Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/L45pACJ0fDkF8f2GhqE1q4BB1VY.roa
File: L45pACJ0fDkF8f2GhqE1q4BB1VY.roa (raw, json)
Hash identifier: 6G7CwPmasOk/Dui+oqRUPscz1YTeOx9ocoGi40eRxUI=
Subject key identifier: 2F:8E:69:00:22:74:7C:39:05:F1:FD:86:86:A1:35:AB:80:41:D5:56
Certificate issuer: /CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Certificate serial: 018283A89DCE27E58CA0D1E92A7D68305D4A
Authority key identifier: 4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/L45pACJ0fDkF8f2GhqE1q4BB1VY.roa
Signing time: Tue 09 Aug 2022 17:30:41 +0000
ROA not before: Tue 09 Aug 2022 17:30:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 194.34.105.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:83:a8:9d:ce:27:e5:8c:a0:d1:e9:2a:7d:68:30:5d:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4dd954d3c77c9c4e37eebf753d86f3dcf091d4a9
Validity
Not Before: Aug 9 17:30:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f8e690022747c3905f1fd8686a135ab8041d556
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:20:51:ba:57:4d:c4:94:1b:9f:e3:5a:5f:0f:
6f:aa:ed:30:3c:b9:e0:28:b6:ab:70:c8:12:dd:86:
e2:c3:25:39:c8:66:76:fc:cf:9c:67:57:70:5a:09:
41:1b:37:74:09:70:bb:f8:10:23:bc:df:99:ac:57:
62:45:4b:69:c7:81:ea:8b:37:55:40:98:d8:01:b3:
a9:d9:5b:2e:06:b0:bb:48:d1:50:5b:c4:1e:e9:6d:
1a:43:91:17:97:9a:fd:40:6e:26:64:6b:0b:e7:fb:
cf:2c:a6:22:b4:13:ce:10:7a:a1:34:33:b3:e4:34:
21:25:f6:32:83:b8:75:c0:0a:7d:b7:5a:77:f5:e0:
08:b8:32:d3:25:05:bd:71:ed:d6:b7:29:7a:02:a9:
e8:97:d3:72:84:aa:23:58:95:15:00:ef:b3:ad:be:
0f:36:41:d9:a7:fd:cb:fc:dd:e0:b1:28:65:ae:75:
0b:c2:cd:5f:ff:7e:5d:44:95:bc:37:1f:ed:4c:ba:
36:46:91:01:a8:69:b2:84:4d:72:db:df:e2:77:d2:
c2:c2:ca:ae:a1:81:81:90:c3:2b:e3:f1:c6:db:92:
67:73:38:ed:70:9c:94:d7:6d:ed:c2:1f:63:1f:a7:
61:44:4d:d9:f0:19:e7:66:45:ad:a7:f6:35:57:63:
3b:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:8E:69:00:22:74:7C:39:05:F1:FD:86:86:A1:35:AB:80:41:D5:56
X509v3 Authority Key Identifier:
keyid:4D:D9:54:D3:C7:7C:9C:4E:37:EE:BF:75:3D:86:F3:DC:F0:91:D4:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TdlU08d8nE437r91PYbz3PCR1Kk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/L45pACJ0fDkF8f2GhqE1q4BB1VY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/7a2a99-146c-4781-a302-eb7aaa6828be/1/TdlU08d8nE437r91PYbz3PCR1Kk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.34.105.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:4d:27:e5:24:fd:91:03:13:20:e2:52:8a:a1:74:f9:5f:e4:
05:45:66:a2:ee:b3:80:68:fd:b2:71:a7:b9:59:79:8b:00:1a:
ac:16:3d:7b:b6:1e:8c:9e:32:a0:65:2d:9f:cc:f5:05:fe:78:
72:df:df:01:47:75:e4:29:20:0d:ab:9d:9e:47:a5:4a:06:68:
11:40:1b:ba:87:f5:54:26:83:6c:51:cb:03:f5:64:b9:1c:bd:
d3:8b:87:a3:e7:89:a1:9e:83:1b:f3:73:eb:43:c6:2d:00:6e:
11:bd:d0:01:fa:4e:65:d3:71:cd:10:bf:95:39:f1:e0:0a:1a:
90:12:26:52:f0:a4:66:30:0a:a3:f5:6f:74:ac:10:72:b2:fe:
e7:b1:67:bc:56:50:6d:03:a6:c3:e7:03:b7:30:3e:31:e7:dd:
43:e7:17:ca:4e:31:87:c8:44:1a:d9:a2:8e:c1:bc:1a:a2:ad:
a9:37:c8:de:f1:e9:72:27:17:79:53:a5:64:29:84:8d:a3:da:
b9:6d:fb:f3:f9:34:3f:5f:9e:ad:30:96:97:8f:7a:0f:8a:a0:
40:a4:d9:78:40:73:70:97:f9:48:8c:e5:e5:21:50:b4:c7:3a:
21:ea:6c:eb:fe:43:70:a7:c5:a0:77:c8:c3:f7:74:a0:a4:9f:
47:aa:fe:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:23 2024 by rpki-client on console-fra.rpki-client.org