Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/TdWHnZrFR-QMSBpuns17AsGJw5M.roa
File: TdWHnZrFR-QMSBpuns17AsGJw5M.roa (raw, json)
Hash identifier: ysRRu1/v2Zu5uhBBPA4UT7H44QHX7HvzNVlBMZFml7M=
Subject key identifier: 4D:D5:87:9D:9A:C5:47:E4:0C:48:1A:6E:9E:CD:7B:02:C1:89:C3:93
Certificate issuer: /CN=bf84113545d9000760f66062a4221933a2e959d8
Certificate serial: 03865D36
Authority key identifier: BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/TdWHnZrFR-QMSBpuns17AsGJw5M.roa
Signing time: Wed 26 Jan 2022 17:09:10 +0000
ROA not before: Wed 26 Jan 2022 17:09:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44094
IP address blocks: 45.150.64.0/24 maxlen: 32
45.144.31.0/24 maxlen: 32
45.144.30.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 59137334 (0x3865d36)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf84113545d9000760f66062a4221933a2e959d8
Validity
Not Before: Jan 26 17:09:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4dd5879d9ac547e40c481a6e9ecd7b02c189c393
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:29:76:f0:ae:eb:d5:cf:35:fc:ee:27:2a:0b:
9d:3a:ac:3c:d6:35:bc:e4:02:48:32:d6:9a:fb:4c:
ba:5f:72:32:c6:70:5a:a6:62:84:2e:f2:77:2c:e6:
7d:31:a8:62:4c:c6:63:c5:22:6d:c2:70:0a:71:3b:
e1:d5:34:72:00:a3:e6:54:0f:aa:98:c8:fa:46:6b:
89:4c:77:56:1a:c8:fe:a3:71:e3:3b:30:ec:b1:15:
f1:bd:a9:d4:1f:f6:25:d8:cd:68:bc:82:77:42:89:
a2:a6:7e:6b:67:bf:1a:8b:7d:e9:24:05:90:37:8a:
21:5e:b9:d4:7f:54:0b:5f:7c:70:48:5a:d9:bd:be:
99:63:4a:f5:6a:0b:68:78:2a:ab:42:fa:55:c8:5f:
69:1e:af:2a:19:bf:ad:e3:33:4a:48:6a:6a:e3:32:
15:12:7a:9a:46:99:03:d5:ed:ab:12:bd:33:f5:67:
56:66:28:b3:99:0c:d2:2c:d0:d2:52:5e:bb:82:bb:
03:05:ed:12:c3:90:80:c5:ba:62:2d:e5:48:33:a8:
16:7d:4f:93:9d:47:50:da:1e:34:f5:e6:d4:e0:e3:
a5:19:4c:1a:1d:5d:f1:ab:81:61:42:68:b4:a8:44:
ad:a7:cc:2a:a6:7c:2c:20:3e:74:e1:7e:48:88:2b:
66:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:D5:87:9D:9A:C5:47:E4:0C:48:1A:6E:9E:CD:7B:02:C1:89:C3:93
X509v3 Authority Key Identifier:
keyid:BF:84:11:35:45:D9:00:07:60:F6:60:62:A4:22:19:33:A2:E9:59:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v4QRNUXZAAdg9mBipCIZM6LpWdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/TdWHnZrFR-QMSBpuns17AsGJw5M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/30dc85-2dd8-4b1c-b151-4bd63adc7354/1/v4QRNUXZAAdg9mBipCIZM6LpWdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.30.0/23
45.150.64.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:90:4a:73:f2:cd:b7:ff:4c:97:01:99:9a:40:0f:5e:35:d4:
92:44:1c:d9:47:43:fb:72:02:62:24:aa:ec:2a:25:5e:51:3b:
ac:06:9d:53:dd:6d:0d:65:33:ba:16:69:67:25:7c:97:48:bf:
f2:2e:ea:c1:66:02:9c:7e:9f:d7:3b:01:9e:f2:08:0b:d1:c2:
18:91:69:15:47:b9:0c:32:6c:03:28:38:a2:f1:75:c3:bf:cb:
50:3a:b6:30:4c:c9:bd:eb:ed:26:d6:ae:51:d3:9d:fc:5f:bc:
2b:d7:2a:43:c9:44:fa:1b:49:ee:76:bf:d7:81:64:59:b6:ca:
8c:63:47:34:2d:32:e2:13:03:ee:ca:16:48:b0:b3:e3:45:dc:
97:2b:fa:2f:58:2e:a9:ed:0f:31:53:ea:38:e3:bb:e8:63:1b:
95:07:e0:82:ce:33:ce:7a:3a:6b:b9:cc:fb:3c:98:b4:17:74:
6b:aa:32:68:b1:66:76:6d:99:87:1d:15:c9:0d:b4:97:d7:06:
44:43:09:3d:f9:82:7a:b5:94:7f:81:50:dc:07:d3:ac:d3:05:
4a:68:44:7b:cf:fd:70:a1:a0:59:6c:ae:96:21:48:6b:18:ea:
90:e3:59:ea:61:eb:36:b0:63:2a:43:7e:62:07:e5:56:cd:91:
4a:9f:eb:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:23 2023 by rpki-client on console-fra.rpki-client.org