Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/5sBhfe0kvINEhUTcNS_g7eCYlbw.roa
File: 5sBhfe0kvINEhUTcNS_g7eCYlbw.roa (raw, json)
Hash identifier: BJW3pyGYTGTqK+7TU/q+yG3//3eKb7MTCMKEdsXgooY=
Subject key identifier: E6:C0:61:7D:ED:24:BC:83:44:85:44:DC:35:2F:E0:ED:E0:98:95:BC
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 047FF554
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/5sBhfe0kvINEhUTcNS_g7eCYlbw.roa
Signing time: Tue 03 May 2022 16:45:35 +0000
ROA not before: Tue 03 May 2022 16:45:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210443
IP address blocks: 45.153.164.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75494740 (0x47ff554)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: May 3 16:45:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6c0617ded24bc83448544dc352fe0ede09895bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:75:5d:1c:0c:30:3b:b7:b0:24:a0:df:05:95:
c3:f8:a7:cc:74:81:10:13:3a:07:77:c9:eb:3d:42:
7e:65:43:fb:bd:bc:5a:3a:a2:80:03:08:93:21:76:
42:cb:6d:bf:54:5e:93:24:b8:8b:6d:1f:28:33:f4:
93:6f:30:2f:f1:c9:60:81:f2:5f:89:4a:ec:f2:98:
a4:91:21:9d:6e:3a:47:6d:cd:b3:15:48:9c:95:e2:
c8:67:5e:d0:d3:2a:ca:c7:78:2d:f7:ed:7c:4f:28:
45:fa:57:fd:d1:ee:15:10:34:72:5e:72:31:53:07:
f6:0a:11:3b:eb:ab:56:35:9f:8a:eb:bf:1e:df:d9:
26:87:ba:9a:00:b1:cd:07:6b:43:06:b8:58:49:8d:
26:6e:66:3d:4d:1f:37:81:90:72:33:3d:29:9f:84:
94:7e:aa:98:ec:d3:57:7e:93:98:40:ea:fd:9e:3a:
f7:67:20:f9:1d:27:e7:5d:23:ff:d9:29:a9:df:4f:
ce:52:3a:21:6b:a5:3a:e9:92:e7:8d:07:ed:c8:ca:
93:39:6c:6b:9a:e3:92:de:77:3d:9c:0b:7b:03:bf:
b0:cf:8e:c0:2f:85:3f:c1:45:4f:41:62:ae:40:66:
c8:4b:b8:23:68:18:ca:44:2e:80:8d:0d:d0:82:71:
c3:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:C0:61:7D:ED:24:BC:83:44:85:44:DC:35:2F:E0:ED:E0:98:95:BC
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/5sBhfe0kvINEhUTcNS_g7eCYlbw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.164.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:cf:8e:50:7f:1b:56:4b:15:3e:c0:a2:4c:cf:1f:de:cf:b5:
5b:dc:73:bc:bb:73:74:d0:81:ea:94:13:a4:a7:8c:69:2c:9f:
e2:c3:af:6c:35:26:d3:bb:99:c9:c4:e7:ad:32:15:bb:86:35:
ff:7f:47:bd:18:41:09:cf:2d:17:4e:12:b5:07:24:a5:17:8e:
31:59:5d:c1:26:fb:e1:be:14:3e:43:fe:55:c4:87:94:84:ba:
fd:d3:fa:b2:e7:e1:90:0b:52:de:37:34:bc:3a:fa:5c:f0:b0:
02:5b:df:92:af:8b:37:9b:87:e9:f5:c5:14:5f:8b:60:60:03:
45:d0:2c:67:45:2c:4c:1b:f5:0f:25:54:57:01:b1:08:80:0a:
ab:76:b4:bb:f0:22:ea:1c:b3:0b:e8:9f:57:2e:8b:7a:14:dc:
36:a0:ef:be:09:5e:c0:bf:ac:2e:13:5d:47:11:ae:af:15:08:
4e:20:99:6d:11:8b:e5:5c:c7:60:fd:52:1f:07:09:06:c5:4d:
fe:0b:d6:96:af:95:f1:32:02:3f:3c:df:f6:5c:76:54:3d:6e:
9b:4c:6e:61:7c:7a:cb:60:1b:cc:58:d8:c0:ff:09:ff:e3:42:
60:ba:34:61:e9:e5:73:ff:39:2e:55:62:bd:98:a7:dc:5b:ef:
b8:46:c2:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org