Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/tlnOqOE1vNq1HSRkDxo0QcjYtbk.roa
File: tlnOqOE1vNq1HSRkDxo0QcjYtbk.roa (raw, json)
Hash identifier: k4+sd9Mwui/2R7m5Bq0qIz2j4+3FfGib86gx4wc3x6I=
Subject key identifier: B6:59:CE:A8:E1:35:BC:DA:B5:1D:24:64:0F:1A:34:41:C8:D8:B5:B9
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0183B1C232F0ACDD47E63BFE5AF9E9FBADD8
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/tlnOqOE1vNq1HSRkDxo0QcjYtbk.roa
Signing time: Fri 07 Oct 2022 09:23:57 +0000
ROA not before: Fri 07 Oct 2022 09:23:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208476
IP address blocks: 45.11.231.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:b1:c2:32:f0:ac:dd:47:e6:3b:fe:5a:f9:e9:fb:ad:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 7 09:23:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b659cea8e135bcdab51d24640f1a3441c8d8b5b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:67:98:e5:a7:c3:50:25:c2:51:61:a2:55:c2:
26:a4:43:95:e8:ea:34:11:ef:75:4c:c9:1e:ce:01:
34:87:e8:ac:39:09:a2:d7:e8:28:a2:79:06:de:1e:
00:a6:ae:eb:83:c2:23:d8:15:46:7c:f0:27:b5:bd:
4b:60:90:dd:2e:03:01:f0:51:91:1b:01:e5:83:ec:
75:e7:e2:fb:e1:cd:5e:00:83:af:b2:20:a0:60:05:
6e:a6:23:87:73:31:c9:4f:07:70:bb:2b:59:fd:1d:
20:9a:bb:95:7c:25:c1:27:de:b5:14:6b:4a:38:11:
30:c5:ad:ed:2a:b2:92:0e:f7:5e:3d:8a:cf:bd:fe:
67:43:13:a5:16:40:ba:c6:98:9d:53:12:95:77:ae:
db:41:d4:9b:f6:d2:4f:e6:f1:66:2c:28:8b:b7:11:
74:2c:1b:8d:e6:a8:cf:49:33:41:2b:9a:c1:cd:92:
1f:a0:eb:01:f7:96:83:72:4c:20:8f:01:56:f2:99:
11:07:e6:24:5d:a3:eb:e6:ef:16:f7:79:9d:9a:52:
f4:b6:8a:3b:ee:fa:0f:2e:38:80:23:cc:05:ef:94:
98:a8:98:a8:5f:80:ba:82:7a:13:78:40:2b:a8:45:
e5:d5:b6:d0:43:2a:79:fe:5b:fd:9a:88:f9:16:ff:
24:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:59:CE:A8:E1:35:BC:DA:B5:1D:24:64:0F:1A:34:41:C8:D8:B5:B9
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/tlnOqOE1vNq1HSRkDxo0QcjYtbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.231.0/24
Signature Algorithm: sha256WithRSAEncryption
9c:50:f1:de:01:a0:99:79:00:75:e1:3a:fe:9e:22:e9:3d:f5:
9e:01:75:ec:56:59:8e:e3:0d:8d:bf:8d:0d:d4:3e:6f:80:06:
aa:81:69:a3:e1:a6:64:97:53:69:7c:02:e1:d0:df:38:68:36:
92:c5:d7:91:89:eb:4b:c4:0a:4e:a4:51:9b:cd:03:a3:00:e9:
5a:84:01:7d:00:61:d4:f6:33:37:55:b0:8f:6f:3e:b0:06:51:
a9:21:f9:a2:78:14:ba:d8:d1:94:bb:44:23:47:f8:93:c9:78:
5e:47:7c:cc:5b:9a:5c:e8:d5:b7:a7:07:01:be:82:b8:44:f5:
c3:27:47:8e:94:8c:69:23:7f:e2:f2:96:5b:50:61:28:7b:95:
c2:1d:41:36:1a:ea:db:47:15:60:54:9a:99:0f:31:43:04:a8:
fe:7b:45:e7:43:5f:8b:5c:9d:66:52:e7:2f:c8:a9:09:fc:2f:
9c:7e:9b:15:46:69:63:2f:fe:23:62:f6:05:57:a9:bd:4b:4e:
b4:78:57:8d:34:d8:4d:af:72:a3:f5:69:26:69:7b:26:8a:a7:
85:61:b4:01:f2:03:6a:d3:a7:c7:fb:93:5f:1d:61:1d:31:3f:
19:d1:59:f8:d9:92:11:b5:52:ac:ce:63:11:4b:05:1f:a0:11:
b9:5a:df:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:14 2024 by rpki-client on console-ams.rpki-client.org