Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/LdF2JqEaKgIQmZe6CrYNPm1T93w.roa
File: LdF2JqEaKgIQmZe6CrYNPm1T93w.roa (raw, json)
Hash identifier: +9x3xgq+0CxVHzcApolQ8suxrT4pBl4wZALBL8zk7Ug=
Subject key identifier: 2D:D1:76:26:A1:1A:2A:02:10:99:97:BA:0A:B6:0D:3E:6D:53:F7:7C
Certificate issuer: /CN=2890da765a999f719875c51eecf4c7d6148a1bd9
Certificate serial: 816571
Authority key identifier: 28:90:DA:76:5A:99:9F:71:98:75:C5:1E:EC:F4:C7:D6:14:8A:1B:D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJDadlqZn3GYdcUe7PTH1hSKG9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/LdF2JqEaKgIQmZe6CrYNPm1T93w.roa
Signing time: Wed 01 Jun 2022 09:41:27 +0000
ROA not before: Wed 01 Jun 2022 09:41:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205293
IP address blocks: 45.143.206.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8480113 (0x816571)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2890da765a999f719875c51eecf4c7d6148a1bd9
Validity
Not Before: Jun 1 09:41:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2dd17626a11a2a02109997ba0ab60d3e6d53f77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:bf:c1:c5:d7:e2:4b:0a:48:64:6e:f9:eb:84:
e6:b3:e3:26:56:cd:95:0a:4a:58:8f:e1:55:70:9c:
8e:3c:c8:76:a9:70:6e:a6:79:dc:3f:f4:ff:82:82:
9a:b5:df:53:01:ad:a1:24:61:19:42:25:12:1a:16:
01:db:7f:3e:80:75:e9:e7:9c:af:48:85:af:10:08:
38:0a:67:6b:a4:68:05:6b:0d:7f:95:83:92:8f:a8:
08:c4:2e:81:3c:c1:33:0f:50:df:ab:16:fb:51:49:
6d:f4:69:84:6c:8a:9d:7b:ed:53:60:a3:5c:01:af:
d8:a2:bc:c6:1e:23:f1:c2:e6:b9:e5:19:06:73:1d:
19:f6:1c:0a:d8:60:df:5e:00:ee:3f:18:9f:60:ca:
50:fb:ec:ce:28:01:72:c7:f6:d0:29:9f:a1:1d:ac:
82:a6:cc:3e:6f:f8:0a:c6:f6:03:cb:0c:3f:90:51:
1f:2c:3a:2c:5d:df:8e:8a:df:37:5b:10:9d:21:19:
10:60:c3:bc:6b:be:6b:af:83:3d:c1:72:66:8a:45:
75:3c:73:1c:16:a9:98:d1:06:4f:8c:ff:d2:ee:8b:
10:47:10:95:f5:b4:68:38:e9:60:68:65:54:c2:cc:
56:2b:40:0b:60:9b:f1:ca:80:26:19:84:f7:26:9f:
17:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:D1:76:26:A1:1A:2A:02:10:99:97:BA:0A:B6:0D:3E:6D:53:F7:7C
X509v3 Authority Key Identifier:
keyid:28:90:DA:76:5A:99:9F:71:98:75:C5:1E:EC:F4:C7:D6:14:8A:1B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJDadlqZn3GYdcUe7PTH1hSKG9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/LdF2JqEaKgIQmZe6CrYNPm1T93w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/2bbcd4-edab-48ee-a411-28fc7063d952/1/KJDadlqZn3GYdcUe7PTH1hSKG9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.206.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:71:9b:b2:c7:7a:73:b3:2a:01:3c:04:98:03:98:d5:80:ab:
5c:11:ec:09:1f:e3:0b:f4:cd:b7:83:ee:70:0f:7b:4a:37:45:
4a:4d:1b:33:33:d8:45:1d:dd:0c:07:d2:53:eb:46:1e:3b:01:
04:99:f5:a2:3c:23:fb:3e:5e:bf:9e:d1:83:ea:0d:c6:d3:fb:
c4:58:74:3e:4a:77:8d:6e:3d:bd:9d:d6:f5:54:31:c7:a1:8f:
8e:15:3f:62:63:74:48:3d:a2:de:03:aa:44:b5:b6:08:97:7f:
f8:e1:a7:46:50:e9:16:cf:c5:5c:a6:5c:6c:01:75:46:43:f6:
f8:2b:cc:04:d5:e2:ce:2f:74:d6:44:aa:53:67:de:5a:b2:c2:
6e:15:f0:49:50:6d:1d:8a:42:4e:89:54:95:cd:a7:5b:75:18:
f4:57:11:8c:27:04:58:59:bc:2d:62:d2:e0:81:71:6d:51:49:
c8:82:fe:ee:8c:51:30:00:a7:fd:a2:ec:84:df:06:1c:a1:ec:
88:e6:95:6f:24:fa:2d:c6:65:95:f9:6d:57:75:db:11:06:31:
e3:30:d2:05:b2:ed:b6:45:fb:ff:6f:f6:67:50:ec:c2:bf:d1:
21:a7:55:94:da:58:0d:af:3f:9f:ef:b5:17:20:f7:54:f2:5a:
45:41:80:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:42:47 2025 by rpki-client