Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/xa9djavWw4dHV6wlwly3LD0PBCA.roa
File: xa9djavWw4dHV6wlwly3LD0PBCA.roa (raw, json)
Hash identifier: 6Ax0GnwwbyVG6V1hdRtcrf2Sz7mOk7KfMYrEjItjVek=
Subject key identifier: C5:AF:5D:8D:AB:D6:C3:87:47:57:AC:25:C2:5C:B7:2C:3D:0F:04:20
Certificate issuer: /CN=f030658f16d2d88d34164592fcd4de13131f1695
Certificate serial: 018437FBA6BC3042683B6C5956294009954C
Authority key identifier: F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/xa9djavWw4dHV6wlwly3LD0PBCA.roa
Signing time: Wed 02 Nov 2022 10:55:49 +0000
ROA not before: Wed 02 Nov 2022 10:55:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 13259
IP address blocks: 45.15.159.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:37:fb:a6:bc:30:42:68:3b:6c:59:56:29:40:09:95:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f030658f16d2d88d34164592fcd4de13131f1695
Validity
Not Before: Nov 2 10:55:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c5af5d8dabd6c3874757ac25c25cb72c3d0f0420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:4b:b5:40:9e:9f:81:9a:a6:65:94:6b:e2:b6:
17:8a:55:98:be:68:c1:69:1f:4d:90:75:9b:9f:5a:
e0:b2:4e:f3:07:81:58:04:f2:ff:e5:9d:10:30:a6:
29:7b:6e:96:ab:c2:ce:9e:e9:0b:e1:a3:26:b6:b4:
da:af:dd:ff:74:8b:bf:b7:af:20:19:4b:41:77:f0:
66:28:39:79:ed:95:97:3a:c9:bf:76:f9:93:0e:6f:
2e:60:c2:ec:c5:c0:0d:e6:d0:d2:21:75:bf:9a:93:
cc:47:a9:3a:82:d1:9c:b0:49:f6:06:bc:6d:56:ff:
f9:bf:5e:74:6d:71:1a:a6:e8:48:0a:c2:85:f4:90:
df:96:08:68:c2:92:08:9c:6f:04:e3:95:f4:ce:f0:
88:89:d8:07:26:ed:58:4f:e0:91:09:27:00:00:99:
4c:16:4a:c6:75:ab:de:6f:79:d0:da:e1:5b:23:fa:
37:7d:6d:c0:8a:0d:07:d5:7b:9f:44:23:bf:3a:b9:
98:cd:d6:d7:b6:4e:37:ed:42:2e:7e:94:49:f7:66:
0b:67:82:02:75:43:68:b7:6b:bc:eb:a0:02:e4:71:
3d:f6:74:11:6f:14:cf:4e:22:d2:14:c3:c4:e5:40:
18:ae:3f:95:3d:84:fd:7a:17:ca:78:ad:ea:fb:89:
74:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:AF:5D:8D:AB:D6:C3:87:47:57:AC:25:C2:5C:B7:2C:3D:0F:04:20
X509v3 Authority Key Identifier:
keyid:F0:30:65:8F:16:D2:D8:8D:34:16:45:92:FC:D4:DE:13:13:1F:16:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8DBljxbS2I00FkWS_NTeExMfFpU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/xa9djavWw4dHV6wlwly3LD0PBCA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/6693e3-89ca-44a1-a8b6-894805289cc0/1/8DBljxbS2I00FkWS_NTeExMfFpU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.159.0/24
Signature Algorithm: sha256WithRSAEncryption
69:04:f8:38:ee:2d:01:ae:03:26:24:84:28:c0:f7:ff:f6:a6:
82:2d:86:73:b5:f4:75:41:39:77:e0:98:91:f2:8f:2e:3a:62:
a2:9d:63:8d:af:ab:bf:79:8c:3f:74:28:f6:cc:2b:d9:98:7c:
35:bd:60:7a:ca:f0:f1:c7:0d:ec:cc:01:dc:c7:49:8b:d0:43:
cf:11:04:6b:63:73:28:61:fc:87:12:84:e6:df:f3:2d:a7:c6:
54:36:32:dc:e4:0d:ce:15:a5:76:9c:51:f1:b5:f6:55:4b:30:
c7:7c:c4:ae:15:c4:7b:e9:35:f1:8d:39:3d:ec:a2:7d:52:25:
fb:52:db:f3:6f:88:95:82:ce:5e:96:ff:8b:dd:fc:eb:19:6e:
34:dc:0d:06:74:fa:bc:49:a0:08:0a:ed:2c:6f:91:b3:11:2b:
20:5a:c1:64:a4:86:4e:07:ed:fc:da:e0:69:e9:a6:fe:07:5c:
bf:ff:2b:64:d7:65:ec:26:89:50:e2:b9:88:8f:eb:a3:85:27:
42:e6:01:1e:f1:9d:43:64:b4:35:7e:d1:82:32:92:ea:e0:ba:
d2:9a:83:e7:e5:a3:21:de:52:0b:8c:4e:d8:7d:67:6b:1e:d0:
fb:60:41:0e:fd:4d:60:26:9e:15:cc:89:2d:5e:c6:92:a4:68:
b5:51:d1:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:37 2024 by rpki-client on console-fra.rpki-client.org