Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/682ece-ebe2-4a23-8ab5-36e64ac64542/1/llF1HLlIC6aRqTFLHksEnD1eD4I.roa
File: llF1HLlIC6aRqTFLHksEnD1eD4I.roa (raw, json)
Hash identifier: pddfGC0UXWO0aQG0M3e/LxZr6639kUM5vxJmG/5xXJQ=
Subject key identifier: 96:51:75:1C:B9:48:0B:A6:91:A9:31:4B:1E:4B:04:9C:3D:5E:0F:82
Certificate issuer: /CN=b334fc2b5b8227b6df3f21d1ad3a74b14ec0685a
Certificate serial: 08202011
Authority key identifier: B3:34:FC:2B:5B:82:27:B6:DF:3F:21:D1:AD:3A:74:B1:4E:C0:68:5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/szT8K1uCJ7bfPyHRrTp0sU7AaFo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/682ece-ebe2-4a23-8ab5-36e64ac64542/1/llF1HLlIC6aRqTFLHksEnD1eD4I.roa
Signing time: Sat 01 Jan 2022 02:56:41 +0000
ROA not before: Sat 01 Jan 2022 02:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.159.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136323089 (0x8202011)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b334fc2b5b8227b6df3f21d1ad3a74b14ec0685a
Validity
Not Before: Jan 1 02:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9651751cb9480ba691a9314b1e4b049c3d5e0f82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:96:11:a5:28:50:ad:a7:5a:09:4e:15:4c:a8:
d6:47:9a:0b:85:db:c0:29:5e:69:7f:10:73:47:da:
30:59:eb:06:85:e6:97:c1:01:d6:ec:6e:1f:7f:c7:
2f:ed:31:bb:46:37:be:11:55:1d:28:aa:e4:c0:bb:
1d:da:81:a8:a8:7e:f7:b0:78:e8:a9:ec:5f:cd:29:
86:df:a8:b2:5b:f0:80:a7:ef:ce:3e:b4:d6:12:92:
d7:50:5a:67:27:9b:48:6b:8a:9e:2e:e5:0b:10:77:
3f:7e:a2:ca:d8:fc:47:63:3c:fc:47:71:4b:56:7f:
52:f9:39:b7:b1:f1:99:b4:cb:f4:70:95:90:d3:30:
2e:60:50:bd:9a:88:3f:df:d5:36:b0:b5:4e:ab:25:
16:a4:29:5c:f0:0b:26:c5:c5:d8:e2:b4:6c:96:95:
53:7d:01:93:a5:40:03:ae:c4:44:eb:ad:7f:bd:9c:
03:ba:1e:b2:b2:a4:41:da:f7:2e:7a:cc:b0:22:20:
7a:8e:60:ef:5a:b5:6d:c4:a2:8b:d1:77:3b:69:95:
94:73:dd:5c:9e:f6:a5:c9:8e:c9:ea:ee:f8:93:0f:
3b:e0:83:bc:2d:f7:ff:2d:c5:3d:8f:38:f8:8b:0d:
88:6a:81:47:7a:a7:91:c4:3d:54:e9:9f:d6:23:72:
69:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:51:75:1C:B9:48:0B:A6:91:A9:31:4B:1E:4B:04:9C:3D:5E:0F:82
X509v3 Authority Key Identifier:
keyid:B3:34:FC:2B:5B:82:27:B6:DF:3F:21:D1:AD:3A:74:B1:4E:C0:68:5A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/szT8K1uCJ7bfPyHRrTp0sU7AaFo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/682ece-ebe2-4a23-8ab5-36e64ac64542/1/llF1HLlIC6aRqTFLHksEnD1eD4I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/682ece-ebe2-4a23-8ab5-36e64ac64542/1/szT8K1uCJ7bfPyHRrTp0sU7AaFo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.224.0/22
Signature Algorithm: sha256WithRSAEncryption
4f:d9:17:9d:cc:a0:f5:6e:9b:a7:54:7f:e4:0f:64:f0:78:3c:
64:27:37:98:d4:50:62:97:bb:93:ca:25:66:f8:c7:62:d2:e7:
5f:45:3c:18:d7:46:d6:54:73:a3:6d:23:1d:a0:17:37:85:02:
36:45:bb:42:b0:7b:3f:5d:35:32:1e:55:d3:8b:d0:86:1d:9f:
95:8c:9a:14:fc:9b:75:76:a7:56:7f:0f:af:95:59:75:86:83:
c1:02:52:ac:ed:1d:28:5c:ac:7f:b7:10:01:8d:ec:42:52:ad:
5a:69:bb:60:30:30:fc:ef:56:21:66:95:fe:e3:05:c2:2d:33:
04:2b:5f:4c:67:8d:d4:8b:ae:7e:9f:2a:8f:0b:b4:63:94:ae:
9d:30:75:08:4b:2d:6b:b9:5d:0e:06:8c:50:a9:b1:49:5e:a5:
42:55:12:a2:da:4c:07:04:28:77:77:86:9c:4f:66:47:17:99:
02:8f:0c:1a:88:e8:b6:9a:82:dd:a9:fd:d4:95:ef:24:7c:47:
08:70:5a:e6:e7:6d:34:fd:d2:16:51:16:1f:03:e0:ec:d7:2b:
a4:04:36:a8:7a:04:40:53:1f:6a:41:df:85:47:53:ff:48:37:
70:59:0e:86:06:92:d9:e3:90:1e:00:27:f8:07:87:d5:24:a9:
f1:04:85:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:48:40 2024 by rpki-client on console-ams.rpki-client.org