Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/hdKBmuIuVG8L7ikW7gM7seJgPw0.roa
File: hdKBmuIuVG8L7ikW7gM7seJgPw0.roa (raw, json)
Hash identifier: 70B3RhrzrHSLs86YN/5r3J6WgjXq7ZnIbj4JOjv8P6w=
Subject key identifier: 85:D2:81:9A:E2:2E:54:6F:0B:EE:29:16:EE:03:3B:B1:E2:60:3F:0D
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 063C78A9
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/hdKBmuIuVG8L7ikW7gM7seJgPw0.roa
Signing time: Thu 14 Apr 2022 06:40:38 +0000
ROA not before: Thu 14 Apr 2022 06:40:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.157.92.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104626345 (0x63c78a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Apr 14 06:40:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=85d2819ae22e546f0bee2916ee033bb1e2603f0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:20:a5:7e:91:97:54:e6:09:52:a1:12:ed:db:
0a:11:03:c3:be:77:c6:2d:a6:0c:91:ab:8e:91:b6:
38:51:94:49:b0:e7:67:a2:30:7c:dd:04:ca:ed:a9:
c9:ed:79:49:3f:ed:24:5d:35:07:ed:0e:7f:18:d9:
b1:60:ae:eb:76:c1:34:37:13:2a:c9:32:48:a7:87:
c9:90:67:b6:dc:36:38:b5:06:a0:7d:05:a0:bb:6a:
7a:45:02:69:b7:48:cc:a4:b5:2d:cd:9f:f0:4e:d5:
ba:3d:4e:73:5d:a3:e3:8e:43:01:d6:bb:6d:8f:b5:
0f:de:d0:4e:1e:1e:90:8a:3d:2c:63:13:17:b4:52:
2f:14:2c:19:ec:68:6f:13:98:dc:bf:e7:59:38:83:
b7:1b:96:4c:67:4f:99:8c:f5:21:d7:4a:69:66:bb:
c7:73:7d:84:b4:24:a8:bb:e8:8e:03:df:19:d7:50:
90:c4:af:e4:76:10:30:13:b6:07:b9:ae:fc:4d:b8:
5c:9b:13:f7:81:d7:00:cf:7f:f0:98:2e:e8:c9:57:
38:4d:5d:d5:70:57:b4:3e:da:b8:ca:21:92:d7:87:
1a:ee:47:25:9f:21:af:d2:94:18:2c:3f:51:f9:33:
0b:93:df:c0:4d:8d:47:68:0a:73:0a:d8:ed:76:ff:
c3:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:D2:81:9A:E2:2E:54:6F:0B:EE:29:16:EE:03:3B:B1:E2:60:3F:0D
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/hdKBmuIuVG8L7ikW7gM7seJgPw0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.92.0/22
Signature Algorithm: sha256WithRSAEncryption
7c:e5:a5:a0:de:58:be:1f:8d:7f:e6:05:f8:d4:66:2b:56:76:
2f:fa:bb:2f:26:52:45:96:ae:45:d5:99:a1:94:17:a6:6f:f8:
1c:18:47:74:dd:1c:fe:34:6d:51:3f:4d:1e:2c:ab:96:57:96:
49:d7:cc:65:b3:9f:8d:01:6c:fb:62:7d:73:40:f9:a2:6f:99:
83:6f:58:6d:8e:3d:c1:9e:69:3a:a4:6d:33:8b:32:e6:a8:91:
b4:3e:d1:d6:7f:84:02:6b:be:9d:89:9b:df:93:6f:de:41:fe:
e2:01:17:c3:9d:4b:d4:c4:9c:ca:b7:19:c1:0c:5e:c9:07:8d:
88:7d:15:d9:48:82:ca:f6:ad:7e:77:a5:18:aa:41:0f:04:19:
20:55:a4:5d:35:67:25:14:52:a6:17:f5:05:62:94:47:00:10:
a7:03:8d:d5:11:61:c4:7a:dd:54:0b:9d:cb:f6:56:7b:32:17:
b3:b0:85:12:b5:69:51:97:e3:4c:50:09:5c:7e:e3:57:73:01:
f9:9a:b2:45:8c:15:67:5b:f5:be:ca:68:dc:51:c1:a6:3d:86:
1f:c9:cb:19:d5:fd:89:44:6d:d0:32:3f:e7:94:ec:3a:cb:13:
e6:90:f3:87:ca:27:3e:63:74:51:c2:6f:01:81:62:df:bd:91:
bc:a0:05:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:06 2023 by rpki-client on console-fra.rpki-client.org