Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/fVuX0RxAS6_VgocKQxskcdESgDg.roa
File: fVuX0RxAS6_VgocKQxskcdESgDg.roa (raw, json)
Hash identifier: BOHSWmCgDDWz8P4/zgCgioYzbV+tIrfkN02yb2/wTV4=
Subject key identifier: 7D:5B:97:D1:1C:40:4B:AF:D5:82:87:0A:43:1B:24:71:D1:12:80:38
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17998BFA
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/fVuX0RxAS6_VgocKQxskcdESgDg.roa
Signing time: Sat 01 Jan 2022 04:53:56 +0000
ROA not before: Sat 01 Jan 2022 04:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22769
IP address blocks: 45.13.245.0/24 maxlen: 32
45.13.244.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 395938810 (0x17998bfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7d5b97d11c404bafd582870a431b2471d1128038
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:2a:e5:7b:b9:25:74:72:55:25:40:ef:ef:d0:
7c:87:98:c2:cc:d3:1e:18:20:07:ce:ab:c0:6d:46:
8d:81:93:3a:32:b0:74:d4:73:22:d9:bf:14:a5:b8:
a2:a4:9e:23:b1:16:d7:de:61:e7:59:21:37:90:0e:
3c:b7:00:37:bf:a7:4b:50:da:f4:71:90:90:0e:88:
59:08:33:cc:4a:77:be:99:e0:bd:5d:3b:e7:83:6b:
68:be:a7:dd:4a:9d:ff:2c:74:a8:9b:ab:06:e8:0e:
5d:fd:ad:36:30:49:13:f0:93:65:5d:c9:32:00:77:
92:b0:4d:70:a4:1b:f6:bc:bb:3f:c2:9f:be:5b:80:
e2:97:4d:a1:e6:24:cf:c7:84:0a:b3:cd:42:96:8c:
9e:03:22:04:93:aa:06:f6:30:28:b4:61:3d:1d:c3:
db:80:2d:d7:59:85:94:30:aa:bf:83:42:fe:a1:ff:
20:21:8d:41:1a:50:62:b8:36:9d:3d:ef:fc:95:83:
69:76:95:ca:c8:b5:a5:11:fc:6d:9d:a7:b9:d2:50:
7a:e1:b0:6f:03:58:90:61:d0:06:89:02:ea:fe:7f:
3b:dd:c1:c4:8c:a5:e7:f2:c2:58:64:82:76:28:1e:
01:2f:a9:fb:31:b2:34:f8:7b:da:a0:6d:5d:d6:c7:
a7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:5B:97:D1:1C:40:4B:AF:D5:82:87:0A:43:1B:24:71:D1:12:80:38
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/fVuX0RxAS6_VgocKQxskcdESgDg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.244.0/23
Signature Algorithm: sha256WithRSAEncryption
6f:dc:4b:6b:f7:91:ba:15:1a:dc:1a:45:8d:34:ca:a0:c7:fa:
12:87:06:f3:62:40:f7:6f:b2:97:98:02:3f:45:a9:54:e6:c7:
41:77:2e:c2:bb:10:0e:db:73:de:bd:d1:53:6f:30:89:0a:d2:
30:98:ac:b3:a5:c5:8f:f9:51:24:86:c8:af:9d:b2:71:55:c1:
20:1e:db:5a:25:77:99:6a:82:44:ca:86:3c:21:87:79:62:c8:
51:19:9e:b2:80:fe:87:76:1e:06:35:08:4e:f3:6f:68:82:ef:
ee:69:1e:1a:a5:7e:6f:09:63:de:3a:b4:d3:ef:05:31:a0:0e:
68:82:0a:6d:2f:00:cd:35:35:9a:5f:7b:a5:38:d1:22:a0:8c:
25:0f:71:43:7c:3f:ed:74:34:5a:5a:0c:5c:13:f4:74:54:5f:
28:af:65:5f:96:64:5d:8a:20:49:63:0a:43:dd:ae:c5:f1:fc:
0a:36:4c:a7:25:8c:c0:70:12:5a:d4:b1:d9:ab:c3:be:38:62:
ee:dd:6f:7a:9d:e9:aa:88:df:4c:ec:03:f1:1a:7c:f0:23:7f:
57:5f:3a:db:07:ff:c4:a7:17:74:a9:27:76:b7:28:86:42:e1:
e7:b0:ae:73:ff:fa:dc:2b:a3:97:fb:81:73:22:62:d8:7a:ea:
dc:12:1e:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org