Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/1tdodBZZCEHxDx_gF4PuuxHoz3o.roa
File: 1tdodBZZCEHxDx_gF4PuuxHoz3o.roa (raw, json)
Hash identifier: MiyI1UHgw6fsz1ABdlpqh97SsILwkyN7/gLvl2ZP6yc=
Subject key identifier: D6:D7:68:74:16:59:08:41:F1:0F:1F:E0:17:83:EE:BB:11:E8:CF:7A
Certificate issuer: /CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Certificate serial: 071B7030
Authority key identifier: 51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/1tdodBZZCEHxDx_gF4PuuxHoz3o.roa
Signing time: Sat 01 Jan 2022 08:53:09 +0000
ROA not before: Sat 01 Jan 2022 08:53:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.158.60.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119238704 (0x71b7030)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=51ecf9babc9ca6bae9085ce292fb1c2cc18d344f
Validity
Not Before: Jan 1 08:53:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6d7687416590841f10f1fe01783eebb11e8cf7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:d8:24:4d:cb:ba:90:84:30:45:e1:ad:98:e7:
19:9e:33:eb:70:f8:d8:be:46:ed:3f:f0:e6:d7:88:
36:6a:8b:fe:f4:c9:08:bb:8b:73:80:4d:a7:3a:88:
94:35:dc:14:1b:0d:98:2d:f7:76:b5:64:3c:ea:ad:
9b:8b:73:2c:24:35:74:e7:d0:32:77:7b:3c:82:b1:
16:70:c3:99:89:d3:17:42:03:c7:97:79:af:c0:ee:
5a:ca:31:fc:80:a1:a8:dd:18:ae:3d:eb:0f:a3:3c:
65:f6:2e:82:55:70:f5:2e:b4:e5:4c:90:ae:21:16:
62:7a:2d:31:33:80:94:12:c3:d2:20:e2:8a:54:50:
34:41:4d:22:46:d8:25:b0:4d:31:7a:1b:f4:06:0e:
69:43:8a:91:f2:d5:5b:2c:40:22:f7:e1:04:4a:07:
1d:23:b9:4e:a4:cd:c3:0a:d2:01:f1:72:fd:aa:bd:
f4:e8:dd:0f:3e:9a:91:d1:ca:dd:3d:a9:16:58:cb:
38:5a:e1:7a:5e:a4:e4:5c:bc:5b:4b:59:70:58:fb:
14:e3:32:2c:47:4c:ee:6f:eb:7e:e5:d7:a1:2c:92:
10:f4:13:e3:4f:9c:c4:ec:84:99:af:16:ed:ff:73:
0e:fa:81:95:e8:13:f6:d6:d5:0d:3a:d3:a7:1c:1b:
43:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:D7:68:74:16:59:08:41:F1:0F:1F:E0:17:83:EE:BB:11:E8:CF:7A
X509v3 Authority Key Identifier:
keyid:51:EC:F9:BA:BC:9C:A6:BA:E9:08:5C:E2:92:FB:1C:2C:C1:8D:34:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Uez5urycprrpCFzikvscLMGNNE8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/1tdodBZZCEHxDx_gF4PuuxHoz3o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/fb04c8-7057-45b7-a34c-dcfc6a9e0dc7/1/Uez5urycprrpCFzikvscLMGNNE8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.60.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:b4:0c:77:0e:50:b3:e4:22:70:e4:f9:a1:5c:54:42:e1:c7:
12:f2:89:49:b4:dc:d7:73:d3:79:fa:87:2f:9f:6c:4e:6d:98:
bc:93:fc:c2:1e:57:b2:36:de:35:d9:40:30:ab:46:f2:86:f5:
9c:6c:b9:fd:cc:4e:40:72:ab:bf:29:e3:46:f6:db:35:f9:43:
7e:65:b7:87:58:fd:e4:c3:6e:75:00:45:e0:87:23:a0:f8:38:
78:11:82:85:d9:08:b1:d9:51:1a:82:5c:d7:09:27:30:7e:51:
52:18:e3:64:d3:49:b9:53:f4:d5:34:43:ac:6c:57:e1:9b:06:
71:2f:78:a8:5c:f8:2b:08:a3:4a:33:d7:fb:1d:90:75:ce:84:
fb:68:c0:e8:f8:6f:f5:6d:c8:e1:8b:83:6d:0b:28:dd:60:bc:
00:3d:3f:22:f0:8a:17:61:96:73:67:99:55:91:9b:4a:95:8d:
61:99:94:f4:f4:56:56:1d:b3:05:86:3a:c7:5f:cd:b8:4c:96:
92:41:a5:6f:b4:d3:17:3c:de:da:93:41:8e:3e:56:d2:31:09:
2d:30:5b:83:1e:64:4f:99:98:51:f2:97:75:12:8f:d5:bc:61:
0d:91:89:65:fc:95:b6:f8:89:76:65:31:d1:d4:e8:f8:a2:c5:
af:34:8e:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:16 2023 by rpki-client on console-fra.rpki-client.org