Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c676c9-dea9-45fa-9081-697b8b393da5/1/12-HIc95Guz01GawYNsburIVD4I.roa
File: 12-HIc95Guz01GawYNsburIVD4I.roa (raw, json)
Hash identifier: OQJtaGHb67fnk/fcv+gGPCCSu8aZr4J01uGlc7hI0SY=
Subject key identifier: D7:6F:87:21:CF:79:1A:EC:F4:D4:66:B0:60:DB:1B:BA:B2:15:0F:82
Certificate issuer: /CN=eb866904912083d8d0590f0ed29fc744427499b0
Certificate serial: 1691
Authority key identifier: EB:86:69:04:91:20:83:D8:D0:59:0F:0E:D2:9F:C7:44:42:74:99:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/64ZpBJEgg9jQWQ8O0p_HREJ0mbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c676c9-dea9-45fa-9081-697b8b393da5/1/12-HIc95Guz01GawYNsburIVD4I.roa
Signing time: Mon 03 Jan 2022 01:05:30 +0000
ROA not before: Mon 03 Jan 2022 01:05:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198192
IP address blocks: 45.131.54.0/23 maxlen: 23
45.131.52.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5777 (0x1691)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eb866904912083d8d0590f0ed29fc744427499b0
Validity
Not Before: Jan 3 01:05:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d76f8721cf791aecf4d466b060db1bbab2150f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:83:16:af:71:59:94:cc:08:ee:4a:48:14:d4:
44:9b:4b:81:67:4d:2b:52:f2:14:20:a2:e9:f7:bb:
79:7f:cb:2a:5a:37:6f:39:ae:ab:13:35:4e:35:a6:
26:90:b8:3a:b6:97:71:eb:d4:04:d1:80:62:5d:bd:
77:8e:30:d9:e2:ec:08:4b:47:bd:c1:43:7b:a8:0e:
c5:65:af:08:67:6b:1e:c4:c8:78:e1:00:e8:3a:be:
39:23:b6:a1:16:10:5d:4e:21:ac:18:62:75:2b:16:
4f:ca:d9:8b:f3:36:a2:9e:3f:54:61:39:79:3b:7b:
9e:5b:d7:a1:5c:52:da:f8:a0:82:47:f1:8a:b9:48:
af:66:c4:eb:81:62:45:65:a6:75:f5:15:96:07:16:
79:39:e6:35:88:cf:b1:43:d2:54:ed:2f:c7:9f:50:
0b:88:a8:7b:ee:16:c7:f1:4f:24:5d:0a:76:0b:87:
71:5b:90:94:fd:c4:4b:1c:74:af:84:16:9f:29:78:
17:44:d1:b9:88:f0:91:2e:28:55:a2:b5:6a:a8:91:
13:32:aa:bc:82:26:91:ba:e1:f0:97:22:e2:a1:67:
33:2b:c3:ac:2e:77:bd:d3:6b:f2:26:90:0d:6c:cd:
9a:86:2f:ac:42:23:c0:0e:48:55:df:80:f6:59:7e:
85:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6F:87:21:CF:79:1A:EC:F4:D4:66:B0:60:DB:1B:BA:B2:15:0F:82
X509v3 Authority Key Identifier:
keyid:EB:86:69:04:91:20:83:D8:D0:59:0F:0E:D2:9F:C7:44:42:74:99:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/64ZpBJEgg9jQWQ8O0p_HREJ0mbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c676c9-dea9-45fa-9081-697b8b393da5/1/12-HIc95Guz01GawYNsburIVD4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c676c9-dea9-45fa-9081-697b8b393da5/1/64ZpBJEgg9jQWQ8O0p_HREJ0mbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.52.0/22
Signature Algorithm: sha256WithRSAEncryption
74:57:71:8d:84:fb:60:97:2e:8b:48:2c:97:48:af:58:db:16:
6d:72:f2:52:19:e1:76:67:ef:1f:1e:1d:18:cb:8e:02:3f:eb:
09:c0:e9:ca:a6:19:a4:28:22:1f:3c:cd:ab:1d:77:73:3d:5c:
66:5f:b8:9f:6e:2a:77:3d:8b:03:4d:aa:c0:b3:de:aa:71:a1:
6d:e6:90:14:26:d0:71:d4:57:17:c4:ed:89:90:a9:df:0f:0d:
ab:84:e9:8b:b7:34:07:f0:df:ed:5b:f7:d9:15:75:ef:54:32:
7e:17:11:9d:61:d5:ee:78:07:db:9a:4e:f2:9a:c6:ea:a0:5f:
50:77:da:9a:91:03:70:b0:cf:c8:b1:11:ef:f1:7a:d8:a3:34:
ea:18:2d:7c:99:83:96:61:d0:d3:4e:66:73:2b:54:3e:b2:c6:
b7:86:6d:75:fa:f3:48:22:37:fd:3f:5f:3a:6b:ca:25:ca:34:
e4:ea:bd:62:ab:cc:15:4e:b4:9e:94:36:69:a7:ee:fa:77:16:
bb:83:18:dc:8b:13:c9:51:ae:c3:38:be:d7:45:19:e2:41:bb:
33:e6:49:c3:95:14:83:a1:52:23:82:82:48:45:78:6b:72:e5:
b1:46:43:6b:bc:ef:9d:ba:69:48:f9:18:a1:ff:4d:d7:4f:53:
d4:1b:c6:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:22 2023 by rpki-client on console-fra.rpki-client.org