Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/XGSLkkU1zwCOUF2GGyLXdS12j4o.roa
File: XGSLkkU1zwCOUF2GGyLXdS12j4o.roa (raw, json)
Hash identifier: JFsQY/44OYMGtooieR6MrdfgVsKRGABsDM49O2L4F7Y=
Subject key identifier: 5C:64:8B:92:45:35:CF:00:8E:50:5D:86:1B:22:D7:75:2D:76:8F:8A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1A49FE1F
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/XGSLkkU1zwCOUF2GGyLXdS12j4o.roa
Signing time: Mon 31 Jan 2022 16:06:12 +0000
ROA not before: Mon 31 Jan 2022 16:06:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30848
IP address blocks: 45.130.116.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 441056799 (0x1a49fe1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 31 16:06:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c648b924535cf008e505d861b22d7752d768f8a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ab:d4:37:90:d3:01:06:f7:53:a0:3d:55:a1:
f4:90:3b:71:e3:e9:1c:87:0d:f7:77:50:d2:eb:8e:
89:de:4a:22:43:2b:a5:b5:c1:41:21:34:85:7a:6e:
b1:cf:09:6f:7c:6e:11:f7:2d:3a:1d:04:b5:e3:eb:
1e:34:b0:94:8c:f9:a2:9b:05:c2:38:07:39:5e:56:
bd:29:e7:26:98:e0:f9:75:2b:a4:66:8e:c3:0f:d6:
4c:82:ef:70:8e:a7:90:b3:90:fe:ef:87:2d:56:d5:
96:29:06:13:f8:30:6d:07:ca:3f:a4:e4:95:0c:af:
a5:bf:98:4f:11:cd:b6:4c:a5:32:36:4f:85:e5:17:
cd:47:ed:71:68:53:1c:fb:be:e3:d4:e4:14:db:ad:
7b:25:cb:23:6a:66:2f:b7:fa:70:0a:ad:2f:fa:a6:
1e:4d:93:69:a1:a6:87:a0:d7:2d:dc:3c:5b:22:d4:
e9:95:8c:83:6b:a1:91:f9:2e:7e:21:4c:bf:b8:f3:
43:46:aa:ee:3c:b5:22:a1:14:46:a7:fc:7c:6d:8b:
17:46:fd:6d:23:88:2a:6d:33:93:82:b0:bc:42:67:
d8:62:d0:19:65:e9:ab:8f:47:6b:1f:e1:df:b4:cc:
cb:10:ed:d2:ab:51:de:77:66:6a:47:c5:45:06:9c:
81:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:64:8B:92:45:35:CF:00:8E:50:5D:86:1B:22:D7:75:2D:76:8F:8A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/XGSLkkU1zwCOUF2GGyLXdS12j4o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.116.0/23
Signature Algorithm: sha256WithRSAEncryption
77:e8:ee:2d:2f:5b:ff:47:82:a3:f9:36:64:8c:a5:b8:c8:c6:
f1:29:b8:f2:ad:28:d4:0d:3c:08:f4:2f:76:c0:39:21:42:7d:
3f:83:22:44:36:7a:78:00:87:5b:61:68:46:5c:67:a6:53:a8:
5d:fd:11:1b:d9:69:75:9d:2f:2e:95:ba:51:ca:7f:a9:d4:3a:
6f:c6:3c:7c:e2:71:b7:78:6f:40:51:b5:e6:26:72:21:45:f5:
1b:93:e2:49:e8:a6:bc:27:ef:6f:a4:89:e1:f2:5c:69:a0:a8:
00:6a:56:1a:05:de:71:6b:19:b2:1b:cb:53:08:57:49:54:7c:
39:29:27:5f:5c:29:13:96:e4:e5:e9:17:47:fe:35:f1:b8:a4:
e2:f9:49:ad:e1:0c:18:00:83:ea:db:e2:45:12:e3:7d:dd:5c:
fa:50:0e:07:0b:c2:12:b7:c3:16:1b:78:20:74:47:81:29:d1:
c7:f9:87:05:3a:12:a7:4d:8b:80:46:8a:d6:51:89:5a:f3:cf:
ab:1a:13:2f:c2:4a:95:4d:b5:a0:f9:2b:01:62:f2:9c:cd:fb:
4b:2e:f0:06:4d:3d:62:54:07:2a:75:c4:e3:2c:83:70:47:19:
8e:6d:00:5f:50:f0:5e:19:01:b4:bd:1e:2a:63:8c:f1:38:f4:
63:0f:69:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org