Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/be6AbQgCB3Qo-W9LW2Zbnu8rv0M.roa
File: be6AbQgCB3Qo-W9LW2Zbnu8rv0M.roa (raw, json)
Hash identifier: i1xl/slCYguRKMuzpi1jEyWVGpXMGIPiWh39jWf7Qic=
Subject key identifier: 6D:EE:80:6D:08:02:07:74:28:F9:6F:4B:5B:66:5B:9E:EF:2B:BF:43
Certificate issuer: /CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Certificate serial: 059A0174
Authority key identifier: DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/be6AbQgCB3Qo-W9LW2Zbnu8rv0M.roa
Signing time: Sat 01 Jan 2022 07:03:58 +0000
ROA not before: Sat 01 Jan 2022 07:03:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39081
IP address blocks: 45.67.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93978996 (0x59a0174)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dcef58d4cfa35543f8488a2756e6924e647b4589
Validity
Not Before: Jan 1 07:03:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6dee806d0802077428f96f4b5b665b9eef2bbf43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f9:43:5e:56:a4:38:26:85:0c:46:16:cb:b3:
96:66:34:56:25:e7:39:05:cd:f4:46:2b:8d:df:75:
0c:1b:86:cb:c6:62:ed:11:ba:85:54:df:53:e7:84:
89:77:61:9f:47:b6:7d:b5:cb:22:8e:8c:3a:01:a2:
df:01:97:47:a2:63:e7:74:a1:21:72:48:ba:5f:5b:
da:72:44:4b:64:7f:22:b9:f4:a2:ef:36:5f:68:d6:
c3:ce:fd:b1:34:44:3a:a4:ba:ed:f3:f8:e0:2f:ab:
d8:79:1a:27:52:40:d9:6a:4a:f9:7a:23:bd:10:9e:
d9:2e:22:32:05:f1:9e:0c:09:81:12:b1:5d:66:fd:
76:51:97:74:1c:f2:5a:87:ac:2b:85:62:63:18:15:
c1:13:c2:dc:2c:35:ae:3f:62:4c:60:b2:4f:75:b6:
be:9a:da:c9:e4:a0:85:a6:d5:fb:a7:4f:72:b4:c0:
f1:a0:3b:45:3b:91:07:0e:e5:71:b9:a5:16:2f:cf:
4a:b0:76:c9:8e:ee:ea:9a:6d:20:73:b7:7d:25:b0:
98:0d:02:6b:4d:bb:77:08:7c:71:e8:69:1d:ea:db:
1b:0d:7d:c5:55:74:29:eb:27:3a:c2:dc:84:06:6b:
ef:41:17:07:d9:08:c5:7e:76:80:5c:89:13:f0:55:
6e:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:EE:80:6D:08:02:07:74:28:F9:6F:4B:5B:66:5B:9E:EF:2B:BF:43
X509v3 Authority Key Identifier:
keyid:DC:EF:58:D4:CF:A3:55:43:F8:48:8A:27:56:E6:92:4E:64:7B:45:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3O9Y1M-jVUP4SIonVuaSTmR7RYk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/be6AbQgCB3Qo-W9LW2Zbnu8rv0M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/ea4455-7836-44c4-b2a3-2ece04e185c2/1/3O9Y1M-jVUP4SIonVuaSTmR7RYk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.37.0/24
Signature Algorithm: sha256WithRSAEncryption
cf:7c:54:f9:26:f8:0f:ca:01:c2:a3:5a:28:b2:98:e9:37:6f:
c3:e8:be:e8:45:76:11:a8:7a:8d:4d:64:c6:4f:40:1c:5f:4d:
65:4f:b3:53:52:0e:19:79:25:93:4f:4c:ff:23:b7:37:fb:09:
ae:1f:7f:a7:85:41:de:27:40:d6:ae:04:17:cd:07:ad:76:78:
3f:51:ed:25:37:3f:3b:33:ea:68:48:ac:5c:47:80:a6:8c:6d:
ca:64:3d:2f:29:db:1c:9f:96:43:f9:ee:d5:9e:81:4b:29:9b:
41:df:f0:2a:7a:36:cf:f8:f8:9a:9e:98:80:7f:e1:17:ee:4c:
7e:83:35:5d:1c:16:bb:ab:95:98:20:0d:df:65:ad:b4:36:ec:
66:03:27:1f:2f:6f:28:3b:86:d3:a9:3d:34:a9:2a:1f:6a:e5:
04:6f:63:03:61:8d:4a:5c:22:0a:de:17:fa:62:b3:0f:0a:03:
3f:20:fd:90:47:67:3b:aa:f7:67:67:62:9f:42:b5:ea:57:67:
d5:48:97:bf:6d:18:dd:14:a8:a1:d0:72:62:55:37:8e:47:69:
a7:46:b8:8f:1d:8c:8b:c6:b8:69:f4:17:28:dc:de:55:2e:3e:
7c:13:7b:0d:70:a0:b1:3c:26:be:7d:6e:20:25:a2:5a:46:d4:
ce:ac:c5:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:54 2023 by rpki-client on console-ams.rpki-client.org