Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/LTcAPytNC8tdP4PST0sg-TnlRKg.roa
File: LTcAPytNC8tdP4PST0sg-TnlRKg.roa (raw, json)
Hash identifier: 1IwZalC4/bzt4/0/Bj9XyM0lTTvYmkLXWDFTe0DaZhw=
Subject key identifier: 2D:37:00:3F:2B:4D:0B:CB:5D:3F:83:D2:4F:4B:20:F9:39:E5:44:A8
Certificate issuer: /CN=a4929fcd61dc69dccfbe01d5ff0035b41ac95260
Certificate serial: 0183EEB7487A67FF84260BAD7ABEEC493A7E
Authority key identifier: A4:92:9F:CD:61:DC:69:DC:CF:BE:01:D5:FF:00:35:B4:1A:C9:52:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pJKfzWHcadzPvgHV_wA1tBrJUmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/LTcAPytNC8tdP4PST0sg-TnlRKg.roa
Signing time: Wed 19 Oct 2022 05:28:52 +0000
ROA not before: Wed 19 Oct 2022 05:28:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 45.150.16.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:ee:b7:48:7a:67:ff:84:26:0b:ad:7a:be:ec:49:3a:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4929fcd61dc69dccfbe01d5ff0035b41ac95260
Validity
Not Before: Oct 19 05:28:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d37003f2b4d0bcb5d3f83d24f4b20f939e544a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:9d:ea:10:9c:ba:63:63:c0:c9:69:a5:d0:40:
7e:63:04:f9:cd:69:18:97:fa:1f:12:04:a8:10:6a:
34:08:14:2e:ec:a9:35:6a:65:e6:f2:e3:a5:08:ed:
6a:d6:0c:47:61:39:0b:74:7e:22:85:01:96:60:7f:
91:71:b9:05:d6:63:a0:1b:33:f6:cd:92:a2:fa:c0:
d0:d9:b0:cd:d9:8e:c7:73:ef:74:b4:e3:6b:2c:53:
de:81:c8:66:54:ed:cb:28:d7:d1:79:ae:36:f8:9a:
fd:ce:72:af:a6:84:50:f2:73:6b:7d:b1:93:cb:66:
7a:ab:9b:12:76:a6:74:84:43:90:60:c4:02:40:4c:
07:d7:2f:0a:15:d2:60:a8:31:7d:f6:40:ce:8a:2a:
ef:26:76:ce:b9:92:d3:d4:47:52:74:25:9c:3e:4b:
fe:b3:52:95:1c:50:33:61:a0:73:d6:cc:be:8a:75:
cf:43:89:5f:fc:62:be:3a:cd:b6:64:bf:c1:ae:18:
f0:f3:ce:9c:69:06:c1:e1:d9:ab:08:9e:09:26:e1:
0f:a0:89:82:83:fa:8b:bd:3e:75:d8:2d:25:16:0f:
2d:2c:4d:57:58:46:c6:1f:5a:89:b1:3e:3f:8a:99:
c1:bc:c3:3e:88:2f:1d:cb:96:2c:23:71:9b:4d:62:
7e:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:37:00:3F:2B:4D:0B:CB:5D:3F:83:D2:4F:4B:20:F9:39:E5:44:A8
X509v3 Authority Key Identifier:
keyid:A4:92:9F:CD:61:DC:69:DC:CF:BE:01:D5:FF:00:35:B4:1A:C9:52:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pJKfzWHcadzPvgHV_wA1tBrJUmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/LTcAPytNC8tdP4PST0sg-TnlRKg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/5a2117-f583-445d-b72e-eba9c5cb32d0/1/pJKfzWHcadzPvgHV_wA1tBrJUmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.16.0/22
Signature Algorithm: sha256WithRSAEncryption
36:ab:64:60:58:0c:5d:1d:a3:97:4e:a2:71:15:a7:89:03:a3:
df:c2:1f:9a:07:c0:63:35:57:18:a2:b3:b2:0d:f5:fb:b8:54:
85:be:26:c7:14:5c:99:f9:e0:31:aa:3b:bd:27:f5:53:ae:67:
63:28:1b:fc:8c:15:b7:0f:f5:00:ff:df:1f:1e:83:1d:83:80:
de:84:5a:82:61:61:84:11:96:72:fa:ab:4f:3e:c2:63:6f:0e:
a6:63:94:b3:a0:70:ea:e6:66:6d:5e:78:f8:31:74:8a:3d:18:
47:bb:8e:96:dd:bc:86:3b:a3:9b:a6:d9:3e:5c:1e:30:ec:d0:
74:04:a8:da:b9:37:fa:8a:1f:66:90:57:6d:cd:0c:7b:b4:78:
c5:e4:d7:68:f6:de:46:fc:14:66:8f:88:34:5d:c5:a7:64:a2:
a4:4e:3b:f8:e5:3f:bf:ab:8c:7f:00:c0:d5:0f:96:06:20:55:
7f:1e:94:f0:66:56:0d:17:17:0c:ff:5d:08:32:e2:d7:7e:61:
09:35:e5:af:e0:bc:2e:be:9d:a3:dc:90:06:0d:5a:58:e5:ca:
26:98:ed:0e:6b:b1:a1:b2:0e:8d:48:48:d9:14:25:81:0a:34:
1e:df:e1:4a:84:b5:8b:eb:86:92:a2:54:53:27:f9:ca:7c:36:
8b:0e:f2:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:38 2024 by rpki-client on console-ams.rpki-client.org