Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/OHc5IqU5D_wf6lazoTu6ajsBsvc.roa
File: OHc5IqU5D_wf6lazoTu6ajsBsvc.roa (raw, json)
Hash identifier: wS4JeckekIl8ziNiX2ZXdetUSBkzjhtKTxqBjKRZl58=
Subject key identifier: 38:77:39:22:A5:39:0F:FC:1F:EA:56:B3:A1:3B:BA:6A:3B:01:B2:F7
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 179FC871
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/OHc5IqU5D_wf6lazoTu6ajsBsvc.roa
Signing time: Sat 01 Jan 2022 04:54:01 +0000
ROA not before: Sat 01 Jan 2022 04:54:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35251
IP address blocks: 45.13.244.0/24 maxlen: 32
45.13.245.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396347505 (0x179fc871)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=38773922a5390ffc1fea56b3a13bba6a3b01b2f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:62:dc:21:6e:42:08:1c:77:58:7a:3f:e4:90:
c2:1e:f1:cc:aa:95:a5:c2:4b:11:84:cb:86:1a:f2:
aa:43:80:b1:55:49:84:47:18:6f:f7:53:28:a6:95:
0a:62:dc:65:fb:62:3c:c6:5f:39:01:d3:18:53:07:
d5:cb:de:a4:2a:37:f6:ce:07:ed:26:3a:f0:04:db:
9f:78:ce:89:f3:1c:8f:b4:bf:bf:f7:5d:f9:ac:d3:
59:1f:39:85:44:ea:b2:6b:f4:90:38:48:d8:26:84:
48:0b:40:b7:36:d7:59:ed:2a:18:06:9d:81:d4:a1:
a3:dc:8b:bb:44:d7:16:7a:ca:24:0e:16:88:10:0f:
33:55:53:eb:cf:33:ac:93:60:af:9a:9d:0c:66:b5:
8c:02:b6:8a:c7:37:c3:da:64:8b:f3:84:e2:2f:53:
46:4a:8c:2a:95:e3:b6:98:a6:8d:a7:34:8f:00:0f:
b8:46:3a:87:59:db:3f:96:ab:2b:8b:67:96:f9:75:
f6:e3:88:47:89:5a:db:14:68:8b:b5:18:95:6b:65:
18:df:f8:12:20:75:9d:2b:c4:ec:35:ec:e5:fd:b3:
40:f2:a7:7f:15:3d:6a:90:b7:d8:a4:e0:16:6a:ff:
a0:49:f6:84:59:a8:82:2d:2e:47:e5:4e:a5:34:e3:
d3:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:77:39:22:A5:39:0F:FC:1F:EA:56:B3:A1:3B:BA:6A:3B:01:B2:F7
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/OHc5IqU5D_wf6lazoTu6ajsBsvc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.244.0/23
Signature Algorithm: sha256WithRSAEncryption
84:cc:7a:1a:f8:3a:78:a6:08:38:cd:e6:a9:05:75:a5:e9:38:
4f:ed:bb:36:3b:a8:4f:8a:ed:10:76:06:8c:3a:05:8b:b5:cf:
75:25:76:79:c8:14:39:e4:59:6a:a7:44:cf:9f:e0:5c:bd:da:
d8:33:9a:99:7c:5f:1f:46:bb:81:d6:3f:7a:a7:31:ea:35:bd:
1d:bd:82:47:0f:e7:62:ef:e1:66:ad:38:82:ff:1b:9d:42:7e:
aa:4a:b8:2e:23:06:34:37:0e:69:be:da:d2:12:79:c2:f6:d4:
71:b7:b2:f2:a2:14:39:13:75:35:cf:55:e9:da:dc:73:cb:3b:
0d:ea:b8:5c:bd:45:e8:2f:cc:52:1c:77:0c:99:53:ec:e2:b7:
39:3d:2f:b9:87:ea:f0:5f:77:ca:8c:bc:9e:c0:55:50:2c:e1:
ea:f2:88:97:63:69:27:60:b8:91:4c:33:24:77:78:e5:f2:e8:
1c:5a:18:64:8f:df:e2:19:08:4d:85:ac:38:d5:27:c1:85:6a:
27:19:dc:e3:48:3f:a4:86:86:d6:1f:0c:9d:fa:59:40:de:8c:
ef:6d:da:76:77:2c:3e:01:51:c3:72:c2:55:b3:9e:70:b7:a4:
fd:c2:0c:37:5a:e7:57:dd:2d:75:c6:9c:4a:62:aa:b2:f5:b4:
8d:65:a8:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org