Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/6xgxF8_o0twvxVp3_3dWCQpB8VU.roa
File: 6xgxF8_o0twvxVp3_3dWCQpB8VU.roa (raw, json)
Hash identifier: IXjdDkapfnZ4LA/ASocXblcBafpiHsSgeJY/Q+mOwGQ=
Subject key identifier: EB:18:31:17:CF:E8:D2:DC:2F:C5:5A:77:FF:77:56:09:0A:41:F1:55
Certificate issuer: /CN=3e4c8130cca30a3ff92c9b99db5438dc7f3e2830
Certificate serial: 03C15EF1
Authority key identifier: 3E:4C:81:30:CC:A3:0A:3F:F9:2C:9B:99:DB:54:38:DC:7F:3E:28:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PkyBMMyjCj_5LJuZ21Q43H8-KDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/6xgxF8_o0twvxVp3_3dWCQpB8VU.roa
Signing time: Sat 01 Jan 2022 14:01:39 +0000
ROA not before: Sat 01 Jan 2022 14:01:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212457
IP address blocks: 45.151.40.0/22 maxlen: 22
2a10:3d00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63004401 (0x3c15ef1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e4c8130cca30a3ff92c9b99db5438dc7f3e2830
Validity
Not Before: Jan 1 14:01:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eb183117cfe8d2dc2fc55a77ff7756090a41f155
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:3e:1d:09:22:e3:c7:ed:3e:87:2b:fc:3d:87:
86:1b:bb:95:9e:9d:a5:07:12:ac:2b:3d:7c:31:fa:
6f:1a:9d:61:b7:0a:a6:58:96:02:a2:8e:5f:af:9d:
8c:25:5e:77:ac:19:d6:3e:d1:a1:75:c3:a6:70:46:
1c:30:d2:5f:0c:d8:1c:ef:0e:2a:4e:b8:84:0b:c6:
b8:83:32:81:a1:37:04:98:1c:26:79:f7:1b:58:16:
e9:c1:41:e0:92:93:c2:2b:91:9d:a4:0c:eb:16:8e:
0b:8b:99:67:5c:96:59:d8:2a:b0:33:17:a3:b0:db:
48:c0:46:ae:51:c7:6a:f9:22:23:28:80:2b:0f:33:
b5:fa:8b:ae:f7:9d:3b:87:16:76:9d:55:e7:fe:48:
9a:a7:91:1c:cf:3c:ff:9e:21:22:43:0b:bb:c9:83:
b6:89:e2:c8:0e:96:0c:b6:13:2e:47:e4:8c:c6:90:
77:64:a5:df:46:70:ec:d7:63:82:93:9c:e5:f6:be:
ef:71:32:fa:b1:d3:6b:cb:64:1d:38:bc:81:ea:f6:
63:43:70:13:cb:23:63:21:0b:2a:50:7d:7e:c7:9b:
95:f0:81:ae:55:bd:73:f7:17:5f:c1:d7:0b:a0:fa:
da:04:f4:3d:d0:4f:b9:d5:c3:38:86:d7:44:1f:ca:
dc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:18:31:17:CF:E8:D2:DC:2F:C5:5A:77:FF:77:56:09:0A:41:F1:55
X509v3 Authority Key Identifier:
keyid:3E:4C:81:30:CC:A3:0A:3F:F9:2C:9B:99:DB:54:38:DC:7F:3E:28:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PkyBMMyjCj_5LJuZ21Q43H8-KDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/6xgxF8_o0twvxVp3_3dWCQpB8VU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/6b050f-c282-4c53-b151-83adb20af00f/1/PkyBMMyjCj_5LJuZ21Q43H8-KDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.40.0/22
IPv6:
2a10:3d00::/29
Signature Algorithm: sha256WithRSAEncryption
76:9f:d0:29:12:c8:85:99:75:92:33:c4:d0:e6:0e:46:5c:34:
bd:f6:07:b2:60:01:bb:df:91:77:54:c7:ff:9b:ed:e5:2a:72:
a6:0b:10:c5:f5:1c:68:c6:f5:a8:af:82:60:f2:9d:38:e5:0c:
2d:54:b0:09:14:16:2a:0f:83:8f:7f:8b:bc:c7:7f:36:79:d0:
94:d2:08:c2:97:26:26:b6:2a:67:f8:08:81:73:e2:4f:ba:2f:
3f:d7:d5:c3:bc:34:28:26:8b:0e:33:1e:e6:a1:94:b1:cc:48:
70:d2:2e:7f:1a:cf:d3:8e:cf:9b:a2:55:72:9d:cc:e3:c2:4d:
02:65:c0:f6:86:f5:c8:df:2b:c0:ad:5e:3c:fb:7c:46:be:4e:
84:52:a5:fb:dc:a2:4f:04:24:b3:87:be:1f:d1:3f:ea:4c:c3:
65:5d:1f:9e:d3:cc:fd:c8:0e:ef:d2:5f:4f:0d:c1:78:1d:9d:
c5:68:26:3b:a5:2c:c0:6b:eb:15:16:18:1f:e0:6b:7c:1b:aa:
34:5e:fe:b6:99:43:dc:d8:67:da:a2:1a:f5:22:9f:0c:b9:d7:
67:ab:80:0e:10:74:cf:40:c0:ca:15:e6:ae:4c:5f:9b:9f:57:
f0:cc:f7:5c:ec:eb:15:be:05:d4:79:d2:42:d1:34:cd:f7:67:
e6:70:5e:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:32 2023 by rpki-client on console.sobornost.net