Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/D1-61d1CKkVsfaDp0hvji_0OYuo.roa
File: D1-61d1CKkVsfaDp0hvji_0OYuo.roa (raw, json)
Hash identifier: krQ2EFZvKZQGIwlShByRzYsf9lBKOLT7m9cqAt5qhaY=
Subject key identifier: 0F:5F:BA:D5:DD:42:2A:45:6C:7D:A0:E9:D2:1B:E3:8B:FD:0E:62:EA
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 0181D7A477980C21409C93D3120F6BB6D2E7
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/D1-61d1CKkVsfaDp0hvji_0OYuo.roa
Signing time: Thu 07 Jul 2022 07:51:28 +0000
ROA not before: Thu 07 Jul 2022 07:51:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 27027
IP address blocks: 45.150.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d7:a4:77:98:0c:21:40:9c:93:d3:12:0f:6b:b6:d2:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jul 7 07:51:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f5fbad5dd422a456c7da0e9d21be38bfd0e62ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:65:00:21:df:99:d9:09:6f:e3:21:be:d7:05:
a5:e9:24:ce:b0:4d:c9:8a:2b:be:85:86:f8:0c:6e:
e6:2c:52:68:11:e4:7e:7f:20:70:cb:cd:83:97:82:
21:38:7d:27:2e:fb:b1:d4:7a:7d:44:11:8e:2c:3b:
76:89:ad:2e:69:28:45:93:ed:08:ba:03:1a:aa:8f:
42:66:58:ba:51:51:e8:26:c9:3b:2c:94:7d:ef:b7:
fe:c4:3d:f6:c1:99:d5:7c:d4:33:3d:48:9a:11:ac:
39:2d:f0:87:19:ad:7d:b4:6d:09:15:2f:e6:dd:a3:
cd:e3:6b:49:ac:fd:95:3a:de:a3:5c:59:93:ff:93:
d9:4c:b5:4e:a0:52:88:75:b9:e7:32:78:d0:8b:3d:
80:29:f7:7b:21:50:59:14:67:fa:55:09:80:36:e9:
91:3a:1d:8b:be:bf:12:44:a3:18:d4:cc:a9:6b:65:
2b:67:ab:19:be:cb:97:64:c9:de:16:fb:71:40:24:
7f:bf:9a:dc:54:fc:b5:c7:c5:cd:d0:19:44:b5:ba:
4a:f5:07:5f:6b:59:ef:4e:db:2d:49:8d:3a:f2:c9:
ca:92:8e:35:94:57:4b:04:50:db:f1:cb:10:42:b6:
9c:7c:1b:3f:c3:c7:25:0c:1f:8b:29:10:ae:6f:bf:
12:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:5F:BA:D5:DD:42:2A:45:6C:7D:A0:E9:D2:1B:E3:8B:FD:0E:62:EA
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/D1-61d1CKkVsfaDp0hvji_0OYuo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.52.0/24
Signature Algorithm: sha256WithRSAEncryption
b0:b0:3d:03:2c:cf:db:81:d1:1f:dc:d7:c9:1e:1e:50:dc:50:
f8:91:78:c4:6f:3f:90:eb:f6:ff:a9:c5:20:fd:49:0a:e7:26:
10:50:23:e2:ee:6c:f1:b4:77:cf:3a:f1:c0:0a:6a:49:06:b5:
70:01:94:99:6f:a5:4e:6a:8a:ef:04:a0:6f:8a:1a:dc:9b:5b:
09:dc:e3:33:27:b1:f5:f9:ca:1e:36:71:48:05:7c:3b:f4:93:
e5:78:b7:dc:2b:e1:56:6f:f8:5d:d2:af:42:25:4f:24:06:a9:
3a:74:1c:a7:b2:b1:c0:ef:f3:95:8a:22:91:19:a2:25:06:49:
e0:fb:e0:80:99:5f:d7:7e:3f:66:4e:06:08:be:96:59:29:38:
d1:9c:27:a1:01:bd:0a:e5:2b:d1:09:cd:4f:a7:06:61:85:da:
0e:fb:c9:4e:bb:1f:5f:c2:ca:36:f6:6d:47:fa:8b:e3:5d:73:
74:8e:9c:8c:5a:67:0a:06:5f:2e:da:b5:83:53:c7:55:3a:0b:
fb:3d:02:7c:39:95:77:6e:3c:6d:0a:6a:60:f2:a1:5e:22:a4:
b3:ed:48:2d:e9:77:2c:94:bc:4f:2d:c4:a8:f0:ed:16:85:bc:
c2:df:30:99:fb:5f:9d:17:67:e3:1e:b5:10:b5:53:d7:3d:fc:
9a:9e:70:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:19 2023 by rpki-client on console-fra.rpki-client.org