Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/L5dD2HR1Hpd3TdBp1HV7Rd0MMsY.roa
File: L5dD2HR1Hpd3TdBp1HV7Rd0MMsY.roa (raw, json)
Hash identifier: RE7mPHJyhkybltUYrz67SmZgmwthNLgcf6O6dDdaJKM=
Subject key identifier: 2F:97:43:D8:74:75:1E:97:77:4D:D0:69:D4:75:7B:45:DD:0C:32:C6
Certificate issuer: /CN=3a00807698f0b097d69ab3926917d1dcc838a624
Certificate serial: 05F3C2A7
Authority key identifier: 3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/L5dD2HR1Hpd3TdBp1HV7Rd0MMsY.roa
Signing time: Tue 22 Mar 2022 23:59:37 +0000
ROA not before: Tue 22 Mar 2022 23:59:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 138968
IP address blocks: 45.81.33.0/24 maxlen: 24
45.81.32.0/23 maxlen: 24
45.150.236.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99861159 (0x5f3c2a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3a00807698f0b097d69ab3926917d1dcc838a624
Validity
Not Before: Mar 22 23:59:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f9743d874751e97774dd069d4757b45dd0c32c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:9b:ca:7f:23:56:50:98:ea:62:6f:10:25:8c:
65:71:75:39:a0:5d:7a:6f:21:30:7b:24:31:b9:a6:
3a:8b:20:88:b0:eb:f9:e6:c9:51:83:c9:93:ca:ce:
a5:e1:94:2d:36:cb:f8:3a:4a:86:91:15:43:37:a5:
be:be:31:ee:4e:15:86:32:19:5e:74:8e:f7:b8:32:
c8:71:25:79:cf:18:c0:52:d8:73:e2:68:3e:18:12:
60:dd:a1:5c:ca:37:ab:41:e8:14:68:4c:9f:06:35:
eb:68:05:fe:e2:d7:71:a5:04:1b:19:46:23:7a:e7:
ac:0b:4b:be:9a:4d:06:6d:77:a0:2b:58:83:cc:f4:
5b:f6:80:3e:ac:80:ea:16:99:f1:7f:12:82:84:a4:
02:3b:e1:ee:11:e6:a2:9a:c8:bd:ef:c9:72:8e:c9:
3d:a4:93:12:1f:40:99:2c:75:7e:7a:8b:56:ec:5b:
1e:c0:32:c3:47:53:7c:ea:bb:e0:06:b4:cd:df:e1:
b3:fc:de:c5:0c:cf:e4:31:97:5b:07:f1:e9:84:b5:
ec:1a:34:8b:4c:cd:56:08:6d:45:8e:57:1a:24:1a:
a3:e2:c4:9c:c0:dd:7d:4a:0e:ff:e0:45:62:be:f7:
2d:b7:d5:65:63:64:46:84:b8:d7:44:52:9e:3d:5a:
e6:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:97:43:D8:74:75:1E:97:77:4D:D0:69:D4:75:7B:45:DD:0C:32:C6
X509v3 Authority Key Identifier:
keyid:3A:00:80:76:98:F0:B0:97:D6:9A:B3:92:69:17:D1:DC:C8:38:A6:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/L5dD2HR1Hpd3TdBp1HV7Rd0MMsY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/143d29-cf72-4d01-918c-16afc4dffdd4/1/OgCAdpjwsJfWmrOSaRfR3Mg4piQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.32.0/23
45.150.236.0/22
Signature Algorithm: sha256WithRSAEncryption
3a:69:38:9f:ae:15:ff:d8:b3:ac:03:29:38:e4:d9:a7:5e:2b:
95:95:98:e6:f2:41:79:44:98:44:68:8d:a5:07:b1:a7:4a:0b:
d0:b9:d8:b7:a4:68:4c:a9:f8:25:bc:7b:75:f6:f3:d6:c2:15:
14:4b:b0:b2:20:04:55:71:07:8b:c5:3d:d6:f2:32:ec:1a:52:
2d:c3:8a:15:81:b0:66:c6:2f:e5:4b:0f:38:fe:93:b2:50:65:
14:01:eb:cd:09:61:2b:88:ec:8d:9b:8e:76:51:51:c7:67:61:
1c:8f:c9:0f:2f:2b:8f:a8:a2:63:17:96:3e:ae:35:c5:04:58:
97:9d:c9:88:89:96:16:86:41:93:43:4b:f1:76:1e:43:13:79:
ae:d4:9a:ab:ed:91:16:ff:a3:d3:f8:b2:ac:90:ea:92:bd:34:
be:fe:aa:1f:82:35:a8:4c:85:94:63:bb:c0:b9:84:8f:60:51:
2b:d6:47:01:3e:c6:d4:2f:3a:47:7b:61:91:15:6e:cb:51:d0:
9d:a5:c5:21:6b:5a:52:c2:c9:d3:48:3d:27:69:10:cb:dc:fd:
36:01:a6:f7:64:96:28:d7:68:45:aa:64:4f:a3:c0:5e:4f:b6:
d8:29:48:54:e8:be:13:6a:2e:a2:4b:82:33:53:5c:60:27:3c:
0e:cf:68:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:40:43 2024 by rpki-client on console-ams.rpki-client.org