Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/LPydkWX3vStm_Ndy3q7kZvSzWbM.roa
File: LPydkWX3vStm_Ndy3q7kZvSzWbM.roa (raw, json)
Hash identifier: xOKP4PP+J/cevgcbRrt50LkWskZnnrt8lDu5xronHiM=
Subject key identifier: 2C:FC:9D:91:65:F7:BD:2B:66:FC:D7:72:DE:AE:E4:66:F4:B3:59:B3
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0183CBAB35B7D338A632540FE4D7C95FFBC8
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/LPydkWX3vStm_Ndy3q7kZvSzWbM.roa
Signing time: Wed 12 Oct 2022 10:08:58 +0000
ROA not before: Wed 12 Oct 2022 10:08:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.144.213.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:cb:ab:35:b7:d3:38:a6:32:54:0f:e4:d7:c9:5f:fb:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 12 10:08:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cfc9d9165f7bd2b66fcd772deaee466f4b359b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:fd:17:67:14:86:f8:f6:d1:98:6e:a5:cc:76:
b7:e7:4f:54:eb:2b:d0:e4:96:2c:a7:50:3b:bd:fe:
8f:09:6d:47:4e:58:b8:80:88:b2:14:ae:c2:00:63:
e4:6e:5a:53:3a:30:55:d7:45:7f:91:9e:53:62:20:
d2:ac:42:77:11:79:7e:97:d3:b8:85:4d:45:17:d4:
2f:e9:4c:1c:7e:49:1f:b6:62:72:ab:52:a7:32:cd:
d7:09:e7:84:f3:db:e0:3d:54:94:83:ee:4d:ab:cf:
b5:ed:b6:d8:9a:ba:69:1a:41:bc:ac:94:ca:5d:7b:
01:49:71:46:95:65:30:4b:88:d6:2d:f5:b3:c7:00:
05:ca:e8:25:56:92:ae:1e:6e:43:f2:0c:7a:a2:25:
a5:ab:58:98:a6:6d:e5:68:40:87:32:57:20:fd:1f:
97:55:a7:0d:cf:2a:ee:5a:f9:cd:44:82:69:51:3a:
1f:74:5a:f5:1b:21:90:03:2d:b7:49:c0:7c:fc:8d:
15:d0:f6:4f:cf:9f:3f:25:17:45:8e:d1:11:19:26:
b4:4f:c3:a1:e5:a0:1f:40:0f:59:91:db:ea:91:ad:
99:3f:34:b3:76:03:21:1c:c2:2b:5c:21:39:2f:19:
a5:68:7e:a8:8e:cd:9b:67:88:48:8f:d6:10:5c:07:
01:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:FC:9D:91:65:F7:BD:2B:66:FC:D7:72:DE:AE:E4:66:F4:B3:59:B3
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/LPydkWX3vStm_Ndy3q7kZvSzWbM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.213.0/24
Signature Algorithm: sha256WithRSAEncryption
5b:9a:e8:38:5b:95:e8:11:d3:18:4d:04:dc:e9:10:ca:15:ac:
03:f4:65:cc:84:8f:2a:e7:5a:2e:5c:cf:97:5a:b0:3e:0f:43:
68:c4:0d:14:93:3f:95:25:0f:69:e1:a5:ea:84:da:8c:04:49:
df:46:9f:b7:1f:78:78:36:f1:00:d4:01:30:89:92:4a:59:be:
21:99:84:08:88:25:56:d7:4c:b3:7c:43:f2:dc:ca:86:90:f8:
21:6c:2f:c2:1f:72:89:e1:6e:82:c8:a2:24:5a:62:65:1c:79:
e2:f3:fc:b3:7e:63:e6:99:fc:22:67:e9:7b:86:3f:bd:64:94:
6e:60:95:ba:74:e6:75:95:06:23:ba:d6:33:6b:9e:06:e7:fd:
8d:7f:40:d9:82:fb:c9:59:18:87:27:61:7a:be:ce:26:f2:71:
e2:70:e9:d3:44:e3:4e:94:2d:a1:e0:ff:a2:30:61:1c:f7:c5:
de:a0:63:de:0c:59:ff:99:6a:ed:dd:f0:c9:fc:c0:34:97:a7:
ea:1a:ad:98:dd:f1:bf:b8:40:b1:44:db:d9:33:94:04:19:25:
d6:d7:6f:24:3c:fc:8a:f6:e5:61:a3:08:3d:48:6c:5b:65:7b:
98:e5:5d:fa:d9:4f:28:6f:19:2e:ff:ec:e0:c3:5b:d6:0d:ed:
bf:63:67:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org