Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/dZOMm5KTs-t6ghD6PZLwPpTW_wo.roa
File: dZOMm5KTs-t6ghD6PZLwPpTW_wo.roa (raw, json)
Hash identifier: IgtlkwhuTHcHMxKp8GOrAfCOufj6jw8mAO0b1RGuaPs=
Subject key identifier: 75:93:8C:9B:92:93:B3:EB:7A:82:10:FA:3D:92:F0:3E:94:D6:FF:0A
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 01855CD9E4EA67C59B9C331AF21D96F86872
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/dZOMm5KTs-t6ghD6PZLwPpTW_wo.roa
Signing time: Thu 29 Dec 2022 07:47:41 +0000
ROA not before: Thu 29 Dec 2022 07:47:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212384
IP address blocks: 45.134.13.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5c:d9:e4:ea:67:c5:9b:9c:33:1a:f2:1d:96:f8:68:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Dec 29 07:47:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=75938c9b9293b3eb7a8210fa3d92f03e94d6ff0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:60:81:3f:a7:50:ba:cc:d4:89:70:20:1e:8f:
48:6d:b8:3f:ba:31:89:7f:ec:3d:3f:aa:14:ca:14:
40:5e:df:1c:bf:9f:19:db:95:ab:62:c1:a4:a2:b6:
16:85:15:af:50:18:83:f2:32:5c:b8:51:07:4f:95:
dd:58:d5:96:75:6e:5c:7f:fb:88:3d:1a:c0:0b:a2:
6c:e5:b7:f9:a9:d1:0f:95:d1:89:db:83:0c:a0:fe:
66:78:15:83:3a:05:05:d3:57:a8:4e:a9:33:3d:47:
63:2c:58:e0:93:fe:ef:92:d9:50:6d:20:62:fb:e2:
5e:91:4f:ad:b8:ff:52:65:52:40:8d:67:4f:66:a0:
b2:97:ea:17:fe:ec:3a:88:97:84:33:84:49:52:b3:
b9:55:4c:ce:6b:87:1c:a3:15:ea:86:5c:ad:24:9f:
2f:db:4e:a8:c2:a0:15:ae:1b:6e:a1:01:88:f6:92:
89:4d:e9:44:bf:b7:45:af:11:85:c1:eb:96:76:cc:
2a:bd:cf:c8:a5:9c:32:2f:85:ed:50:7e:dd:aa:c3:
7a:25:7a:25:3a:a9:14:e2:df:d3:d4:41:e5:6e:d0:
4c:96:cb:56:47:75:d0:bd:9e:32:a3:17:2b:30:8f:
84:c0:ac:45:ef:e3:e6:5c:15:5b:16:3e:cc:b5:ae:
a8:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:93:8C:9B:92:93:B3:EB:7A:82:10:FA:3D:92:F0:3E:94:D6:FF:0A
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/dZOMm5KTs-t6ghD6PZLwPpTW_wo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.13.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:fa:90:bc:71:35:35:39:ba:fa:16:61:34:71:5d:09:e5:6d:
db:bc:6f:ac:a8:94:a5:d4:05:3e:f4:c5:6f:61:62:d5:ad:46:
39:ab:3b:11:0b:b5:87:d3:07:d2:87:4b:15:5b:d1:5b:3c:8c:
93:3d:d7:bc:47:3c:42:19:82:1c:a9:9b:65:73:fa:07:71:c9:
0f:47:e5:b2:30:17:94:81:99:5b:28:1d:85:35:bd:53:a1:94:
27:68:f2:e8:48:96:3c:e1:29:c9:ab:1c:d3:09:2c:81:15:db:
c4:b2:b0:89:7c:94:54:3e:26:9b:67:d8:78:c4:4e:87:cd:17:
98:a2:86:db:b5:fa:b6:9b:00:70:b6:87:4a:ed:5e:e0:e2:07:
6c:50:cc:50:3d:98:bd:28:90:47:5c:45:a6:0b:40:78:0f:e6:
0c:22:33:29:dd:c5:b2:e3:b7:6a:d5:e9:9a:5f:93:c7:67:b2:
0e:e1:1a:a6:f5:eb:c1:9e:04:38:7f:a4:a9:31:5c:79:34:95:
f5:48:c0:49:f1:1d:d5:47:ad:e7:b7:01:6e:fd:1a:ad:ca:f0:
4a:67:1d:43:c7:65:2f:66:b2:e3:8e:93:88:31:20:92:9b:09:
46:fa:c9:2f:93:2a:c6:fd:a4:15:b3:15:06:56:10:fd:61:c0:
9f:7c:cb:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:11 2024 by rpki-client on console-ams.rpki-client.org