac54-af69480080ce/1/Bug69MX0X3cTDLQKRzVEOsfrDcs.roa
File: Bug69MX0X3cTDLQKRzVEOsfrDcs.roa (raw, json)
Hash identifier: Icm2VNdvOPrOHThe6lRECnuOu9d3O+U82ds7PHrIqYs=
Subject key identifier: 06:E8:3A:F4:C5:F4:5F:77:13:0C:B4:0A:47:35:44:3A:C7:EB:0D:CB
Certificate issuer: /CN=e51f3efed57f85c0717ba586386bcd92ddc5c7b5
Certificate serial: 08785800
Authority key identifier: E5:1F:3E:FE:D5:7F:85:C0:71:7B:A5:86:38:6B:CD:92:DD:C5:C7:B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5R8-_tV_hcBxe6WGOGvNkt3Fx7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/b955fd-39e8-42e6-ac54-af69480080ce/1/Bug69MX0X3cTDLQKRzVEOsfrDcs.roa
Signing time: Sat 01 Jan 2022 09:03:16 +0000
ROA not before: Sat 01 Jan 2022 09:03:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51548
IP address blocks: 45.13.96.0/22 maxlen: 22
2a0e:e300::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142104576 (0x8785800)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e51f3efed57f85c0717ba586386bcd92ddc5c7b5
Validity
Not Before: Jan 1 09:03:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=06e83af4c5f45f77130cb40a4735443ac7eb0dcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d6:92:5f:ed:df:27:5c:27:b6:0c:ee:ee:16:
3a:99:88:fc:c8:1d:6b:67:5f:7f:a9:96:07:38:3a:
b2:d2:4a:8b:06:6d:53:f3:1d:60:77:40:c2:2d:5e:
7e:eb:c2:8f:51:c3:bb:48:04:c4:b0:81:da:12:4d:
98:3c:a7:c1:a9:96:1d:91:be:79:8d:10:41:9d:e5:
59:01:2d:5f:ba:51:10:cb:af:4e:4b:09:1c:18:db:
60:3a:57:b1:07:00:56:51:7e:0a:dd:1f:39:34:84:
bb:ae:e3:82:59:8a:75:76:83:72:eb:d1:c1:56:64:
65:d1:59:6d:1a:7b:0a:0f:2a:65:1b:b5:a4:dc:98:
4d:af:bb:5b:3b:2d:a7:09:5a:b0:91:95:7a:6e:0c:
a3:f5:89:f9:fa:60:08:8a:88:fb:c7:f0:e1:07:a3:
c1:25:4c:39:92:d5:b9:91:e8:5b:a5:04:0b:b3:77:
cf:ad:57:4d:58:d0:03:b2:a7:cf:2b:1a:09:5d:bf:
9a:70:06:3e:ea:aa:5f:cd:12:37:cc:57:9e:73:5c:
1e:5b:2f:a1:71:20:f5:73:35:5c:12:cd:af:75:59:
e9:2c:68:fd:38:ee:55:52:47:27:6e:c2:ab:a6:8c:
a4:9f:d6:c3:88:a4:be:d3:10:14:d9:a4:43:bc:0c:
41:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:E8:3A:F4:C5:F4:5F:77:13:0C:B4:0A:47:35:44:3A:C7:EB:0D:CB
X509v3 Authority Key Identifier:
keyid:E5:1F:3E:FE:D5:7F:85:C0:71:7B:A5:86:38:6B:CD:92:DD:C5:C7:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5R8-_tV_hcBxe6WGOGvNkt3Fx7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b955fd-39e8-42e6-ac54-af69480080ce/1/Bug69MX0X3cTDLQKRzVEOsfrDcs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/b955fd-39e8-42e6-ac54-af69480080ce/1/5R8-_tV_hcBxe6WGOGvNkt3Fx7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.96.0/22
IPv6:
2a0e:e300::/29
Signature Algorithm: sha256WithRSAEncryption
5c:34:b8:8f:a3:66:5d:2c:4b:cb:86:14:f7:04:7e:f3:fc:c3:
ef:b5:1f:b4:58:c3:c4:a1:56:73:cd:09:e1:0b:30:1b:76:5f:
20:73:56:81:e5:ea:56:dc:e8:2c:2f:d6:44:4a:98:08:44:b3:
80:ef:b9:63:26:de:a7:f4:68:a3:d6:d4:44:c9:c9:13:65:40:
b1:9c:7e:99:f3:b0:6f:31:a7:f2:9c:ea:62:ce:c4:cc:60:9f:
db:5a:7a:c8:35:c6:d4:d8:f6:0b:58:54:2f:97:fc:2b:a9:e5:
0a:d7:13:23:6a:6f:f1:93:95:36:f8:4e:b6:08:77:6a:67:92:
0d:8c:5d:4d:bb:2a:fd:47:04:0c:20:30:bb:b7:c6:b6:62:ca:
00:a1:8c:bd:c6:b0:30:02:b8:0f:b2:0b:16:99:92:cf:7a:38:
a4:69:b3:bf:3b:af:18:ba:01:94:5b:ce:2f:8e:c0:16:1e:1e:
32:3e:c2:4b:6c:32:77:d6:b8:96:7f:c0:6a:37:25:81:01:eb:
67:ec:24:3b:8c:11:37:8c:49:40:b0:cc:97:bd:5a:ae:c7:b3:
47:15:d4:3b:65:b5:49:2c:4e:76:25:ee:24:aa:3f:cc:d9:9e:
05:bd:5f:f4:78:d9:de:ef:86:84:a0:d3:cc:0b:42:22:2a:de:
74:df:83:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:21:16 2024 by rpki-client on console-ams.rpki-client.org