Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/h6QoUEGW36XOJwS3WGguANj1fq4.roa
File: h6QoUEGW36XOJwS3WGguANj1fq4.roa (raw, json)
Hash identifier: 2iRNW/JJ4TBqN/vg9BWLGlhXEwluP+Kw1N8hB68gDb0=
Subject key identifier: 87:A4:28:50:41:96:DF:A5:CE:27:04:B7:58:68:2E:00:D8:F5:7E:AE
Certificate issuer: /CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Certificate serial: 045AA30C
Authority key identifier: C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/h6QoUEGW36XOJwS3WGguANj1fq4.roa
Signing time: Mon 14 Feb 2022 12:40:05 +0000
ROA not before: Mon 14 Feb 2022 12:40:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.134.14.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73048844 (0x45aa30c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c6169716d0ae64068703140aa3730e3788fdd4c6
Validity
Not Before: Feb 14 12:40:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=87a428504196dfa5ce2704b758682e00d8f57eae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d2:f7:bf:f0:2d:74:65:db:4d:6c:6c:8e:ea:
1c:69:82:35:7f:80:e6:c3:73:e5:bd:75:bf:b8:3c:
e7:80:28:57:f6:0c:ec:03:f3:8d:29:12:67:7f:f3:
be:a0:2d:82:4d:eb:f0:63:0f:bc:1b:bf:fe:4a:26:
ab:10:48:85:09:a4:a4:8f:9c:e8:2a:91:d8:79:27:
ee:ec:28:34:bd:43:39:49:6d:5f:60:bd:ab:21:3e:
a3:5b:12:3c:c1:89:93:d3:0f:bf:5e:25:00:a8:10:
61:e3:0b:43:6a:b9:f6:22:74:ab:b7:bb:84:f7:2d:
ba:92:5a:a6:3a:3b:35:8f:95:26:45:1e:28:41:dc:
4e:e6:e3:60:3c:0e:b2:3e:7d:c1:7c:c5:4b:e7:18:
d7:44:ef:75:e6:1e:66:d5:3d:4e:9a:4b:ad:f4:99:
25:e7:c2:09:4d:20:09:72:a4:50:a3:0f:c2:a0:81:
0d:82:59:85:90:f9:bc:9d:59:5a:46:c7:ae:8b:6e:
e2:b9:e7:49:ff:3f:b4:78:4e:ad:ed:b9:aa:2b:64:
87:89:be:2b:a9:cb:82:3d:5b:32:9a:97:6f:78:62:
c4:8b:9e:b7:05:24:ae:2f:34:ea:07:05:77:b1:43:
43:0f:43:4f:63:86:37:75:e0:74:a6:0c:ed:56:bf:
0f:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:A4:28:50:41:96:DF:A5:CE:27:04:B7:58:68:2E:00:D8:F5:7E:AE
X509v3 Authority Key Identifier:
keyid:C6:16:97:16:D0:AE:64:06:87:03:14:0A:A3:73:0E:37:88:FD:D4:C6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xhaXFtCuZAaHAxQKo3MON4j91MY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/h6QoUEGW36XOJwS3WGguANj1fq4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/400685-f48e-4ab9-8e3f-042446b70fb1/1/xhaXFtCuZAaHAxQKo3MON4j91MY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.14.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:44:4d:18:18:c0:e3:8c:38:2e:d0:b6:9d:e0:30:ff:71:33:
e6:13:f1:d6:33:6e:0e:2a:de:2d:18:e8:77:5e:5a:ee:03:7b:
ca:2b:10:f8:36:f7:e8:8e:86:9d:ae:af:fb:7a:93:a2:8b:bf:
e7:ca:65:a9:95:b9:66:cf:a8:9f:89:0b:8f:8c:5f:4c:d1:dd:
3f:28:73:ca:64:42:10:f5:2b:da:15:c4:af:21:fb:6c:83:a5:
65:a9:df:3b:c0:88:39:12:f3:60:25:7c:56:86:e7:ed:88:fe:
ca:1c:5c:2a:da:36:e0:cc:b9:0c:b3:a1:91:f6:f3:d2:9c:fc:
cf:75:c0:85:9a:7c:33:3a:f5:c6:20:88:d9:05:c9:bc:fd:e3:
32:7f:a5:64:b3:af:79:d5:25:81:6a:b5:1d:e7:ba:76:ec:9f:
0a:90:f5:44:bb:69:58:3f:e9:00:3b:1d:8f:e6:d0:2e:7c:99:
c8:ee:05:8c:63:62:88:b9:a3:d7:94:82:f6:c9:0e:26:35:01:
6c:06:c7:b9:8b:44:5b:44:f2:fd:ba:aa:13:8b:2c:ec:38:d2:
49:30:c7:48:a4:56:d1:06:68:e4:cb:10:3a:79:e4:09:c6:6f:
92:36:47:e5:d2:4f:08:48:40:24:61:12:4b:c0:c8:08:97:a9:
2d:2f:01:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:11 2024 by rpki-client on console-ams.rpki-client.org