Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/SIy8fFWJDo-xHol7VNQUqng1fC8.roa
File: SIy8fFWJDo-xHol7VNQUqng1fC8.roa (raw, json)
Hash identifier: zPwl5ynP4QSEfRgyJb5tQETlAyyIpKE5lAkOXSZr8os=
Subject key identifier: 48:8C:BC:7C:55:89:0E:8F:B1:1E:89:7B:54:D4:14:AA:78:35:7C:2F
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17E77FBB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/SIy8fFWJDo-xHol7VNQUqng1fC8.roa
Signing time: Sat 01 Jan 2022 04:54:43 +0000
ROA not before: Sat 01 Jan 2022 04:54:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209209
IP address blocks: 45.12.160.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401047483 (0x17e77fbb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488cbc7c55890e8fb11e897b54d414aa78357c2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2c:1e:5b:b9:76:e1:13:3a:e7:a4:21:f6:ad:
69:14:59:0b:bc:4e:27:88:66:4c:d6:29:06:32:ff:
10:bf:8b:77:7f:b2:8a:e3:13:c0:c7:29:cc:c6:09:
42:e8:32:38:00:1b:2e:be:ca:e1:5d:8b:a6:69:8f:
ac:5f:72:f5:f8:a6:52:d8:a6:36:7d:cf:41:1f:a7:
43:e0:ea:32:3c:bc:b2:f7:31:2d:16:17:37:97:e7:
5e:32:3d:02:b2:47:67:03:9d:3f:18:77:dd:00:fe:
a0:c8:f8:17:0e:11:84:95:c3:1f:36:c4:cc:c3:0d:
3c:fe:7b:7e:7b:61:df:8d:da:d5:20:aa:16:c3:e9:
ee:93:67:e1:a5:d5:b1:aa:73:66:a7:be:a3:47:32:
54:27:02:89:38:6d:b1:fd:36:9c:35:a9:f0:be:b6:
76:c0:9f:82:0d:f5:2e:64:2e:bc:7b:52:c2:cc:c5:
05:82:85:93:7a:d6:5e:1f:a9:2e:68:c0:99:d5:b8:
62:59:29:f9:3f:b0:32:5f:3a:54:75:62:b6:45:ce:
b6:92:52:a1:4d:3e:47:9c:32:e7:1b:93:2f:f9:a3:
e9:dd:d0:29:b6:61:8d:d3:d3:1e:ee:f0:61:17:e8:
db:12:33:87:28:45:1c:ca:a5:0c:f4:66:2b:3b:e2:
b2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:8C:BC:7C:55:89:0E:8F:B1:1E:89:7B:54:D4:14:AA:78:35:7C:2F
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/SIy8fFWJDo-xHol7VNQUqng1fC8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.160.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:db:3b:3a:4d:d2:68:4b:7c:14:66:bc:5c:4d:d0:c2:48:58:
b1:b8:83:90:c8:fe:0e:d6:e0:cc:f4:38:f1:33:5c:94:ae:2b:
73:fe:2d:0e:94:98:90:ed:f0:30:ac:e3:ec:39:14:92:f4:c7:
8b:57:51:86:80:79:65:cb:2e:2a:65:e1:96:32:17:21:6c:cd:
41:ce:82:9f:80:ae:76:1c:7e:4d:f4:67:60:cd:31:e5:9b:25:
00:e8:82:9c:a1:b8:cb:01:03:f9:80:61:ce:e3:b5:f1:f7:6c:
c1:4e:8b:71:63:f9:b0:f8:2e:b2:e8:34:80:43:f6:ec:87:18:
4f:b3:53:ef:f5:c8:ab:fb:0b:f4:5f:2b:98:a7:cc:73:4b:fd:
c5:ec:4e:82:70:9a:71:51:78:ae:f4:5c:db:29:b9:70:7d:48:
63:79:19:77:2b:f0:a9:8c:35:be:bf:f5:df:7d:f3:73:27:88:
ea:1e:c0:00:74:52:f7:d4:93:7b:d1:40:17:19:ab:6e:60:83:
2e:f6:14:92:e4:ad:62:57:4f:59:b1:e6:d8:eb:44:9e:23:c9:
4d:6a:ee:7f:34:9e:6e:b0:bb:82:8c:b7:68:eb:cc:48:e5:6d:
f6:00:0a:0f:2f:63:f4:77:51:18:f8:75:1a:50:57:55:a5:99:
a8:63:bb:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org