Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/LQnMRh4Jo7e44xy9-XvKvJOq3as.roa
File: LQnMRh4Jo7e44xy9-XvKvJOq3as.roa (raw, json)
Hash identifier: f1jLlWaqiG1NHNN1ZiwO7lF4JNVAhM82f2MJdRGXO+A=
Subject key identifier: 2D:09:CC:46:1E:09:A3:B7:B8:E3:1C:BD:F9:7B:CA:BC:93:AA:DD:AB
Certificate issuer: /CN=6e83f698800d6ae719970adfaa4fb882fa5156df
Certificate serial: 01820BCB5044C4F4EC1DAB3AD3616144C4E6
Authority key identifier: 6E:83:F6:98:80:0D:6A:E7:19:97:0A:DF:AA:4F:B8:82:FA:51:56:DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/boP2mIANaucZlwrfqk-4gvpRVt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/LQnMRh4Jo7e44xy9-XvKvJOq3as.roa
Signing time: Sun 17 Jul 2022 10:54:09 +0000
ROA not before: Sun 17 Jul 2022 10:54:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.144.174.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:0b:cb:50:44:c4:f4:ec:1d:ab:3a:d3:61:61:44:c4:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e83f698800d6ae719970adfaa4fb882fa5156df
Validity
Not Before: Jul 17 10:54:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d09cc461e09a3b7b8e31cbdf97bcabc93aaddab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:a8:75:7c:30:5d:84:ab:52:11:c8:c4:c8:e3:
1b:1f:9a:ad:c2:58:5c:99:a5:66:29:1c:80:d0:42:
e3:0b:41:87:d0:4e:b4:d1:05:9b:ef:24:fc:5d:30:
df:56:63:ab:85:c4:b8:28:f7:9e:be:58:67:da:22:
a2:a2:45:c6:b9:53:20:17:86:af:b7:de:72:63:4d:
10:66:f6:0a:d1:8b:2a:ba:09:df:2a:4c:c3:b4:b2:
25:d0:f3:5d:91:5e:f1:60:ac:87:ff:4e:e7:85:e5:
63:f7:ba:9e:ea:7d:18:41:57:eb:ea:4b:c9:28:27:
77:6b:44:71:b1:bf:48:35:e5:63:56:76:08:2f:b4:
34:b4:49:d8:ef:b5:ef:eb:14:d8:6b:ac:68:db:af:
b7:16:35:33:5a:7a:ee:56:75:7e:32:7c:d7:bf:d9:
f8:f2:0e:49:08:cf:32:d5:37:43:bc:a4:72:4d:9d:
52:a5:96:c0:62:c6:87:ca:8e:1b:6c:9b:dc:b0:f9:
da:4e:bd:58:a7:fa:22:cf:b3:f5:67:d5:93:a0:d3:
8c:5f:8c:67:6d:59:a7:fa:31:88:cb:60:ae:7b:40:
ff:9c:f8:fc:2c:64:2b:7c:2f:c1:c1:91:e8:35:7a:
1e:23:94:88:03:a8:22:5e:a6:28:e2:e2:01:4a:bb:
37:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:09:CC:46:1E:09:A3:B7:B8:E3:1C:BD:F9:7B:CA:BC:93:AA:DD:AB
X509v3 Authority Key Identifier:
keyid:6E:83:F6:98:80:0D:6A:E7:19:97:0A:DF:AA:4F:B8:82:FA:51:56:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/boP2mIANaucZlwrfqk-4gvpRVt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/LQnMRh4Jo7e44xy9-XvKvJOq3as.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/59d1ba-d3af-446d-ad8b-6f762dfc0d0b/1/boP2mIANaucZlwrfqk-4gvpRVt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.174.0/24
Signature Algorithm: sha256WithRSAEncryption
3b:3c:5b:7a:a7:17:c7:60:90:4b:2f:12:6e:6c:4d:8b:83:ea:
de:36:d7:fb:12:d9:d3:a1:b8:5b:c7:c5:d3:90:54:81:fd:46:
a1:3c:94:7c:f5:d9:05:e4:0c:c8:3a:27:18:c4:3d:0d:04:fd:
f0:78:8e:77:a2:0b:2e:f0:80:0f:0f:81:dd:03:95:02:61:e0:
c0:67:13:bd:6f:48:78:1c:6e:91:11:bc:4c:3a:9f:e0:cc:80:
ce:3d:65:f0:7d:a0:ac:7a:99:52:b9:60:c2:93:38:27:4a:b9:
aa:34:12:18:9b:4c:53:c8:25:ea:72:15:ef:f4:3e:05:a7:3d:
e4:42:d7:76:90:8d:03:3c:3c:23:59:3c:56:a8:0f:83:53:27:
bf:81:9f:96:b3:f5:c1:67:db:f5:99:c1:bb:e6:cf:0b:fb:c9:
c7:de:c6:cf:a5:44:92:11:8c:e5:ee:eb:4b:dc:4c:c3:62:73:
50:01:62:71:bf:e3:b3:3d:99:d7:20:62:1e:cb:35:41:ec:d0:
e1:a1:bf:ee:a6:69:ce:31:86:22:38:8b:04:42:91:43:48:90:
aa:f1:d8:94:95:86:f4:d0:fb:94:ec:a6:a5:15:e5:27:5f:f0:
9e:b8:51:75:d6:48:90:3e:b6:94:66:4f:fa:71:91:b2:af:fd:
79:cf:09:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:04 2023 by rpki-client on console-fra.rpki-client.org