Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/LVwS4yGSk9kquvoQataankFvlmY.roa
File: LVwS4yGSk9kquvoQataankFvlmY.roa (raw, json)
Hash identifier: E5Ry/A3HrJa9d7Ldd74MJC0iY/CHGd4phn42OWEvEFw=
Subject key identifier: 2D:5C:12:E3:21:92:93:D9:2A:BA:FA:10:6A:D6:9A:9E:41:6F:96:66
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1B1611CA
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/LVwS4yGSk9kquvoQataankFvlmY.roa
Signing time: Sat 05 Feb 2022 15:49:49 +0000
ROA not before: Sat 05 Feb 2022 15:49:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 103.35.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 454431178 (0x1b1611ca)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: Feb 5 15:49:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d5c12e3219293d92abafa106ad69a9e416f9666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:95:46:2c:ad:7f:bc:07:05:92:46:f0:73:04:
18:d1:3d:aa:1e:37:17:c7:e8:f3:07:d3:6e:7e:86:
10:c4:fd:04:fb:20:44:c8:1e:03:f6:1b:cf:8e:9a:
eb:d2:ea:6a:f0:fe:3d:d6:55:08:8f:6a:b7:1a:26:
07:3c:c8:b6:ed:ba:9c:76:6f:3e:81:f3:fc:1a:db:
ff:21:0d:04:d7:65:1f:88:5f:06:9b:40:8e:56:c6:
72:ff:11:6a:43:64:60:32:cc:f1:2e:38:20:4d:95:
29:45:07:38:42:47:ba:ca:c8:90:d1:01:b7:a8:d2:
f5:3b:8b:d2:b0:92:a7:8c:c0:d4:bf:e5:0e:9e:7b:
da:4b:0f:63:aa:57:8a:cd:dc:28:20:5e:b5:d8:35:
17:05:96:e1:43:90:1a:18:49:d9:7b:2b:96:dd:ea:
c1:8d:48:85:c1:ef:71:e7:e0:4c:9a:38:ed:61:2a:
fe:d4:c5:2f:11:84:55:47:73:42:76:99:e1:ab:60:
91:dc:35:eb:4a:f3:e9:58:e1:14:62:88:fc:4c:5d:
e3:6e:05:69:7c:b2:39:7b:89:6a:7f:9d:c0:fc:d6:
50:e1:33:75:87:93:4a:79:7f:29:e2:a2:36:2a:dc:
e8:c3:4e:0f:c4:16:a4:01:77:02:94:fa:6b:de:9b:
7b:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:5C:12:E3:21:92:93:D9:2A:BA:FA:10:6A:D6:9A:9E:41:6F:96:66
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/LVwS4yGSk9kquvoQataankFvlmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.35.56.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:6f:22:13:07:01:db:1e:76:93:5c:b2:91:7f:3e:08:b0:20:
f0:92:08:cc:2b:ad:b9:1a:63:60:a3:f0:ac:8b:36:fc:49:d3:
ac:ec:87:93:61:cb:f2:e4:b3:fc:21:79:12:57:68:63:8e:a7:
b3:74:4e:de:28:7a:fe:9e:42:49:a4:e5:2e:4b:20:02:24:59:
38:1a:52:00:87:74:74:3d:07:d9:6c:c2:52:3c:7f:8e:f2:75:
c9:74:a1:19:24:5e:bc:38:6a:28:41:65:bf:a6:c9:2f:6f:9a:
51:b8:2c:2d:3d:89:a1:27:bd:29:51:47:ef:fd:fc:2d:a7:92:
6a:56:1d:8c:0f:ab:6a:61:b6:b3:86:3a:64:45:17:4e:ee:9d:
6b:d5:ff:49:a9:a5:b9:07:26:45:64:0b:3b:b3:85:a7:b5:ed:
b3:26:55:55:4f:24:9f:e1:db:d9:34:00:62:e0:c8:a1:11:93:
ba:d0:09:9d:32:71:ab:89:64:3d:ba:5f:71:ee:84:1d:5b:50:
f3:03:7d:a9:36:7c:47:71:bb:1f:f0:4b:b3:7b:9a:2d:f2:30:
8e:35:46:33:99:eb:3b:b3:0d:a1:44:2f:07:0f:cd:01:89:88:
31:65:0f:dc:57:28:8a:58:8d:fc:cd:3d:82:b4:86:a7:1a:ca:
94:0a:27:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:13 2023 by rpki-client on console-ams.rpki-client.org