Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/K5LCrMp1YplFL7uHHPc5IOiCFfs.roa
File: K5LCrMp1YplFL7uHHPc5IOiCFfs.roa (raw, json)
Hash identifier: j/oZNmpHzZGwPC9FLuCyhRVGb9WxyotvyCHfB8Sm+ko=
Subject key identifier: 2B:92:C2:AC:CA:75:62:99:45:2F:BB:87:1C:F7:39:20:E8:82:15:FB
Certificate issuer: /CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Certificate serial: 0183A6C499F54D8B00C28026DC4BF468C2AB
Authority key identifier: A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/K5LCrMp1YplFL7uHHPc5IOiCFfs.roa
Signing time: Wed 05 Oct 2022 06:10:45 +0000
ROA not before: Wed 05 Oct 2022 06:10:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3356
IP address blocks: 45.146.202.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a6:c4:99:f5:4d:8b:00:c2:80:26:dc:4b:f4:68:c2:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a254a9f3a266513ddc6935d8be022e7e5230ea10
Validity
Not Before: Oct 5 06:10:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2b92c2acca756299452fbb871cf73920e88215fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:6a:01:d2:f3:96:5a:d0:f6:55:bc:86:f5:e4:
e0:5e:43:6a:91:e9:19:be:ca:df:02:ee:fb:b5:dd:
5a:c6:a2:71:09:1f:0b:f3:2a:94:9c:eb:e7:45:cb:
ff:5e:50:fa:9c:d0:a1:35:2a:45:a6:c4:7b:42:bc:
3a:cd:bc:76:54:82:51:62:59:ac:27:02:97:69:40:
e3:1e:1a:65:56:59:0f:f6:8e:23:06:f3:ba:d9:ef:
94:24:db:b1:08:05:45:d6:3d:75:85:ae:e0:1a:ff:
c6:65:de:3b:e4:89:c9:0e:46:60:52:a1:c6:7f:84:
d1:80:82:67:7c:ec:c4:b1:74:8e:fd:91:95:05:d4:
bd:1a:f4:4a:5a:08:69:5f:49:22:ff:1f:c1:3f:e0:
94:6d:bc:5c:12:e7:57:e0:c9:27:87:39:20:56:f8:
e2:46:6d:ba:c7:4a:e3:3d:7b:7a:05:31:56:c6:7b:
7c:3f:70:ea:2f:80:79:2d:4c:a8:ad:1d:44:fe:52:
29:e9:f1:a8:9c:6e:7a:05:94:9a:76:5f:20:1e:5f:
f4:a3:fd:c8:d2:05:61:4b:ba:08:26:14:79:da:29:
cc:bc:be:21:96:00:4e:60:3f:49:5b:0c:65:99:54:
e9:46:18:1a:42:7e:a4:3e:9a:da:df:7b:49:5b:29:
cc:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:92:C2:AC:CA:75:62:99:45:2F:BB:87:1C:F7:39:20:E8:82:15:FB
X509v3 Authority Key Identifier:
keyid:A2:54:A9:F3:A2:66:51:3D:DC:69:35:D8:BE:02:2E:7E:52:30:EA:10
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/olSp86JmUT3caTXYvgIuflIw6hA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/K5LCrMp1YplFL7uHHPc5IOiCFfs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b60373-818e-40a9-9319-addf0e1849eb/1/olSp86JmUT3caTXYvgIuflIw6hA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.202.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:70:24:51:18:ac:5f:c1:d9:8a:50:57:26:d6:5c:b9:d0:43:
83:b6:a0:b5:06:18:39:a7:e2:fa:4b:69:7b:e9:56:97:3b:43:
a6:98:53:cd:d3:c5:0d:2c:3a:c3:2f:73:da:62:48:4f:e4:e1:
33:aa:b9:a6:9c:ed:bd:a3:7d:24:65:bd:49:f0:34:a6:d6:b3:
79:82:5f:e2:52:4a:65:49:b1:39:6b:03:a4:43:84:cc:94:f0:
f3:ae:e6:39:4c:a5:5f:84:c5:95:bc:a7:f0:9a:b6:6d:43:c3:
00:30:bc:58:f2:e0:0c:d7:24:9b:d3:ff:55:3e:7d:26:e0:11:
1a:91:4a:5e:e1:22:34:7f:cd:0a:c6:1e:7c:f0:e4:69:c3:d2:
7d:24:c5:df:73:32:ca:c0:27:ee:41:74:99:30:57:e3:dc:27:
f4:d0:c8:59:fc:87:62:21:e9:05:25:bc:8a:96:49:de:76:13:
de:62:d8:0d:a3:43:dc:63:9e:e1:10:8b:e5:9b:e0:47:2a:72:
63:89:de:db:b2:fd:72:45:55:3f:e4:e8:87:30:b8:85:e5:18:
a7:e9:89:66:cd:ce:9e:3c:41:d6:17:3f:56:ab:d4:b7:92:95:
a7:0a:72:6f:0c:6a:3b:34:18:c8:64:ba:c7:22:be:a8:6c:a3:
94:81:3d:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org