Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/1mVPn-YYtKKbpySxB561htM7A44.roa
File: 1mVPn-YYtKKbpySxB561htM7A44.roa (raw, json)
Hash identifier: 6jxbcwCDtM9/Iw+TOyFpa2ZVG2n6dzbIVioU+lGVwXE=
Subject key identifier: D6:65:4F:9F:E6:18:B4:A2:9B:A7:24:B1:07:9E:B5:86:D3:3B:03:8E
Certificate issuer: /CN=5791bb1150beac5ea0c724f39d2ce7fccfc1546a
Certificate serial: 05629106
Authority key identifier: 57:91:BB:11:50:BE:AC:5E:A0:C7:24:F3:9D:2C:E7:FC:CF:C1:54:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/V5G7EVC-rF6gxyTznSzn_M_BVGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/1mVPn-YYtKKbpySxB561htM7A44.roa
Signing time: Sat 01 Jan 2022 15:57:55 +0000
ROA not before: Sat 01 Jan 2022 15:57:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44735
IP address blocks: 185.45.76.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 90345734 (0x5629106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5791bb1150beac5ea0c724f39d2ce7fccfc1546a
Validity
Not Before: Jan 1 15:57:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6654f9fe618b4a29ba724b1079eb586d33b038e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:12:8e:4e:a0:f4:ed:b0:7e:b1:3a:22:d3:d1:
aa:d9:76:88:ed:c4:2b:e0:64:f6:46:18:75:c8:dd:
1e:6e:27:41:21:3d:c3:29:30:d7:7a:6f:9c:13:ce:
6e:2a:f7:e4:12:0d:e2:62:67:7b:3b:c5:a9:53:bb:
49:69:21:8b:ac:e8:c9:cf:a9:56:10:98:2e:62:75:
61:f4:39:af:7c:b7:84:25:45:e1:7a:5c:06:93:d5:
77:f5:ff:b9:7a:d7:df:9b:7e:ec:b0:89:da:1e:13:
6e:89:46:0c:7b:38:21:f3:a7:f3:f2:eb:67:51:c7:
28:1c:56:fa:30:d1:df:60:b2:80:7f:f7:54:08:de:
c0:7a:fa:96:96:b5:1e:4f:6c:ef:8d:09:1d:e8:4b:
25:ef:cd:b0:b9:18:ce:fb:41:15:58:d6:f3:0c:8c:
31:c9:a7:6b:cd:5d:f6:c3:f3:c8:e1:66:dc:f6:1a:
15:34:34:04:3c:ef:29:e4:da:73:a9:24:37:46:9f:
5d:d6:21:b1:09:5a:4a:8f:81:c4:a2:da:99:79:85:
9a:2f:a5:26:13:a0:c7:d4:68:ce:c2:29:7b:1f:e1:
0b:36:49:24:94:fb:ed:a6:b5:bd:a9:a4:a9:68:98:
74:1c:7e:35:d3:4b:8b:de:3f:7a:e4:c6:14:85:42:
1f:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:65:4F:9F:E6:18:B4:A2:9B:A7:24:B1:07:9E:B5:86:D3:3B:03:8E
X509v3 Authority Key Identifier:
keyid:57:91:BB:11:50:BE:AC:5E:A0:C7:24:F3:9D:2C:E7:FC:CF:C1:54:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/V5G7EVC-rF6gxyTznSzn_M_BVGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/1mVPn-YYtKKbpySxB561htM7A44.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/5c8941-5a28-44e1-9395-bd31c5aceb59/1/V5G7EVC-rF6gxyTznSzn_M_BVGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.76.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:d0:e8:23:e8:3c:d6:a9:1e:03:3c:e4:93:40:31:58:fe:a5:
0d:c6:b2:b7:a5:55:5b:ff:dd:d8:7a:f1:af:f8:87:a4:88:1c:
d6:cb:e9:fd:c5:5f:d8:62:5c:86:c7:da:ed:ef:fa:ef:cb:30:
4c:81:7f:37:34:fa:03:23:01:8b:0a:83:a8:fa:ca:99:47:c8:
67:64:2f:41:0c:a0:46:8f:ce:e2:9e:e8:b3:a9:8d:5a:da:7f:
39:11:f7:27:58:06:d7:67:44:ed:34:67:8e:eb:f6:c4:26:e1:
17:25:dc:50:7a:96:76:7d:09:36:88:ff:9d:1b:bd:cc:4d:01:
ce:cd:29:f0:0a:b2:1b:b3:34:ca:49:2b:3f:84:f8:07:e6:64:
9e:d4:90:2a:a8:e3:2d:7c:d3:ac:45:62:35:d6:8b:79:53:17:
b5:40:71:38:bc:0d:b7:17:35:08:9e:87:23:eb:8c:46:7d:2d:
60:de:91:56:7d:a2:6e:b8:a8:2e:8b:81:95:31:80:43:b7:56:
8d:f4:c2:90:c3:32:3e:e9:8e:2e:94:e5:da:c7:29:84:8a:7d:
cb:83:0b:8c:69:b0:6a:b8:c0:28:2f:c2:2c:d6:94:a5:c3:65:
40:54:2b:86:af:52:78:79:33:b6:d9:e4:d4:62:11:9c:20:96:
65:e2:62:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:26 2023 by rpki-client on console-fra.rpki-client.org