Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IlDT2t0eOYWk-3OSl3jnJxGz9yc.roa
File: IlDT2t0eOYWk-3OSl3jnJxGz9yc.roa (raw, json)
Hash identifier: ag4WiRp+MRICZcn2d3Tqy/Wm/7U/qEZTT/QB4ChsCjU=
Subject key identifier: 22:50:D3:DA:DD:1E:39:85:A4:FB:73:92:97:78:E7:27:11:B3:F7:27
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01821BE0AD13AEC9005B62839CDE850111C1
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IlDT2t0eOYWk-3OSl3jnJxGz9yc.roa
Signing time: Wed 20 Jul 2022 13:51:25 +0000
ROA not before: Wed 20 Jul 2022 13:51:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210619
IP address blocks: 45.12.70.0/23 maxlen: 24
2a0e:97c0:5c0::/44 maxlen: 48
2a0e:97c0:800::/39 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1b:e0:ad:13:ae:c9:00:5b:62:83:9c:de:85:01:11:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Jul 20 13:51:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2250d3dadd1e3985a4fb73929778e72711b3f727
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:41:26:d1:85:9f:e1:be:93:0f:d4:ea:13:44:
0a:3e:a7:58:e6:26:08:9a:b7:eb:a8:9f:e2:e7:30:
d0:50:d2:49:66:0a:c0:f7:7c:6c:ac:f7:5d:71:ba:
f8:08:30:99:c3:0f:39:da:91:65:57:a1:e0:ce:c9:
fe:28:8d:20:d8:3f:e8:3b:4a:48:54:e0:d2:67:95:
a9:e7:0b:ff:5c:1c:25:28:d3:b2:0d:2e:d2:a7:10:
b3:af:bf:9d:61:cc:3b:41:65:ea:07:83:1d:cb:ad:
32:d0:61:ca:0e:eb:83:85:18:26:44:5a:51:c1:f4:
84:51:58:dd:79:d8:c8:64:db:eb:e1:88:3f:23:2e:
ee:c6:cc:3b:1f:a1:3b:d3:66:9d:c2:4d:73:a1:f1:
47:cb:9d:a1:44:d6:3e:71:12:03:0c:b1:b7:10:f4:
9a:a1:31:21:4b:05:bc:86:0f:16:cd:78:57:e3:e6:
fa:58:6c:22:f0:4c:e5:84:bf:9e:15:f4:df:4f:6f:
fb:12:3f:5a:5d:b9:d6:d3:d0:ec:cc:c8:64:47:2d:
6c:4f:7c:0e:c3:60:d5:3c:de:12:cd:d2:e3:6d:7e:
1b:e1:e8:4f:50:ce:8b:5d:96:51:42:33:b4:08:74:
35:9b:4a:20:28:21:b1:8d:9a:05:7c:2d:5b:b3:a2:
22:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:50:D3:DA:DD:1E:39:85:A4:FB:73:92:97:78:E7:27:11:B3:F7:27
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/IlDT2t0eOYWk-3OSl3jnJxGz9yc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.70.0/23
IPv6:
2a0e:97c0:5c0::/44
2a0e:97c0:800::/39
Signature Algorithm: sha256WithRSAEncryption
08:21:2f:0c:2b:ba:87:35:60:5e:14:6e:7a:b8:8c:d3:82:94:
cb:07:db:34:17:29:7c:25:db:63:34:4b:66:b4:a4:1d:f1:7f:
64:b2:46:8a:3d:60:af:4f:ec:79:a9:f4:01:21:a9:8a:84:86:
96:87:c9:bd:ab:cc:d4:42:bc:99:38:b3:72:51:fc:39:35:b7:
00:79:8d:2e:3b:b6:45:b1:4c:e0:9c:6b:7a:c6:0d:65:75:90:
03:65:ce:a2:6f:59:cc:32:66:28:4a:92:04:cc:98:48:26:d7:
25:9d:08:8b:cc:39:88:08:fe:28:d2:97:44:57:27:78:2d:2d:
33:54:29:34:59:06:7f:56:16:06:83:45:60:0a:e4:8e:15:bb:
01:bf:5e:d6:b7:1b:03:29:d6:c8:e7:74:ad:b3:65:f0:bc:f1:
b7:c5:c3:bc:a6:b5:74:44:e7:6e:f3:04:d4:f9:34:db:ea:40:
11:ae:5b:89:c6:cc:4b:85:2b:cb:12:e3:49:f6:0f:e2:c3:61:
67:8c:06:48:fd:99:53:eb:2b:81:2c:0d:35:8c:1a:7f:90:1a:
7b:af:d6:00:fa:b0:99:f4:47:97:77:5c:a0:a8:c2:07:5a:03:
5b:93:c3:44:20:87:9d:32:de:f1:1c:db:c7:80:9f:de:ca:7f:
78:f4:50:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:57 2023 by rpki-client on console-ams.rpki-client.org