Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/3e7654-5124-4a6e-9497-9a9ed1ef2e8d/1/PA-LaEJdjJDaJGQPiz2LROhBpvE.roa
File: PA-LaEJdjJDaJGQPiz2LROhBpvE.roa (raw, json)
Hash identifier: TH8vMuaHo3+drvz9ZhW+TEaSjOLD/htwfyAAooI8VvM=
Subject key identifier: 3C:0F:8B:68:42:5D:8C:90:DA:24:64:0F:8B:3D:8B:44:E8:41:A6:F1
Certificate issuer: /CN=21f10e34421baff174d60678f32fa5e35cdf957e
Certificate serial: 08308B8F
Authority key identifier: 21:F1:0E:34:42:1B:AF:F1:74:D6:06:78:F3:2F:A5:E3:5C:DF:95:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IfEONEIbr_F01gZ48y-l41zflX4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/3e7654-5124-4a6e-9497-9a9ed1ef2e8d/1/PA-LaEJdjJDaJGQPiz2LROhBpvE.roa
Signing time: Sat 01 Jan 2022 11:55:54 +0000
ROA not before: Sat 01 Jan 2022 11:55:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48814
IP address blocks: 45.94.151.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137399183 (0x8308b8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21f10e34421baff174d60678f32fa5e35cdf957e
Validity
Not Before: Jan 1 11:55:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3c0f8b68425d8c90da24640f8b3d8b44e841a6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e4:d4:ce:70:4a:2b:11:0d:20:27:af:21:c9:
78:02:f7:84:a7:1a:44:63:0e:ae:25:55:2b:d6:6d:
ea:eb:50:c3:ab:ef:02:39:a3:e4:60:66:05:40:db:
10:b9:b4:a2:58:a9:e2:68:f9:60:3d:08:64:3f:d4:
7c:c6:0f:85:52:01:be:57:28:f7:9c:da:7d:fa:5f:
0c:ad:d5:07:b3:5d:b1:83:a4:f2:be:41:16:fb:3d:
2b:b1:b4:ee:8b:98:01:1f:d2:e9:3d:da:be:b0:4f:
cc:d9:d7:58:90:68:94:0b:42:5c:8e:bf:50:76:7e:
c5:bc:4c:32:94:43:57:25:e5:da:74:ca:27:c2:50:
d9:6c:3c:e8:a0:97:6e:7b:91:d5:fb:24:69:f3:ab:
3e:a2:d9:3b:fc:a2:18:d6:0a:a5:21:0a:55:f6:53:
bc:58:14:3f:66:36:ae:38:aa:59:8d:15:80:68:28:
d8:4f:69:b8:dd:5a:fd:bc:e0:0f:a6:86:92:71:60:
db:fa:e6:f8:81:1b:2d:b8:19:62:55:b5:77:9b:ff:
74:81:3a:dd:0a:cb:98:da:35:2e:27:ad:2a:0a:6c:
2a:f1:bf:c0:97:9a:3f:46:a9:62:47:a3:4c:e9:b9:
8d:a6:6a:f7:79:cf:de:16:f6:04:90:a3:97:fd:4b:
3f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:0F:8B:68:42:5D:8C:90:DA:24:64:0F:8B:3D:8B:44:E8:41:A6:F1
X509v3 Authority Key Identifier:
keyid:21:F1:0E:34:42:1B:AF:F1:74:D6:06:78:F3:2F:A5:E3:5C:DF:95:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IfEONEIbr_F01gZ48y-l41zflX4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3e7654-5124-4a6e-9497-9a9ed1ef2e8d/1/PA-LaEJdjJDaJGQPiz2LROhBpvE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3e7654-5124-4a6e-9497-9a9ed1ef2e8d/1/IfEONEIbr_F01gZ48y-l41zflX4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.151.0/24
Signature Algorithm: sha256WithRSAEncryption
90:17:57:4a:77:bb:ed:c4:71:5e:12:9c:cb:60:a4:21:94:d2:
43:f4:5d:08:a5:af:f5:88:a9:ec:ee:c5:96:b5:1c:87:cf:58:
b0:d9:a0:68:21:8b:5a:ab:33:41:f9:01:8f:54:0b:e7:0f:a1:
43:87:be:af:dc:31:65:5d:00:2a:11:69:a6:0b:1d:22:f3:6a:
13:15:7b:83:8f:8a:7e:be:a1:20:82:56:34:1c:b2:7a:b6:b8:
3e:82:54:e9:61:f5:17:5b:99:aa:21:f2:a9:f4:6b:fb:52:3a:
03:a7:78:ac:f3:0a:9a:db:ff:d3:6b:fe:bf:3c:70:fa:01:ce:
53:ba:3f:73:b9:55:98:1d:ff:91:27:9c:12:92:a2:e9:f9:63:
26:89:15:3a:f1:cd:14:52:4c:2e:c2:38:9a:be:66:87:6d:0f:
54:e1:67:bb:ac:84:b0:d6:c2:aa:b2:a6:1e:20:4f:0f:94:4a:
d0:de:7b:33:2b:71:03:50:d6:88:a2:a3:eb:13:cc:6f:04:5b:
71:bb:ae:4a:33:94:cd:64:8e:4b:b5:5e:68:1e:1e:dd:52:e7:
5d:3c:14:59:f1:a4:8c:f6:a0:5a:a8:fa:de:30:97:03:f1:35:
01:6f:00:e9:9b:30:c9:06:cf:5f:fd:b7:4c:8a:e7:29:2b:2a:
3d:23:be:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:30 2023 by rpki-client on console-ams.rpki-client.org