Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vNE8arkLbbQPuguD0-x2LJL8ivU.roa
File: vNE8arkLbbQPuguD0-x2LJL8ivU.roa (raw, json)
Hash identifier: v6n1fOBOK0ugA4/fr3vfC+6gGQ/Poo69oUgigZVDAAo=
Subject key identifier: BC:D1:3C:6A:B9:0B:6D:B4:0F:BA:0B:83:D3:EC:76:2C:92:FC:8A:F5
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0183338EF39ADA1926D20754E9784C2749CD
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vNE8arkLbbQPuguD0-x2LJL8ivU.roa
Signing time: Mon 12 Sep 2022 21:15:49 +0000
ROA not before: Mon 12 Sep 2022 21:15:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209280
IP address blocks: 45.138.111.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:33:8e:f3:9a:da:19:26:d2:07:54:e9:78:4c:27:49:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Sep 12 21:15:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcd13c6ab90b6db40fba0b83d3ec762c92fc8af5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:27:3e:68:7c:14:c3:76:93:84:44:c3:21:39:
74:f7:23:e8:1c:fe:0f:23:db:ea:7a:b0:1d:a3:02:
a2:f3:b7:f0:77:2b:0f:4b:03:01:b9:1c:ba:40:6b:
1a:da:f0:e2:a8:62:6b:a1:53:de:09:da:06:b4:ec:
2a:43:68:8c:30:c9:c3:a2:d0:04:5f:64:28:72:7d:
0d:dc:d3:71:4b:4c:e1:60:46:38:b0:df:e2:0b:28:
6b:73:d1:d9:4c:03:68:f0:25:b9:b0:64:81:63:47:
08:b6:f3:ce:0e:29:da:db:f6:4b:c7:e0:66:7e:29:
55:18:5a:1c:3c:77:15:4f:f0:58:45:fe:a2:24:ff:
ea:a6:86:e3:1b:a9:5a:cc:1f:30:f5:0f:24:20:a2:
73:71:f4:f3:fe:6e:01:a5:bf:10:6c:e3:bd:3f:fa:
c4:c7:c8:fa:16:47:03:f8:2c:ed:88:4f:36:d9:78:
9b:f9:27:f4:37:38:f2:f9:59:3b:b9:ec:e4:7c:11:
0b:31:cb:63:c2:ef:21:db:d9:28:26:9b:2e:76:21:
e6:b9:07:b7:77:c1:ac:1b:8b:7a:5d:49:84:b1:bf:
50:f4:f0:c0:24:36:0b:3f:49:db:3e:79:51:53:cb:
51:9b:5c:09:ab:8d:4b:2e:ab:32:1f:c3:06:2d:f9:
7a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D1:3C:6A:B9:0B:6D:B4:0F:BA:0B:83:D3:EC:76:2C:92:FC:8A:F5
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/vNE8arkLbbQPuguD0-x2LJL8ivU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.111.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:1c:4e:e4:e7:06:2c:cd:dc:61:9f:7a:75:b8:b8:04:69:f2:
d2:10:15:98:38:1a:72:87:01:fb:62:c7:4b:a8:59:7b:80:7f:
f6:ef:04:36:0e:d1:d6:ad:b8:02:86:90:4b:ed:fb:f3:24:8d:
95:40:2e:8d:28:ea:41:d1:2e:69:3a:0d:57:3f:77:27:16:03:
8a:ba:71:d4:0a:b4:67:a4:50:c5:a1:76:dd:87:92:20:a2:f5:
d9:5f:6f:5f:38:f9:19:49:4e:1d:b9:85:ca:6c:d3:9f:3d:99:
d4:7f:63:1a:18:37:39:7b:d0:84:00:fa:62:a9:60:92:55:1d:
a6:3a:5f:b1:6b:b7:3f:2c:b6:27:3e:e2:d7:59:77:13:1b:75:
63:5d:25:bd:d1:29:25:19:e4:8c:98:a7:cc:90:d1:d4:3e:4a:
c4:c5:97:fd:f1:6c:b3:08:66:96:d3:01:30:4a:b9:8a:88:ac:
ed:1a:ac:cf:1e:df:1c:fe:d7:1e:45:88:cf:f7:58:a5:a0:3f:
63:15:62:bc:69:57:95:79:3f:1e:89:34:3e:bc:22:8f:8d:aa:
c8:b5:05:f6:02:90:06:14:1c:53:1b:3a:45:ae:a0:26:f0:d2:
24:9a:31:37:65:57:c7:c2:5c:ff:47:e5:3d:9a:89:b1:5a:3b:
be:c9:5c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org