Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/cl_C55Vy405TRh5UdL6BwKOvMzk.roa
File: cl_C55Vy405TRh5UdL6BwKOvMzk.roa (raw, json)
Hash identifier: +I1QPtjOEJmpXgdhu0WY9uBP8uCpDqDIxzrtmXyAG9k=
Subject key identifier: 72:5F:C2:E7:95:72:E3:4E:53:46:1E:54:74:BE:81:C0:A3:AF:33:39
Certificate issuer: /CN=839c87178ff28099472f2f7fe9716bfc13b68240
Certificate serial: 018404B6AE5A0674F3939DA6316F53822BB1
Authority key identifier: 83:9C:87:17:8F:F2:80:99:47:2F:2F:7F:E9:71:6B:FC:13:B6:82:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g5yHF4_ygJlHLy9_6XFr_BO2gkA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/cl_C55Vy405TRh5UdL6BwKOvMzk.roa
Signing time: Sun 23 Oct 2022 11:59:51 +0000
ROA not before: Sun 23 Oct 2022 11:59:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41789
IP address blocks: 45.157.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:04:b6:ae:5a:06:74:f3:93:9d:a6:31:6f:53:82:2b:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=839c87178ff28099472f2f7fe9716bfc13b68240
Validity
Not Before: Oct 23 11:59:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=725fc2e79572e34e53461e5474be81c0a3af3339
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:81:30:d7:91:ee:7e:44:51:1a:e2:b5:12:73:
4d:c0:e4:68:b1:d4:2a:0c:77:36:48:c7:a9:1b:1b:
14:f1:1f:09:95:ef:68:98:c4:db:2a:4a:c2:81:0a:
eb:30:fa:0c:57:75:70:72:07:7f:de:f5:8f:7f:cd:
29:76:27:20:a9:7d:e1:43:50:26:ec:47:88:4b:16:
66:d6:c8:15:c3:7f:2a:fa:fb:7d:b6:ac:6a:93:46:
21:79:0f:3e:f9:e5:cd:08:df:ac:c4:27:21:6a:e8:
ad:2c:8f:36:d5:a2:06:66:16:23:36:01:95:35:4b:
f4:45:2e:c3:d9:11:f5:47:2b:59:ad:bb:aa:90:92:
a5:a3:33:43:2b:c5:ef:1d:ae:8e:22:10:65:9a:45:
c3:7b:48:cf:ce:fc:d6:38:a8:17:22:14:95:eb:fe:
84:88:b6:3e:af:a5:b3:83:f4:e4:9a:b0:86:3e:45:
95:67:e0:87:d9:97:68:d1:fd:a7:e8:05:62:73:98:
76:0a:c7:1e:a3:26:a5:ec:32:3c:51:33:b9:78:a2:
8f:a1:c7:f3:b8:f7:63:46:69:4b:8d:95:cd:81:d2:
1c:f5:2e:5f:51:73:1f:72:6d:b2:32:09:66:92:ff:
23:37:10:da:ba:22:c0:2a:76:9d:03:fd:f3:f8:7c:
82:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:5F:C2:E7:95:72:E3:4E:53:46:1E:54:74:BE:81:C0:A3:AF:33:39
X509v3 Authority Key Identifier:
keyid:83:9C:87:17:8F:F2:80:99:47:2F:2F:7F:E9:71:6B:FC:13:B6:82:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g5yHF4_ygJlHLy9_6XFr_BO2gkA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/cl_C55Vy405TRh5UdL6BwKOvMzk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d12e2b-4a4a-4d9e-bbc6-72075b203efb/1/g5yHF4_ygJlHLy9_6XFr_BO2gkA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.160.0/22
Signature Algorithm: sha256WithRSAEncryption
85:d4:36:d8:00:b9:45:53:0a:b8:17:ce:f8:b2:69:d9:e5:40:
6b:cb:a0:f1:ea:a7:14:fa:b7:52:90:b1:19:a0:20:f6:b0:d6:
8b:da:e1:19:f5:31:26:1b:29:76:bd:02:bb:71:e4:f6:39:c0:
d6:0d:cf:f6:6e:9f:cb:fc:be:1f:03:08:82:72:46:ad:45:23:
27:d5:55:62:7b:8a:3a:eb:96:4f:72:14:14:3a:4c:2b:88:82:
a1:d7:b3:59:dd:14:ec:8c:1a:39:59:42:96:31:64:d0:b3:b8:
32:5e:a6:3d:d2:2c:dc:15:7d:e5:28:99:8e:d0:6b:4c:82:64:
4f:60:eb:36:6a:80:18:df:0b:e3:ea:74:54:10:c8:84:2d:62:
4f:7b:3b:8d:1a:64:94:72:39:cb:6f:5b:f5:20:21:7c:11:52:
7f:22:d5:9a:2d:9b:cb:78:44:a7:6a:9f:9c:72:06:15:e6:84:
43:2b:b8:f2:51:6e:04:5c:fb:33:ed:2c:bf:3b:df:8e:e1:93:
c6:e3:1f:0d:6a:c5:05:c2:90:bf:92:a0:d3:0d:ad:8d:56:15:
03:a6:65:93:01:f5:3d:78:1d:f7:8d:28:97:78:26:ec:f7:75:
df:75:3c:c8:16:84:4f:69:43:96:af:56:71:5f:9e:6e:2e:c8:
0a:29:c4:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:21 2023 by rpki-client on console-ams.rpki-client.org