Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rH6wwC398bO9N6BbprQ6LQRFEIA.roa
File: rH6wwC398bO9N6BbprQ6LQRFEIA.roa (raw, json)
Hash identifier: 2pjIN2RAaUo+xYu1Z/uxq+I5/CYSO/haj/WT/AypKh8=
Subject key identifier: AC:7E:B0:C0:2D:FD:F1:B3:BD:37:A0:5B:A6:B4:3A:2D:04:45:10:80
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 179CD0B7
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rH6wwC398bO9N6BbprQ6LQRFEIA.roa
Signing time: Sat 01 Jan 2022 04:53:59 +0000
ROA not before: Sat 01 Jan 2022 04:53:59 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30707
IP address blocks: 45.141.246.0/24 maxlen: 24
5.253.136.0/24 maxlen: 24
2a06:7247::/45 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 396153015 (0x179cd0b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:53:59 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac7eb0c02dfdf1b3bd37a05ba6b43a2d04451080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:82:16:5f:bc:e0:84:3d:5d:8b:79:f0:fd:86:
21:24:5e:ef:c9:9c:fc:10:20:1b:1d:cc:dd:9d:eb:
0b:77:66:5b:97:bd:62:9f:e1:4d:81:29:de:07:6c:
60:4e:21:9d:29:00:72:10:7d:e2:32:e6:e8:14:aa:
df:3b:83:cd:ef:ef:7c:af:16:d3:ea:dd:91:be:e1:
9e:75:d3:27:68:59:6c:de:14:c6:22:54:24:d2:fb:
9d:04:dd:39:a0:37:39:0b:9f:4a:c0:5c:13:98:62:
31:0c:02:07:83:c4:06:c3:b6:c7:07:ca:a0:e7:68:
3b:03:c8:1c:e1:7b:8b:36:32:58:91:ef:c9:df:14:
20:04:df:19:e8:84:fc:ae:1e:36:d8:5b:e7:ad:a6:
10:d0:1d:22:ad:77:c8:ac:ff:d4:01:f8:c2:94:26:
97:30:74:b0:e5:81:17:3d:c1:6e:8c:cb:4c:89:2c:
45:ce:3e:21:e3:72:6c:f7:c1:99:c5:4c:c2:0c:19:
51:2e:15:e2:48:79:cc:7c:cd:b1:cd:96:95:1c:c3:
55:88:4f:2f:61:d0:2e:b3:63:48:c7:11:0f:fe:f6:
06:cf:8c:d4:28:b5:f5:e2:02:38:6f:94:02:20:9e:
03:31:c8:61:d7:c1:df:41:c1:fa:ca:a6:df:2d:07:
3d:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:7E:B0:C0:2D:FD:F1:B3:BD:37:A0:5B:A6:B4:3A:2D:04:45:10:80
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/rH6wwC398bO9N6BbprQ6LQRFEIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.136.0/24
45.141.246.0/24
IPv6:
2a06:7247::/45
Signature Algorithm: sha256WithRSAEncryption
6b:49:5e:54:e4:bb:21:f4:09:38:cc:e2:aa:4e:77:5f:f6:6c:
65:91:f7:92:d6:2a:fe:e3:5a:27:27:a0:43:45:8b:7c:59:3c:
27:6b:5c:56:e2:b3:71:44:ef:9f:cb:d9:64:2c:90:89:fd:94:
bf:89:67:ca:be:90:7b:9f:d2:16:44:1c:10:1a:74:b8:2c:68:
90:9b:39:10:b9:1b:2e:33:24:6f:34:12:f4:1d:c8:d4:71:45:
aa:e7:4a:f5:c6:b1:00:6a:10:c4:27:1a:43:14:5f:b2:df:c7:
15:1a:46:a5:0d:45:86:54:a5:14:96:be:3b:d6:ce:cf:38:81:
93:77:a3:63:75:68:ac:ed:5c:58:1c:5d:1c:6f:b8:2e:27:76:
3e:09:94:5d:70:3d:f1:90:47:07:c2:ed:d4:ca:68:6b:66:7b:
c6:3b:e8:fa:41:b7:56:a2:61:69:8d:f9:ae:84:db:ec:3f:f4:
3e:56:98:1c:f1:1d:74:bd:fe:ce:25:29:f1:18:85:86:34:d1:
8a:ec:7d:ab:43:49:60:0f:7f:62:82:a0:0b:b9:63:e1:09:63:
f6:11:62:5d:f0:53:8e:5d:98:58:38:0d:f3:02:09:aa:77:f8:
04:f1:97:7a:42:a2:52:99:1c:b3:e4:69:e0:fd:53:be:a8:20:
93:f6:29:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org