Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/LPPgzVuUv12hsYfqPj9JZTzkKD0.roa
File: LPPgzVuUv12hsYfqPj9JZTzkKD0.roa (raw, json)
Hash identifier: NOKDmWsf9ictozOS/ecjS/0qsV/bwYR8QXd6KPuhQR0=
Subject key identifier: 2C:F3:E0:CD:5B:94:BF:5D:A1:B1:87:EA:3E:3F:49:65:3C:E4:28:3D
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 0773EA32
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/LPPgzVuUv12hsYfqPj9JZTzkKD0.roa
Signing time: Sat 01 Jan 2022 05:04:17 +0000
ROA not before: Sat 01 Jan 2022 05:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2914
IP address blocks: 45.67.200.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125037106 (0x773ea32)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cf3e0cd5b94bf5da1b187ea3e3f49653ce4283d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:c1:bd:9c:65:b0:6b:ab:2f:70:f1:f7:25:0b:
11:d7:3e:c5:17:d6:66:bd:ef:06:78:41:0b:a2:23:
c8:59:47:3a:76:b3:c3:54:07:35:43:3e:f3:a7:13:
cd:d2:a9:18:36:32:d3:c8:6e:aa:66:b9:cf:f0:81:
b8:73:6c:b2:f1:3b:47:f3:af:04:d5:43:d2:56:d1:
7a:62:09:e5:81:5f:a4:f8:a0:8c:41:d2:2b:e6:e0:
b6:01:b5:06:b2:60:51:06:aa:ed:74:b6:7b:e2:b5:
49:62:f0:39:29:56:10:77:4f:6a:1d:eb:99:04:cf:
85:c0:8c:ea:07:b4:de:b2:12:26:e0:bf:b9:2c:7a:
13:9a:64:1d:de:78:2d:ec:c7:52:52:62:1f:80:cd:
18:ce:71:d2:16:5b:18:c9:9c:6f:a2:29:66:7b:e8:
06:b9:ca:d4:b7:a1:9f:17:da:32:57:8d:d0:cf:cd:
4f:b4:c5:0a:61:80:6a:ae:e2:3f:e9:73:8b:91:12:
3d:d9:9a:8f:00:fd:d8:e5:d7:c6:8b:6c:cf:1b:bb:
0a:b9:25:18:05:e8:6a:40:83:ea:3d:28:b6:d4:70:
24:f8:98:e5:f0:1e:86:b8:41:0c:23:d6:bd:1b:bf:
d0:af:4b:fc:a4:f0:09:cb:bc:ca:de:f9:b3:67:02:
bc:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:F3:E0:CD:5B:94:BF:5D:A1:B1:87:EA:3E:3F:49:65:3C:E4:28:3D
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/LPPgzVuUv12hsYfqPj9JZTzkKD0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.200.0/22
Signature Algorithm: sha256WithRSAEncryption
8b:5e:67:82:3f:5b:6d:9f:76:87:e9:0b:4f:1d:eb:4f:28:d8:
a5:8f:c3:fd:8f:62:f7:84:b1:4d:99:25:01:c2:15:0b:f9:f7:
92:27:b4:67:8c:bd:6e:5a:a8:65:22:4f:c5:32:ab:b4:70:47:
ca:0e:8e:38:b3:61:2c:8c:ca:bf:b8:c8:a8:05:8c:52:14:18:
93:81:66:9b:47:e6:5b:2f:26:39:b4:31:e8:29:aa:9d:80:bc:
78:bf:0a:b1:73:a4:df:6c:eb:3d:ee:11:fd:1d:c8:e5:0a:e3:
b8:6f:75:8f:cd:43:d2:f5:7b:52:00:f3:b3:69:1c:5a:b4:9f:
bb:4a:d1:5e:2c:97:74:93:54:a2:af:7d:1b:5f:71:a4:a9:20:
48:aa:23:d4:4d:9c:d8:60:7a:41:87:43:bc:c6:f5:d2:b9:33:
94:44:29:7b:18:71:ad:0b:64:fe:03:45:38:6a:aa:29:4a:29:
6a:22:f1:37:24:c4:c7:b4:e0:43:ca:95:98:c1:13:87:8a:47:
13:0c:2a:92:2a:61:02:fc:87:12:ea:20:d4:49:df:7f:60:32:
2b:62:ef:82:be:1a:1b:2e:2e:a9:7b:19:82:5b:37:b0:c1:35:
37:e0:5c:15:a2:5a:f3:7e:a7:5e:f1:f2:8e:40:9d:cf:98:98:
79:eb:a1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org