Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/XJ51kYleXBarD00hHRg9B09JF54.roa
File: XJ51kYleXBarD00hHRg9B09JF54.roa (raw, json)
Hash identifier: 9l3p3j/tbTdX3aAGYCECaH5b/jClKcRCVn5vE8ayMRA=
Subject key identifier: 5C:9E:75:91:89:5E:5C:16:AB:0F:4D:21:1D:18:3D:07:4F:49:17:9E
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04D61DA8
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/XJ51kYleXBarD00hHRg9B09JF54.roa
Signing time: Thu 05 May 2022 12:20:09 +0000
ROA not before: Thu 05 May 2022 12:20:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7979
IP address blocks: 45.95.200.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 81141160 (0x4d61da8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 5 12:20:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5c9e7591895e5c16ab0f4d211d183d074f49179e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a4:c1:73:4a:c6:ee:17:74:fb:4d:24:e6:7a:
8b:e1:8d:e2:45:96:0c:65:b0:4a:8a:69:12:01:4c:
bf:0b:1b:77:50:45:7c:66:c5:4f:88:b9:c3:ed:b8:
c3:77:f6:58:f5:5c:21:f9:48:76:aa:99:f5:5a:ba:
a2:34:f0:c4:c6:f0:ba:28:ed:92:2c:db:ee:ff:e4:
51:9c:02:75:96:a1:75:a0:d1:a9:a8:ff:bb:77:b4:
44:5a:c3:90:42:41:b5:4c:9e:4c:0c:ef:6c:52:ea:
f7:3f:87:db:e4:62:df:a5:75:5d:f5:92:21:dc:39:
41:d7:7f:0e:25:a9:dc:06:e4:95:be:5e:2b:5f:ec:
31:62:9a:6a:d0:6e:51:f3:ef:d9:5d:de:23:d3:6c:
0d:91:57:b6:c3:59:01:dc:55:6a:a1:4b:22:b6:d8:
30:09:bf:9f:68:aa:91:78:40:2f:e8:7a:ac:3d:00:
63:a0:09:43:a7:8c:e6:66:82:0b:35:34:86:fd:22:
18:9c:03:35:93:28:17:0f:66:49:99:6b:5f:2b:2b:
97:d7:2b:38:8b:19:eb:86:04:80:7a:7c:9e:f4:a5:
19:ad:16:14:00:07:a5:35:e9:27:a0:8c:a8:59:9d:
5a:9c:02:f8:77:44:5d:91:1e:7d:59:c3:6b:20:4e:
c6:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:9E:75:91:89:5E:5C:16:AB:0F:4D:21:1D:18:3D:07:4F:49:17:9E
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/XJ51kYleXBarD00hHRg9B09JF54.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.200.0/23
Signature Algorithm: sha256WithRSAEncryption
26:e8:fb:8e:6c:1f:63:14:65:49:5e:db:d6:20:36:23:1d:e6:
64:1b:2a:e5:2f:fe:ea:8f:74:c0:fc:7e:ea:b9:eb:a6:dd:2c:
e6:05:1d:f3:5e:b2:b3:95:ac:15:bd:d5:65:25:d6:e0:fa:eb:
3d:c9:57:ba:71:08:d6:61:0b:e7:df:16:73:2f:20:50:39:bd:
33:85:72:a4:9e:5a:5d:31:4f:64:a8:4d:6a:87:d8:24:1f:63:
4e:45:b8:5f:ba:bf:7e:0b:d4:31:87:6e:68:2e:ec:f9:64:e4:
3c:ac:9c:ce:38:1d:f6:e8:df:73:a8:f2:3e:ee:28:3c:aa:1f:
27:f6:a3:65:33:15:59:cc:ed:1b:6f:08:f4:0d:78:4f:fc:44:
76:d5:36:a9:66:78:eb:64:0f:38:36:e7:3a:4f:fb:b2:b3:91:
2a:75:68:c6:d7:35:f4:7f:4b:7f:f6:d9:fd:6e:5f:de:ef:0e:
cf:20:bf:e4:61:63:c8:bd:d4:25:1f:3d:83:93:7b:8b:9a:74:
17:b3:7b:9f:ec:b7:5a:93:f2:a1:77:35:84:9d:22:7f:ca:ea:
33:15:f2:e8:9d:ba:34:28:77:12:2f:61:22:ef:df:29:06:18:
87:3b:16:32:df:1a:61:a6:91:32:47:f0:70:5c:d7:66:53:b3:
88:1a:24:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org