Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/lpdkU445WJmR_OO4Uzj4ydC7KGo.roa
File: lpdkU445WJmR_OO4Uzj4ydC7KGo.roa (raw, json)
Hash identifier: OdfgBfB+ZCFm26WT9zL7SBwTYbDdl6o4x4lK5KZLeqo=
Subject key identifier: 96:97:64:53:8E:39:58:99:91:FC:E3:B8:53:38:F8:C9:D0:BB:28:6A
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07216551
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/lpdkU445WJmR_OO4Uzj4ydC7KGo.roa
Signing time: Fri 11 Mar 2022 06:27:25 +0000
ROA not before: Fri 11 Mar 2022 06:27:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 188.209.136.0/22 maxlen: 24
45.11.188.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119629137 (0x7216551)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Mar 11 06:27:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=969764538e39589991fce3b85338f8c9d0bb286a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:7e:a3:2d:94:0d:66:0b:ae:eb:88:70:8e:4c:
fe:59:f9:b1:d7:b0:40:30:d7:80:03:02:03:b6:79:
b6:bf:f4:64:67:97:13:59:0b:34:a0:6e:c7:17:ec:
91:f2:39:0c:f5:04:c0:fa:87:c2:b1:ba:cd:d8:7c:
24:b3:84:3c:4b:f0:b6:68:cc:9a:9a:c4:6d:60:64:
85:40:7c:55:50:d0:e6:71:fc:e9:cc:c8:c1:1a:d2:
a1:23:44:9c:90:bc:b7:91:5b:3f:97:52:c7:e4:26:
8c:8f:a0:d8:43:1b:be:a9:5e:09:d7:3b:34:38:f4:
9f:bf:ff:10:f4:91:1a:8b:46:57:37:eb:0c:de:1a:
90:b3:f3:b4:16:e2:38:23:aa:28:a6:1b:63:63:f7:
b3:90:be:0a:75:82:36:95:1f:66:5d:be:99:9f:ed:
63:8e:f7:8c:55:76:32:0b:ad:2e:fb:b3:55:34:d0:
d8:1b:b4:09:3b:9c:87:fe:1c:88:74:73:d8:d0:a1:
cb:84:5d:0d:ec:6b:0d:a3:fd:f2:e8:5c:50:b6:6f:
32:34:73:07:32:5f:a3:80:a2:de:b5:77:66:06:ba:
06:b8:37:ce:fd:78:ff:60:17:8d:a3:7d:73:32:74:
9a:0f:4e:7d:a1:92:88:19:ea:16:40:4b:e5:c0:77:
2e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:97:64:53:8E:39:58:99:91:FC:E3:B8:53:38:F8:C9:D0:BB:28:6A
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/lpdkU445WJmR_OO4Uzj4ydC7KGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.188.0/23
188.209.136.0/22
Signature Algorithm: sha256WithRSAEncryption
2c:c5:27:41:28:5d:08:dd:aa:68:31:3e:02:c5:a3:45:62:bf:
64:fa:f7:e3:a3:4a:ee:9b:7d:10:56:18:c2:c0:02:20:27:aa:
a1:22:4f:38:95:10:fd:44:11:1e:41:f1:70:4e:af:bd:eb:2b:
62:85:32:ce:e6:e5:70:35:47:cb:b1:f1:86:bf:4d:34:b6:ac:
5f:3f:26:ee:19:b9:e8:69:1a:ec:51:2c:ec:a3:fa:4e:2a:b8:
21:f0:28:83:f5:a7:86:2b:01:99:68:04:bf:b3:97:d4:6a:e1:
b4:d7:45:1d:bc:cc:8e:2a:46:01:22:34:ac:77:65:3e:b1:78:
92:82:44:ae:af:49:31:be:40:35:8f:9e:ba:af:f5:92:95:fa:
f0:8f:a9:16:07:d1:32:e4:8b:18:22:b0:bb:6d:ac:d4:fc:5b:
63:0b:f2:4b:e1:dc:78:b2:52:ee:a4:4d:1a:cd:1d:c2:ed:c5:
4b:88:6d:ae:aa:ef:66:03:a2:96:71:e0:3f:01:66:95:0d:29:
9b:41:f9:42:e1:55:de:ca:1d:64:61:a4:69:95:49:8a:64:89:
aa:7d:18:15:01:04:c8:52:f0:12:21:62:1e:f8:fd:d9:50:56:
60:fc:55:a8:7a:78:2a:9a:5e:58:76:f0:40:da:42:d7:39:b3:
64:4f:99:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org