Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/D5SVAaoCu1M_SkCVh4U0N-90bTY.roa
File: D5SVAaoCu1M_SkCVh4U0N-90bTY.roa (raw, json)
Hash identifier: SH7Hs2KBxzEICATYaI/MQHpzN567v/mg+KmoAjS8PKg=
Subject key identifier: 0F:94:95:01:AA:02:BB:53:3F:4A:40:95:87:85:34:37:EF:74:6D:36
Certificate issuer: /CN=61877f4ce0d361617724d4b289a8918c5c6d722d
Certificate serial: 0183E65AC8363C6D5FC5F7490F387ACA9F9F
Authority key identifier: 61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/D5SVAaoCu1M_SkCVh4U0N-90bTY.roa
Signing time: Mon 17 Oct 2022 14:30:52 +0000
ROA not before: Mon 17 Oct 2022 14:30:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35625
IP address blocks: 45.86.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:5a:c8:36:3c:6d:5f:c5:f7:49:0f:38:7a:ca:9f:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61877f4ce0d361617724d4b289a8918c5c6d722d
Validity
Not Before: Oct 17 14:30:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0f949501aa02bb533f4a409587853437ef746d36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:58:53:0e:08:e0:d0:e7:4c:18:03:40:0d:aa:
dc:2e:f3:63:b5:3e:cf:26:07:00:37:ad:81:66:3b:
ce:69:92:8d:ec:34:7e:6b:bf:c5:6c:d3:c0:a4:97:
a1:7e:f6:0e:77:54:52:95:20:49:33:aa:56:df:45:
f7:1a:7e:9b:89:a1:1b:03:67:41:6d:b4:52:97:58:
48:63:bf:4f:7b:11:65:e2:33:f1:45:51:7f:aa:b5:
e4:6d:56:8e:3a:81:7e:8c:cf:a5:c1:2d:10:f5:fe:
1b:92:de:c3:9c:32:7a:bd:db:03:90:8e:3c:e7:72:
97:9a:ed:94:41:e4:c4:7a:0c:02:20:35:dc:62:2b:
e5:c9:7b:98:01:09:7b:21:84:8e:77:cc:69:8f:53:
59:27:bc:be:cd:41:a0:44:01:2f:4d:35:39:28:10:
05:c4:19:a3:9c:75:37:5e:a2:51:6f:82:ff:34:9c:
d7:ef:fc:6e:f4:06:71:76:fb:7b:7f:fa:2d:c5:66:
77:13:cf:67:39:1c:02:6b:c4:1a:96:f6:4d:7a:d9:
6e:f8:87:25:d3:6e:10:b7:12:da:db:ff:c3:65:d6:
bb:1e:86:08:38:9a:cd:e6:4b:0f:d7:bb:50:22:0d:
e7:c1:29:68:93:c5:9c:57:65:af:ca:45:71:f3:15:
03:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:94:95:01:AA:02:BB:53:3F:4A:40:95:87:85:34:37:EF:74:6D:36
X509v3 Authority Key Identifier:
keyid:61:87:7F:4C:E0:D3:61:61:77:24:D4:B2:89:A8:91:8C:5C:6D:72:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYd_TODTYWF3JNSyiaiRjFxtci0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/D5SVAaoCu1M_SkCVh4U0N-90bTY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/c43b2f-10ba-4170-b521-c722217e53b6/1/YYd_TODTYWF3JNSyiaiRjFxtci0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.205.0/24
Signature Algorithm: sha256WithRSAEncryption
9a:0d:34:e9:c1:36:b4:55:3c:68:17:67:a8:06:aa:af:24:0e:
4b:e2:d3:7f:24:94:ad:5d:9d:de:04:2b:61:71:9d:fe:8a:f0:
c6:89:12:1d:ed:83:0a:21:0d:61:77:f8:ab:3b:fb:f3:44:60:
a4:a7:7f:13:66:87:09:5b:1f:0c:f4:0c:6e:c9:02:15:2d:98:
a9:0d:86:d9:49:53:f7:bc:f4:46:87:cd:ee:5a:4a:38:83:37:
e1:cd:03:93:0d:3e:57:04:37:68:76:5a:34:2c:ee:a6:5b:40:
98:25:6a:e4:2a:48:41:18:2f:21:23:f5:5b:db:eb:5b:a2:1a:
5a:cb:94:75:52:2e:ff:b1:db:3c:0f:a5:ad:77:94:46:a1:a9:
06:f7:25:52:af:d8:70:64:ff:85:9e:e5:d0:df:2a:44:19:d7:
ec:6f:46:86:ce:0b:53:d3:0e:c1:75:87:60:52:29:a8:7f:42:
98:0f:9c:33:ac:3a:4c:3a:b0:71:88:6c:05:7f:14:bd:81:68:
bb:68:87:0d:f3:f0:58:3d:8a:99:d1:b3:92:01:a8:85:97:cd:
47:a8:cc:5c:79:ea:3c:86:39:ec:05:34:c9:be:23:0c:90:db:
7e:3b:d5:79:17:bf:43:90:a6:19:87:a5:db:c1:0b:e1:3c:95:
60:ee:8b:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:18 2024 by rpki-client on console-fra.rpki-client.org