Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/LNcjUz5b5HtoLzbO26rI7ANObHU.roa
File: LNcjUz5b5HtoLzbO26rI7ANObHU.roa (raw, json)
Hash identifier: 9ufRxIkv5blPdqch/CwfiVDDW/HJ+ozn7A6xKRTkQnI=
Subject key identifier: 2C:D7:23:53:3E:5B:E4:7B:68:2F:36:CE:DB:AA:C8:EC:03:4E:6C:75
Certificate issuer: /CN=ff44dbaca56dac319401f68a50d917f5424611ad
Certificate serial: 85B9F8
Authority key identifier: FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/LNcjUz5b5HtoLzbO26rI7ANObHU.roa
Signing time: Sat 26 Mar 2022 20:05:44 +0000
ROA not before: Sat 26 Mar 2022 20:05:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 45.143.9.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8763896 (0x85b9f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff44dbaca56dac319401f68a50d917f5424611ad
Validity
Not Before: Mar 26 20:05:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2cd723533e5be47b682f36cedbaac8ec034e6c75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d4:6e:58:9f:70:2e:9b:a5:b9:a8:92:fa:6f:
0e:25:c9:b4:32:0d:0d:43:59:86:35:02:27:be:75:
ef:a0:b5:a8:0f:92:60:78:fc:7c:41:86:f5:28:98:
98:c1:b6:2f:b6:4c:2b:94:f0:2a:71:9a:ba:3e:98:
ec:91:4a:4c:36:af:fc:fe:65:d7:f2:f8:2a:2c:ce:
86:99:a9:4a:38:6b:bb:df:86:9e:13:97:40:27:a4:
62:1c:72:d8:25:8c:3f:bf:8c:39:9f:b1:d7:94:70:
1a:d8:84:fc:d0:85:26:2e:96:d7:35:0b:d5:34:3b:
8d:fd:c6:3e:df:1a:d3:aa:13:08:ed:8b:41:68:79:
46:46:52:f1:93:1b:81:c5:79:89:e8:e4:24:41:81:
2d:e1:be:75:37:d8:88:84:b9:f3:b3:60:36:e2:08:
83:c4:b6:34:dc:60:92:ee:3c:6c:74:a1:9c:db:da:
bb:69:af:d5:1f:43:8b:4d:c2:93:d5:4c:54:db:3f:
ab:05:0d:17:07:64:71:21:0e:6b:9b:15:e7:92:1f:
61:89:c9:30:f2:ba:f9:f9:5b:e4:ce:25:c5:02:80:
48:f1:5a:e1:59:39:13:8d:10:39:56:af:b6:9f:03:
fa:04:45:58:ac:5c:40:72:36:ec:ec:e7:23:0a:2b:
9b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D7:23:53:3E:5B:E4:7B:68:2F:36:CE:DB:AA:C8:EC:03:4E:6C:75
X509v3 Authority Key Identifier:
keyid:FF:44:DB:AC:A5:6D:AC:31:94:01:F6:8A:50:D9:17:F5:42:46:11:AD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_0TbrKVtrDGUAfaKUNkX9UJGEa0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/LNcjUz5b5HtoLzbO26rI7ANObHU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/53a947-fd03-4014-9827-c5d8950818ec/1/_0TbrKVtrDGUAfaKUNkX9UJGEa0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.9.0/24
Signature Algorithm: sha256WithRSAEncryption
94:b4:33:73:36:85:f2:8b:e4:59:04:0d:bc:88:7e:6a:c8:6e:
79:7f:94:04:e0:9b:9f:b6:ba:29:75:cc:5f:75:87:b8:d6:ce:
48:73:91:3c:62:1e:ef:14:df:d3:78:21:fc:8b:f3:ca:f6:03:
17:25:1f:db:6a:c4:53:93:d7:fc:7e:88:7c:a1:04:ab:42:48:
77:b8:31:84:b5:a6:a8:5c:d0:39:e4:4a:33:ad:83:0b:0f:af:
a1:f7:d9:b2:22:b1:82:0d:6d:89:60:6c:3b:f4:64:f7:f5:81:
dc:91:5f:44:38:21:17:c0:d1:99:5c:25:15:ac:20:66:2f:f2:
01:1a:93:b3:65:2c:93:dc:b9:68:8b:a6:8f:1b:d9:32:9f:01:
71:77:6b:3a:41:63:7f:30:15:f4:60:83:4c:35:1e:ec:81:34:
87:f8:30:b5:04:f1:de:85:1c:61:14:82:1e:19:1b:7b:e3:28:
c4:aa:ff:a8:2d:be:b2:80:5b:ff:4a:6f:07:e3:33:8a:ee:e1:
ca:ed:d0:a6:e8:89:83:63:b3:21:c3:f1:a6:81:0f:ff:db:bb:
ef:e0:18:1e:56:1b:1c:38:9b:61:e7:7c:75:1f:89:66:c6:da:
db:1d:7f:fb:ae:dc:4d:60:50:cd:9b:7e:8e:d0:ac:51:51:65:
aa:0b:04:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:02 2023 by rpki-client on console-fra.rpki-client.org