Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/mT5J3vjzNbzMeur2FsiTcWyltvk.roa
File: mT5J3vjzNbzMeur2FsiTcWyltvk.roa (raw, json)
Hash identifier: +LLi2vK2Kc7rGqTVQ1RgBOxIwo5da/Lm3hYbu55TRk0=
Subject key identifier: 99:3E:49:DE:F8:F3:35:BC:CC:7A:EA:F6:16:C8:93:71:6C:A5:B6:F9
Certificate issuer: /CN=8f3ced30b2852e552c7837467003f175ea59de73
Certificate serial: 0183AE2F84DF219A91674CE88E599F70DEBC
Authority key identifier: 8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/mT5J3vjzNbzMeur2FsiTcWyltvk.roa
Signing time: Thu 06 Oct 2022 16:44:53 +0000
ROA not before: Thu 06 Oct 2022 16:44:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197293
IP address blocks: 45.144.140.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ae:2f:84:df:21:9a:91:67:4c:e8:8e:59:9f:70:de:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8f3ced30b2852e552c7837467003f175ea59de73
Validity
Not Before: Oct 6 16:44:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=993e49def8f335bccc7aeaf616c893716ca5b6f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:23:97:e0:19:ef:78:7e:c1:9b:92:98:f9:c0:
90:7e:ba:88:33:64:00:6d:63:ae:21:16:c7:28:37:
1d:1f:f2:3f:49:d5:82:b4:12:67:49:26:34:0e:e4:
5b:e3:9a:7d:2d:82:75:71:e4:20:dc:f8:51:83:1a:
55:0e:14:fa:93:0f:4c:7d:a3:9e:a9:b0:be:75:11:
b7:b3:00:ed:93:0b:25:db:b1:aa:a6:cc:96:8b:59:
3b:ed:8f:b3:30:73:e9:c8:07:e4:1a:5a:29:b9:2a:
2c:8a:e6:3b:83:32:a3:f6:8a:2c:a4:53:cb:c5:05:
07:8c:41:9c:67:45:f8:a1:eb:c7:5b:80:53:b0:2c:
f1:b3:76:cd:59:eb:bb:b4:c8:5d:1f:34:cd:d5:d6:
b3:15:f3:0e:05:4f:7a:27:b6:c9:7d:1b:d2:5f:24:
3c:77:9e:35:17:0f:34:44:1f:35:34:1c:7d:3c:4f:
7b:c1:ee:ab:70:43:2d:5a:e8:56:7e:11:b8:55:46:
1a:cd:05:c3:41:ff:fd:0c:bf:e9:8d:48:51:af:51:
90:7f:b0:37:0a:c2:0a:05:d8:5a:04:62:2b:a1:a0:
81:af:d3:0a:96:67:50:92:3c:62:ec:fe:36:d4:8d:
f3:ca:a0:d8:ce:c3:58:64:81:79:23:84:ca:75:b8:
6f:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:3E:49:DE:F8:F3:35:BC:CC:7A:EA:F6:16:C8:93:71:6C:A5:B6:F9
X509v3 Authority Key Identifier:
keyid:8F:3C:ED:30:B2:85:2E:55:2C:78:37:46:70:03:F1:75:EA:59:DE:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jzztMLKFLlUseDdGcAPxdepZ3nM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/mT5J3vjzNbzMeur2FsiTcWyltvk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/48/df9e2d-a033-40c0-a00f-e344fdb722a3/1/jzztMLKFLlUseDdGcAPxdepZ3nM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.140.0/22
Signature Algorithm: sha256WithRSAEncryption
56:66:1a:9c:41:84:a1:94:55:4d:0d:07:9b:f2:e1:93:4a:cf:
20:bf:e4:5b:a0:cc:4d:70:9a:44:a8:c7:7a:2e:6f:6e:5f:59:
d2:5e:7e:f6:f7:4e:36:1a:87:0a:b9:1e:c5:ac:aa:3e:3f:da:
78:0d:3d:a5:9c:16:ce:63:a5:af:f5:36:b9:12:e3:22:cb:13:
86:c0:e2:82:9d:36:12:ed:42:ea:f8:d5:42:ec:f2:f2:00:aa:
42:6e:04:cc:3b:74:34:77:c7:ee:7a:e8:1e:ac:44:63:bd:31:
b3:61:c7:62:0d:e3:9c:72:4d:ea:87:f2:b9:63:00:90:99:96:
e5:d6:37:72:4a:59:e2:a6:c2:b1:aa:bc:33:66:9c:73:3c:12:
2d:0c:7b:e4:0f:3b:bf:fe:b9:cf:4a:a2:26:63:5f:01:34:b0:
d9:31:3e:fd:81:fb:6e:2e:4b:c2:d2:aa:5d:86:1c:52:e8:9a:
24:27:38:b2:33:12:20:56:19:7e:35:f2:48:d6:ca:55:b0:57:
d1:e8:ed:00:97:1a:c1:96:b6:c6:72:1b:77:c9:a1:57:18:eb:
7e:ff:56:41:2b:a2:af:fb:2d:23:25:2a:fe:02:4b:f7:e7:56:
2c:88:e0:fd:b1:d3:a5:99:52:97:fe:8a:42:3f:70:ab:8c:fd:
16:f1:83:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:57 2024 by rpki-client on console-fra.rpki-client.org