Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/FWYC5AlblC_fuN24Ex1r9Luk0KA.roa
File: FWYC5AlblC_fuN24Ex1r9Luk0KA.roa (raw, json)
Hash identifier: JQz2+03T5JsrRPVPBWIkBLdsruhpLjydPYYwm0c9Yoo=
Subject key identifier: 15:66:02:E4:09:5B:94:2F:DF:B8:DD:B8:13:1D:6B:F4:BB:A4:D0:A0
Certificate issuer: /CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Certificate serial: 060A1650
Authority key identifier: C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/FWYC5AlblC_fuN24Ex1r9Luk0KA.roa
Signing time: Sat 01 Jan 2022 16:01:27 +0000
ROA not before: Sat 01 Jan 2022 16:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212419
IP address blocks: 45.12.29.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101324368 (0x60a1650)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c66d9d50b3b89d51c8aa2493e7ef4701d6251dad
Validity
Not Before: Jan 1 16:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=156602e4095b942fdfb8ddb8131d6bf4bba4d0a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:e0:e0:92:13:bf:e7:40:ff:46:50:55:8a:23:
22:0c:26:d2:75:61:cd:44:dd:08:72:54:da:5e:2d:
15:7a:10:3f:6f:b3:bd:6c:2b:4f:62:4e:40:fd:9a:
7c:8d:5d:4c:60:8f:bd:68:c0:23:c2:fe:bf:cb:6e:
96:ec:8c:03:41:23:22:e1:7c:62:41:52:c0:1f:92:
61:91:0d:df:c8:83:3f:9a:f5:80:2d:9f:49:d3:9b:
c5:47:d4:e5:f2:98:33:6e:bf:5e:ae:cf:5c:63:9c:
5a:80:6f:60:f9:31:a2:d5:0b:5c:2a:30:3e:01:59:
32:64:73:f5:68:35:1b:3d:83:1a:13:58:90:ab:89:
9c:87:28:a3:d5:45:13:37:33:ce:63:36:8a:a8:d2:
f9:f8:53:ce:d4:fc:1f:f2:f0:36:29:66:2b:03:3e:
bc:4b:9a:a2:72:84:e9:90:f0:c2:60:95:a0:8c:33:
41:07:09:18:8e:58:9b:b0:9b:e6:c8:50:b8:8a:f3:
04:31:9c:2e:22:87:84:c1:3b:41:ae:ef:4c:d9:10:
26:d8:ec:42:6d:45:fe:cd:af:e8:b7:66:15:71:cd:
43:59:9f:13:67:53:b6:88:56:32:a1:fd:25:f0:3e:
19:ba:75:75:08:61:8e:6b:16:7b:50:76:f5:12:f8:
25:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:66:02:E4:09:5B:94:2F:DF:B8:DD:B8:13:1D:6B:F4:BB:A4:D0:A0
X509v3 Authority Key Identifier:
keyid:C6:6D:9D:50:B3:B8:9D:51:C8:AA:24:93:E7:EF:47:01:D6:25:1D:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xm2dULO4nVHIqiST5-9HAdYlHa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/FWYC5AlblC_fuN24Ex1r9Luk0KA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/4bb74b-8d6d-4514-a39c-b7c578b74e35/1/xm2dULO4nVHIqiST5-9HAdYlHa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.29.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:54:e9:b1:f6:2f:12:3e:f5:2a:d2:3b:b0:3f:bd:26:a3:0b:
b7:6f:0b:d3:b5:96:ca:38:31:9e:d6:3d:5b:d3:48:50:22:52:
6f:55:1c:ab:e9:14:65:a0:b0:ba:89:10:5a:06:bb:98:91:09:
1b:60:cc:1a:94:f4:c1:c3:42:82:32:17:25:bd:11:79:b0:7d:
73:a3:97:66:fc:62:cb:f9:dd:9f:ca:39:6b:01:8d:b8:b8:09:
ce:4a:95:d7:6d:de:2e:ea:10:2f:4e:f4:d3:a2:1f:0b:00:18:
83:47:68:20:c2:89:4c:c6:bf:eb:f0:be:7d:50:3c:2b:06:53:
de:21:90:cd:a9:eb:9a:ac:4c:1a:36:0e:b8:4f:26:18:bf:72:
e8:41:a8:83:d8:cf:a1:a9:9d:12:a4:0b:5a:1e:f4:75:dc:f9:
07:df:e6:cb:53:d9:80:23:86:08:2e:92:4e:ce:c6:f4:63:56:
07:ca:53:20:99:58:c9:67:90:f4:6a:fd:82:51:e3:93:79:5e:
80:f3:2e:8e:a2:39:49:6c:8b:e3:60:a4:0e:d9:5e:6c:d8:64:
86:0e:21:b8:c4:b8:00:2b:ca:1c:c8:7b:f3:c6:cc:7c:48:74:
47:2b:58:85:05:58:2a:99:08:f9:cf:74:4c:c2:71:fe:fd:5e:
e0:9d:84:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:37 2023 by rpki-client on console-ams.rpki-client.org