Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/hW_-mEDK_hRPYgMtL68WNagWUnA.roa
File: hW_-mEDK_hRPYgMtL68WNagWUnA.roa (raw, json)
Hash identifier: IgfY36bCeKrsfUl8a4C/cfmZs1nrPLvilwdV0e0vlck=
Subject key identifier: 85:6F:FE:98:40:CA:FE:14:4F:62:03:2D:2F:AF:16:35:A8:16:52:70
Certificate issuer: /CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Certificate serial: 01856C93967EC2A8A6162AAE808D2C2236D2
Authority key identifier: C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/hW_-mEDK_hRPYgMtL68WNagWUnA.roa
Signing time: Sun 01 Jan 2023 09:04:49 +0000
ROA not before: Sun 01 Jan 2023 09:04:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203735
IP address blocks: 45.143.30.0/24 maxlen: 24
45.143.29.0/24 maxlen: 24
45.143.31.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:93:96:7e:c2:a8:a6:16:2a:ae:80:8d:2c:22:36:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Validity
Not Before: Jan 1 09:04:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=856ffe9840cafe144f62032d2faf1635a8165270
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2c:77:7f:b9:8a:a6:b6:f0:94:55:ee:9f:e2:
f1:fe:fe:ae:e7:c8:ca:74:b0:4a:51:9d:fe:91:27:
fe:60:26:50:59:d3:b3:00:8e:d8:6b:49:a8:49:20:
bb:c1:1a:54:5c:9d:bc:95:20:37:52:ff:b6:42:84:
51:1d:b0:16:70:08:b8:14:b9:21:36:43:6d:db:5b:
30:51:4c:a9:f6:e5:af:20:fe:55:aa:78:56:56:33:
86:4b:03:8f:65:4e:2e:88:eb:9d:9f:3d:1b:62:96:
9e:d1:eb:09:ab:39:21:ec:8d:7e:b0:6b:ee:a4:3c:
b5:c6:b4:6f:64:af:bc:d9:8a:9c:16:f0:3b:4e:f6:
e5:38:ca:24:e9:28:3c:74:ae:16:9c:ab:9c:6c:74:
b1:1c:a9:7d:79:f4:61:2d:b6:e7:80:29:27:83:44:
4b:61:a5:40:24:9b:e5:7d:2e:4e:46:05:63:4f:1d:
36:09:0c:68:6f:aa:93:2f:45:9a:3a:6f:ce:66:85:
66:b0:6c:d2:c1:d9:69:1c:be:05:36:2e:bb:77:d8:
c0:ac:f4:c3:2a:67:94:3d:01:e9:c4:23:7d:3d:3c:
f8:bf:de:6b:53:34:34:07:4f:1a:cd:79:0b:8f:be:
bc:13:38:7f:9b:4e:a6:13:c8:5c:75:57:73:4f:0b:
5e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:6F:FE:98:40:CA:FE:14:4F:62:03:2D:2F:AF:16:35:A8:16:52:70
X509v3 Authority Key Identifier:
keyid:C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/hW_-mEDK_hRPYgMtL68WNagWUnA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/wSrJsU_SYajSdjqtQXQyvrxJoNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.29.0-45.143.31.255
Signature Algorithm: sha256WithRSAEncryption
37:6a:58:b5:b0:47:37:58:0a:62:07:41:db:1b:1a:df:f7:04:
c6:d8:22:59:2c:66:86:78:a3:da:17:3e:c3:dd:64:db:6f:08:
e9:ea:eb:a5:cd:18:bc:c6:c8:34:57:3d:5b:c3:be:ae:da:8a:
19:6c:2d:e3:24:37:d3:9e:83:10:53:88:58:46:df:ae:c6:89:
85:3a:bf:72:37:27:68:c1:33:54:88:15:9f:a4:c3:9e:87:18:
31:06:14:55:ad:7a:45:66:5d:e4:11:11:95:97:74:93:59:9b:
61:cb:74:93:dd:c8:97:7b:6f:30:67:7f:9e:a7:5f:c4:77:ab:
04:9c:0d:93:cf:f9:12:8c:f8:ce:3a:2a:e3:c9:1b:5a:ff:1e:
57:56:36:32:3f:8b:6e:f5:ee:9b:1c:68:e7:c7:ab:cc:33:07:
66:ca:45:72:60:b5:9d:4a:b3:24:39:b3:58:61:7d:45:d8:0f:
1f:90:33:ae:81:5c:5c:ac:88:49:af:7d:e7:e4:49:da:b8:fe:
dc:bb:dc:5c:e5:c2:fb:96:84:ab:e1:b7:a6:fc:9d:8b:fa:c4:
6e:b3:b7:c3:8c:b3:ef:57:84:28:5b:72:8f:36:3c:dc:68:2b:
9a:a1:e4:d0:b6:cc:52:1b:e4:87:d5:2a:8a:35:ef:16:64:3a:
a3:f3:61:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:17 2025 by rpki-client