Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/akdLi9_nz-Q5IvCpEs_sdhlVJ6I.roa
File: akdLi9_nz-Q5IvCpEs_sdhlVJ6I.roa (raw, json)
Hash identifier: 1UhZPFwOIavWXai/TwSwEbOzWGXw+N6apMgKu0SZ8jQ=
Subject key identifier: 6A:47:4B:8B:DF:E7:CF:E4:39:22:F0:A9:12:CF:EC:76:19:55:27:A2
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 03B1FD21
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/akdLi9_nz-Q5IvCpEs_sdhlVJ6I.roa
Signing time: Tue 08 Feb 2022 13:44:56 +0000
ROA not before: Tue 08 Feb 2022 13:44:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.153.164.0/22 maxlen: 24
45.140.192.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61996321 (0x3b1fd21)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Feb 8 13:44:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a474b8bdfe7cfe43922f0a912cfec76195527a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:41:e5:25:08:f2:be:32:5e:d0:12:c6:20:67:
cc:c1:97:da:1f:90:7a:e1:6d:0f:43:6d:77:3d:5d:
5f:d4:8c:74:8d:1d:59:1c:e0:fb:11:b5:2d:0b:29:
fa:ec:88:b0:2d:b3:9d:ee:2b:c8:0f:f8:80:f6:04:
73:31:67:15:8b:73:08:2d:98:4b:3d:27:9a:eb:47:
6e:e0:0c:4d:ad:71:fd:39:81:ea:7c:6d:45:1e:5d:
4d:2a:94:d6:9b:c2:1b:59:6c:0c:35:0f:21:7d:c7:
99:d5:62:af:89:64:b5:61:80:7d:f1:39:d4:3a:65:
e4:ae:e9:30:32:db:2e:f4:ab:b9:31:4e:63:f1:df:
e4:ec:55:4e:b7:d7:b3:ba:10:a9:25:7a:56:ff:67:
16:7c:10:eb:b9:d3:3c:32:0c:bf:ae:4e:c0:41:5c:
95:b3:4c:d3:5f:a5:51:44:ed:09:5d:d5:73:5b:32:
8b:07:af:95:65:05:c0:52:3a:54:50:ab:3f:88:09:
37:4f:d2:af:e3:f4:d1:91:5b:6a:35:5f:c0:81:92:
c2:83:9d:ad:2e:a2:47:e8:95:70:42:26:e9:0a:37:
83:b2:c1:f8:cb:a8:4d:8a:15:b2:30:b2:bc:39:d2:
5c:f6:62:ec:f8:03:1a:24:98:3c:05:e2:e5:7a:18:
59:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:47:4B:8B:DF:E7:CF:E4:39:22:F0:A9:12:CF:EC:76:19:55:27:A2
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/akdLi9_nz-Q5IvCpEs_sdhlVJ6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.192.0/22
45.153.164.0/22
Signature Algorithm: sha256WithRSAEncryption
89:68:81:7f:2a:ab:10:12:ee:d9:7c:83:37:19:2b:2a:54:55:
db:e4:64:62:d0:11:df:1b:d5:02:c6:14:ac:14:0f:f3:8b:d0:
0c:06:65:aa:df:82:a3:20:2c:aa:4e:a8:99:d4:8a:a4:86:38:
16:ba:fe:29:25:3a:44:f4:c9:bd:48:76:d8:30:fe:62:b9:29:
34:09:4a:36:b1:88:fd:85:5f:c9:18:d7:c5:2b:75:e0:c2:55:
aa:37:23:35:71:91:f1:fe:ee:5e:f3:74:fa:74:31:6d:92:55:
c3:d0:ef:6e:4f:3f:ef:f6:35:a9:97:2d:88:00:45:de:c2:4c:
24:69:26:95:c6:36:84:1b:f6:1b:8e:7d:a5:77:5c:96:16:98:
98:d2:de:46:cf:ab:18:13:14:33:c3:01:12:82:27:50:5a:97:
b4:eb:29:1e:ac:db:35:db:32:6b:29:71:ed:be:f2:df:25:3f:
63:56:85:e6:0b:57:fb:0c:59:ab:6e:ae:d3:9f:58:33:34:ad:
3b:84:9e:1f:0f:63:cc:d2:8d:f8:1d:39:aa:9b:69:3c:51:24:
27:ba:29:c4:ea:b9:23:7f:dd:bf:60:85:4a:34:e0:92:a0:ed:
b3:85:12:80:6c:6d:71:13:54:d1:20:76:91:a7:e5:87:17:ae:
90:6e:16:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:56 2024 by rpki-client on console-fra.rpki-client.org