Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/C5a4OBNmMDvtVcd4tErSEvl6oQY.roa
File: C5a4OBNmMDvtVcd4tErSEvl6oQY.roa (raw, json)
Hash identifier: DhG6fb3XMAq37EfLfCZeOrjkT6pCM7Ddv09+oObMaFI=
Subject key identifier: 0B:96:B8:38:13:66:30:3B:ED:55:C7:78:B4:4A:D2:12:F9:7A:A1:06
Certificate issuer: /CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Certificate serial: 014D8CDA
Authority key identifier: CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/C5a4OBNmMDvtVcd4tErSEvl6oQY.roa
Signing time: Tue 28 Jun 2022 11:26:02 +0000
ROA not before: Tue 28 Jun 2022 11:26:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200702
IP address blocks: 45.159.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21859546 (0x14d8cda)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cf1df6667da38e57a25b1945fa40e593e5adfa00
Validity
Not Before: Jun 28 11:26:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b96b8381366303bed55c778b44ad212f97aa106
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:8b:eb:58:06:b6:a3:61:e2:7a:4a:0f:e6:3a:
7e:e7:3b:7d:1b:3f:c1:bf:89:81:fe:b3:5d:18:bf:
e1:6c:85:4e:f2:28:8f:23:d7:35:e2:0c:5e:3d:1b:
94:cb:f9:da:70:37:69:ef:a8:4f:97:5c:79:93:9c:
d7:f3:10:89:a9:9c:50:66:97:59:65:11:47:af:8d:
c7:2b:61:68:7f:45:23:ca:11:4f:37:bb:00:3a:0d:
b9:12:e2:23:7a:12:8e:f9:d7:ef:0e:c8:3b:be:ea:
6d:0d:5f:2e:23:3f:ab:2a:44:96:aa:8e:66:a4:a7:
e6:d6:05:5c:94:13:ad:03:e2:0b:fe:7d:4b:f0:04:
36:24:b1:d2:5d:c4:49:72:8c:8d:b7:75:6e:2f:98:
e8:01:84:1d:28:3e:3e:07:a9:f8:de:5d:ed:85:94:
19:9b:f6:60:e3:32:23:2b:4e:81:d2:2b:43:3a:e9:
b5:ff:b1:d8:ac:03:b1:64:7a:42:b5:78:7c:8b:b7:
d3:de:49:67:4d:06:ce:21:b5:ca:da:40:36:ac:7e:
86:32:8a:52:7d:a6:16:00:78:59:4e:74:77:b4:66:
6e:f0:f9:69:e4:97:a8:02:40:2f:89:40:82:d6:a0:
70:ca:18:a6:64:43:aa:62:5c:d5:27:db:83:e6:4e:
b6:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:96:B8:38:13:66:30:3B:ED:55:C7:78:B4:4A:D2:12:F9:7A:A1:06
X509v3 Authority Key Identifier:
keyid:CF:1D:F6:66:7D:A3:8E:57:A2:5B:19:45:FA:40:E5:93:E5:AD:FA:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zx32Zn2jjleiWxlF-kDlk-Wt-gA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/C5a4OBNmMDvtVcd4tErSEvl6oQY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/e5789a-160d-4896-a25a-8df36337e6bc/1/zx32Zn2jjleiWxlF-kDlk-Wt-gA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.16.0/22
Signature Algorithm: sha256WithRSAEncryption
34:6e:c2:32:78:f8:6b:97:13:19:82:38:d8:0b:03:ec:77:eb:
f5:8b:aa:f4:61:ce:b1:42:16:b4:9a:ce:1c:39:a0:c5:2b:cb:
a0:9a:7a:15:d2:c3:5c:d7:71:31:41:42:28:35:0a:e2:2e:db:
b8:91:50:17:9a:5c:63:15:d7:4b:01:51:01:a0:4c:a7:04:be:
36:84:67:09:c8:32:09:40:dd:da:dc:bf:ba:14:54:58:1a:22:
42:3a:a0:07:48:39:da:e2:24:c7:67:dc:0e:49:fa:cd:9f:6d:
42:f8:a3:32:e1:ef:9d:8f:4b:9c:1f:c0:18:f0:e5:6f:00:9c:
15:69:65:33:ea:af:07:30:58:56:ad:5f:3b:4c:4e:78:86:e8:
ff:ba:f1:b9:e4:0e:81:da:a8:fc:47:13:02:f8:93:83:a8:23:
a5:3a:6e:3c:91:29:84:aa:e9:34:e3:d9:1a:9d:15:f3:c8:88:
e3:1a:de:5d:52:a3:ff:5a:c7:b7:82:52:33:9d:fd:2a:40:34:
61:3b:95:ea:09:ca:71:3c:e8:1a:c1:92:09:36:c3:23:ac:2e:
1a:57:51:c8:eb:dd:f9:b8:f3:c1:dd:72:03:2e:50:d0:a5:29:
17:30:5e:a5:34:d8:60:24:fe:40:f3:e1:dc:01:e0:0c:0e:e0:
e7:3e:78:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:06 2023 by rpki-client on console-fra.rpki-client.org