Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/x0VtcdlHEKsitcj5EdDH-x5I_ro.roa
File: x0VtcdlHEKsitcj5EdDH-x5I_ro.roa (raw, json)
Hash identifier: /k6CD6jxJoYCvlL0ahpwRtKe46MLtwkISAiDYIkpJMQ=
Subject key identifier: C7:45:6D:71:D9:47:10:AB:22:B5:C8:F9:11:D0:C7:FB:1E:48:FE:BA
Certificate issuer: /CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Certificate serial: 01823A9E83CA5EC0DD3C3E0129C1D11341C8
Authority key identifier: B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/x0VtcdlHEKsitcj5EdDH-x5I_ro.roa
Signing time: Tue 26 Jul 2022 13:07:23 +0000
ROA not before: Tue 26 Jul 2022 13:07:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61432
IP address blocks: 45.143.203.0/24 maxlen: 24
185.156.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:9e:83:ca:5e:c0:dd:3c:3e:01:29:c1:d1:13:41:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1af12f5ca75c922a4aa5dacb49c04a93237f4ed
Validity
Not Before: Jul 26 13:07:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7456d71d94710ab22b5c8f911d0c7fb1e48feba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8a:3d:36:e5:19:1c:11:1a:90:92:fc:48:70:
fa:76:af:c9:d2:9e:50:f2:5b:31:41:2c:a8:45:c3:
1b:35:1a:4a:58:a8:e8:91:ac:dc:cb:74:d4:25:41:
d8:fb:35:ca:45:af:b2:8c:82:50:1f:bc:3d:c7:ed:
24:8f:1b:22:00:a3:92:7b:fb:10:e6:f7:00:e7:bc:
88:d6:c0:7b:b5:b3:4d:76:72:d9:f7:2a:69:e8:15:
c2:cd:51:12:a9:97:8c:34:a9:62:dc:e4:82:46:2a:
7a:af:51:3b:dc:ed:dd:7c:ec:1f:ec:11:0d:fd:a5:
a2:4f:c6:4c:df:6b:78:3c:cf:18:8d:93:c1:21:4e:
45:e5:17:da:d2:34:bb:a9:78:f8:25:d1:44:d7:c9:
d0:7c:9b:e2:f4:03:ab:e0:9c:04:21:69:b8:95:ba:
2e:8a:af:46:bb:15:cf:b8:0b:8d:8c:13:28:17:c8:
82:a6:9c:f8:e9:62:94:b2:a5:d8:61:ac:05:48:c6:
65:89:2e:13:ea:2f:1d:67:ca:f6:81:28:0b:fc:13:
90:1c:4d:f9:06:92:f0:cb:65:ea:0b:19:c1:d6:01:
a6:19:5f:c1:eb:99:96:d9:d5:09:cc:a3:cb:d4:d4:
13:23:35:b4:33:c9:44:a4:ad:ee:e0:76:f4:2b:23:
8a:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:45:6D:71:D9:47:10:AB:22:B5:C8:F9:11:D0:C7:FB:1E:48:FE:BA
X509v3 Authority Key Identifier:
keyid:B1:AF:12:F5:CA:75:C9:22:A4:AA:5D:AC:B4:9C:04:A9:32:37:F4:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sa8S9cp1ySKkql2stJwEqTI39O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/x0VtcdlHEKsitcj5EdDH-x5I_ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cbcf68-7cbf-47f0-82ee-5760efbcc654/1/sa8S9cp1ySKkql2stJwEqTI39O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.203.0/24
185.156.72.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:f1:8d:61:33:d3:e6:13:b5:cb:44:a2:c5:09:32:cd:18:7e:
75:44:1d:b6:bb:4e:f0:25:3f:3c:f2:70:8b:f2:0d:2a:70:56:
a0:b1:d4:00:41:4a:00:c5:3a:96:52:61:04:ab:82:e5:d4:38:
5a:9f:50:90:1a:2a:98:c9:e4:93:4f:0d:86:f2:73:95:b8:b8:
6f:4f:52:bf:cc:77:ba:67:09:8b:ae:8e:34:77:b3:de:ce:b0:
5b:8e:cc:cd:99:38:8d:f7:b4:1a:15:ab:86:f7:e9:d2:27:7f:
6d:d0:1a:76:bc:57:02:14:99:e9:c8:9d:56:b4:c8:d4:3c:55:
30:91:59:2f:95:ee:c1:2c:de:43:74:2e:05:9c:a1:d5:34:77:
d2:a4:3e:64:29:a2:c6:70:d8:b4:f1:56:ce:da:4f:75:c8:72:
a0:e7:fa:a2:66:d2:66:70:a2:96:3b:40:f2:c2:53:6b:ea:52:
9a:60:ac:77:71:60:b2:97:c8:35:c2:df:9b:bc:37:d9:93:1a:
1f:6d:17:4b:cf:78:fe:c0:7a:74:e4:a4:7f:82:0a:29:2c:f3:
8a:ca:0e:52:a2:36:6a:bb:d2:06:99:07:9f:ad:9f:10:38:62:
49:de:a0:02:a4:9f:dd:34:56:40:1c:37:3b:48:75:7e:a0:87:
30:33:c6:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:41:29 2024 by rpki-client on console-ams.rpki-client.org