Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/9eFv6yYw4UEfP_Jmxlr53E09hq8.roa
File: 9eFv6yYw4UEfP_Jmxlr53E09hq8.roa (raw, json)
Hash identifier: RXB7tPxFwAqmMAby4d47fzWXx/yk4RxMATW4pj0e4m4=
Subject key identifier: F5:E1:6F:EB:26:30:E1:41:1F:3F:F2:66:C6:5A:F9:DC:4D:3D:86:AF
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0183C7094309BE751600248DCA6F3CEBFDB2
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/9eFv6yYw4UEfP_Jmxlr53E09hq8.roa
Signing time: Tue 11 Oct 2022 12:33:36 +0000
ROA not before: Tue 11 Oct 2022 12:33:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.149.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c7:09:43:09:be:75:16:00:24:8d:ca:6f:3c:eb:fd:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Oct 11 12:33:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f5e16feb2630e1411f3ff266c65af9dc4d3d86af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:08:30:90:ea:3d:9b:63:01:f5:fd:48:94:f6:
1e:e4:ff:d6:df:d3:ba:5e:09:a7:25:9e:a1:bb:d1:
b9:db:e2:9f:8e:90:1b:76:cc:83:48:fe:0c:1f:33:
77:c2:1d:9f:22:99:d1:10:dc:7c:ed:4f:f5:c9:5b:
95:53:3d:7c:1c:62:81:7a:41:85:68:ad:93:4d:aa:
a7:cb:36:d5:82:29:e8:06:00:6b:65:85:fd:42:24:
d7:20:18:55:90:da:12:0b:bb:88:bb:cd:93:e1:91:
46:39:62:86:cd:74:cf:ab:6e:0f:75:4c:33:b7:ef:
1f:95:c8:85:b8:23:96:21:d5:d2:39:65:81:d1:c3:
bf:df:44:f4:34:ac:2f:71:aa:e7:38:ab:70:05:23:
c6:e0:a0:be:c7:de:12:ba:34:40:c1:7d:06:66:8b:
64:27:4a:8a:36:ee:77:b5:2d:26:c8:80:56:5c:ad:
18:ab:81:6f:bb:6e:fb:c3:ce:4b:44:44:0b:84:4e:
9d:d8:55:39:93:b3:64:37:8d:8a:9f:81:bd:28:e3:
6d:41:72:96:3a:eb:2a:73:59:1b:2e:ac:fb:db:b5:
f5:a2:ab:08:c6:21:13:03:98:8e:16:46:f8:21:42:
a4:f9:05:bc:b8:51:4d:7b:55:2b:5b:65:60:74:22:
80:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:E1:6F:EB:26:30:E1:41:1F:3F:F2:66:C6:5A:F9:DC:4D:3D:86:AF
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/9eFv6yYw4UEfP_Jmxlr53E09hq8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.92.0/23
Signature Algorithm: sha256WithRSAEncryption
9b:aa:b9:fc:08:74:64:c7:40:52:55:5c:f0:e0:74:4c:c3:a5:
d7:cd:ad:ea:67:17:3c:6e:bf:96:64:f2:f0:19:01:7a:77:1a:
81:cf:6f:b7:6a:07:c1:c8:d0:bb:bb:f1:d8:9e:9a:22:f4:cd:
74:43:18:6b:f0:a0:eb:07:a8:34:b4:d3:8d:bb:f4:4a:fa:95:
01:54:33:ce:b9:53:bd:04:50:b9:36:96:22:5b:b4:1b:c6:e5:
38:1f:25:ff:18:d4:2e:4d:56:eb:9a:d4:42:39:3e:9c:e8:db:
73:85:9b:17:5a:b7:4c:ab:e0:33:a9:b9:16:16:cb:9d:4f:9d:
9e:db:2f:81:87:29:09:6c:11:86:08:ab:7e:f8:8c:b8:53:48:
2e:be:a4:b6:e2:9d:d5:40:7b:97:88:be:f2:87:96:a6:f9:6f:
72:61:d0:99:f3:40:21:8e:a0:75:5d:2a:a8:0c:1b:b1:48:aa:
a4:d0:8c:3f:ca:24:e0:71:92:ee:a2:c5:e8:82:0f:90:d0:cb:
df:c3:7e:72:19:01:58:42:94:90:bb:fb:0a:65:33:b2:c2:a3:
3e:ac:0c:93:02:92:68:9a:dd:b9:f1:ea:cc:4a:dc:7a:3b:f5:
20:2b:f6:d2:9d:c5:85:e9:bb:11:e6:70:ab:3d:bc:1d:64:22:
03:3b:ff:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-fra.rpki-client.org