Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/XevSoqp2bAAFVWILjhYp8FTa-bo.roa
File: XevSoqp2bAAFVWILjhYp8FTa-bo.roa (raw, json)
Hash identifier: NUxOUdn8bK27jXJL373A1pCInuk70fptsNf8L+6ZTsM=
Subject key identifier: 5D:EB:D2:A2:AA:76:6C:00:05:55:62:0B:8E:16:29:F0:54:DA:F9:BA
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 03B2F89E
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/XevSoqp2bAAFVWILjhYp8FTa-bo.roa
Signing time: Sat 01 Jan 2022 08:57:01 +0000
ROA not before: Sat 01 Jan 2022 08:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 63956
IP address blocks: 45.137.244.0/24 maxlen: 24
45.137.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62060702 (0x3b2f89e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jan 1 08:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5debd2a2aa766c000555620b8e1629f054daf9ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:3f:d5:54:53:e3:34:56:85:7f:b3:cf:d1:fe:
8b:eb:4f:78:bc:ac:4f:93:47:71:ff:05:9a:ea:f0:
68:6c:81:d1:d0:7b:36:b8:a0:21:33:92:cc:8a:da:
30:10:03:8e:0d:8e:d0:dd:38:26:82:7b:a7:8a:c4:
15:1a:f8:c5:de:87:71:14:ff:58:43:5e:ba:04:e6:
73:eb:95:ad:11:b7:b4:3a:2d:57:46:01:50:4b:07:
ff:92:15:67:cd:10:87:ab:69:8a:7d:b9:a0:d5:fa:
40:9b:54:59:71:9c:d3:ff:1f:1b:9e:a9:78:15:71:
c2:c7:c1:26:18:c6:49:33:f5:23:02:ca:8a:ea:22:
4e:70:da:bc:6b:6a:85:c6:e2:85:7c:cb:77:b5:c1:
11:7a:b2:d4:8c:5e:14:c2:71:c7:e6:52:4a:73:1d:
9c:e5:df:ec:af:63:e4:27:a8:eb:72:5d:65:28:4b:
fb:e5:4e:1a:da:bf:4c:a3:4a:3c:b0:b4:43:8d:4c:
33:27:2e:82:46:73:7f:93:67:87:56:54:91:1c:cb:
7a:84:60:7d:e3:8f:d1:f3:0a:ce:00:27:1f:3f:00:
18:19:1f:ac:35:21:8e:ba:6a:e1:3d:3b:9b:09:bb:
60:84:0d:61:cf:69:be:ab:12:37:92:71:61:2a:2e:
79:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:EB:D2:A2:AA:76:6C:00:05:55:62:0B:8E:16:29:F0:54:DA:F9:BA
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/XevSoqp2bAAFVWILjhYp8FTa-bo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.244.0/23
Signature Algorithm: sha256WithRSAEncryption
59:f0:49:4c:f0:c4:60:10:e5:a4:d7:b0:50:41:7f:a4:ed:b1:
7e:d1:27:4d:85:8a:8c:50:e4:3f:82:97:f4:04:93:2c:ae:ef:
b5:62:2a:91:e2:03:a4:f6:7f:da:d6:17:08:15:17:bb:d5:3b:
58:66:d5:c6:cf:74:90:30:6f:1c:de:4c:91:0a:82:b0:45:e1:
60:f1:52:6b:f0:4d:7d:d5:e4:84:8f:8d:83:d9:4c:91:b7:15:
46:41:b8:cf:34:15:82:4c:2c:da:09:d6:1c:20:e7:87:11:05:
27:c2:02:39:78:4d:bb:ac:50:fa:85:3d:cd:3c:2f:8f:18:a7:
11:ef:b8:ea:68:ee:27:a9:72:1e:ee:11:d3:d0:12:da:85:dd:
30:02:63:88:25:51:9d:60:24:ed:d6:22:28:87:ae:40:7c:ad:
6d:2d:7b:16:62:35:ab:dc:c0:67:3f:5a:a5:fa:db:2d:48:82:
81:b8:19:32:ce:9a:f8:7a:1e:ca:0c:e2:54:08:f9:07:5c:25:
ad:40:2e:66:40:28:16:74:a8:fd:6b:2e:f5:98:c0:4f:e8:f2:
93:b8:b0:70:7d:8f:89:65:b1:f0:78:cd:e6:9d:b7:5a:c6:85:
24:f0:b2:17:9f:e4:d0:fe:32:4f:57:30:25:3e:ae:a5:bc:65:
d8:a7:5a:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:19 2023 by rpki-client on console-fra.rpki-client.org