Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1f6073-87b2-4bb3-acb7-5c3db98bf864/1/5HFwk_AS_UOboROOddL9j74RXPE.roa
File: 5HFwk_AS_UOboROOddL9j74RXPE.roa (raw, json)
Hash identifier: x/SLdgcFhijM5ZlYUidS3ZjyGsRP3HbFrdKkPjX6in8=
Subject key identifier: E4:71:70:93:F0:12:FD:43:9B:A1:13:8E:75:D2:FD:8F:BE:11:5C:F1
Certificate issuer: /CN=5598ae5d5f12825a84e6c401c013ca5e5dcd9ec9
Certificate serial: 033F34E2
Authority key identifier: 55:98:AE:5D:5F:12:82:5A:84:E6:C4:01:C0:13:CA:5E:5D:CD:9E:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZiuXV8SglqE5sQBwBPKXl3Nnsk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1f6073-87b2-4bb3-acb7-5c3db98bf864/1/5HFwk_AS_UOboROOddL9j74RXPE.roa
Signing time: Wed 23 Mar 2022 13:20:09 +0000
ROA not before: Wed 23 Mar 2022 13:20:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210413
IP address blocks: 45.157.52.0/24 maxlen: 24
45.157.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54473954 (0x33f34e2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5598ae5d5f12825a84e6c401c013ca5e5dcd9ec9
Validity
Not Before: Mar 23 13:20:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e4717093f012fd439ba1138e75d2fd8fbe115cf1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:c4:fc:55:ca:9c:0e:3f:fb:d1:fa:07:fa:f9:
78:77:42:d3:d7:f1:39:0f:ad:7b:a7:28:99:c1:4a:
a6:e2:25:fa:a2:3a:64:5c:d4:9e:9f:8e:3e:24:f2:
51:d7:76:ed:a2:31:f8:a4:c8:41:e5:3c:b7:ec:46:
94:18:45:d6:25:f6:7f:9e:08:87:04:c7:b1:ee:ec:
c3:27:8f:bb:13:bb:61:e8:ad:df:51:78:e0:22:06:
0a:68:be:59:db:a9:68:87:98:8e:66:0c:a0:cd:07:
f7:7e:9f:1c:5a:5c:ae:28:9f:11:24:8e:5e:55:93:
d6:8d:be:8f:60:18:b0:d8:a3:00:7c:12:47:0d:26:
6d:d6:11:fc:3e:d3:3d:9f:a7:f6:eb:0c:73:6a:34:
be:99:66:62:3e:6d:e5:b6:b3:1a:96:03:87:7b:63:
21:95:bc:ba:04:95:38:d1:19:e2:48:a6:85:f4:5d:
34:9e:09:8b:33:26:3a:fe:bd:d9:92:ac:28:d6:97:
67:f6:8c:75:4e:96:85:61:19:d7:70:8d:cc:6b:b7:
fb:83:1a:a3:32:2d:ad:f9:c1:f6:59:0e:4d:a2:ae:
c3:53:60:a8:af:2e:db:d0:c9:79:df:ad:44:9a:88:
48:00:d9:29:7b:7c:d5:61:9f:73:0b:91:88:30:5c:
4b:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:71:70:93:F0:12:FD:43:9B:A1:13:8E:75:D2:FD:8F:BE:11:5C:F1
X509v3 Authority Key Identifier:
keyid:55:98:AE:5D:5F:12:82:5A:84:E6:C4:01:C0:13:CA:5E:5D:CD:9E:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZiuXV8SglqE5sQBwBPKXl3Nnsk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1f6073-87b2-4bb3-acb7-5c3db98bf864/1/5HFwk_AS_UOboROOddL9j74RXPE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1f6073-87b2-4bb3-acb7-5c3db98bf864/1/VZiuXV8SglqE5sQBwBPKXl3Nnsk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.52.0/24
45.157.54.0/24
Signature Algorithm: sha256WithRSAEncryption
24:b9:6e:94:e8:5d:5f:9a:9d:95:a1:67:c1:7a:a5:92:df:83:
74:06:8d:d2:ac:ff:eb:10:33:33:50:e0:62:29:41:d6:64:60:
08:3c:04:d9:96:3c:8d:ca:dd:52:40:72:52:43:a7:96:2e:e4:
54:31:5a:93:c5:32:67:16:f5:f4:45:31:66:11:ef:94:af:5c:
03:6f:3a:35:13:7a:bf:4c:2b:db:c4:68:85:63:d5:9f:c6:ef:
ab:75:15:1b:40:69:b4:01:9e:c8:98:c2:d1:79:ae:52:a2:f2:
1d:bf:99:8b:f8:62:fa:ce:08:30:00:52:83:71:e0:78:0a:d0:
fc:e4:21:dc:72:9c:7d:a4:a4:23:3c:f7:05:83:cb:d2:4f:d1:
b3:a0:cc:5c:02:33:2f:e6:69:64:2f:90:e0:e3:3e:fd:d2:50:
73:f6:e8:f0:12:7f:90:9d:7e:fd:a5:09:e8:91:65:e1:e7:8c:
f8:8e:45:e7:f5:22:ba:49:be:d0:7e:5e:4a:2a:c1:ca:6e:0b:
6e:6b:9e:f8:8c:d5:b3:54:fc:59:e9:93:75:26:90:80:b3:15:
10:39:ea:9b:51:b5:5a:c0:e1:4f:6c:9d:66:50:11:cc:42:44:
40:bb:a0:fb:13:82:1c:7f:56:71:47:e9:71:b5:8e:ae:a4:36:
51:6a:4d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:16 2024 by rpki-client on console-fra.rpki-client.org