Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/lNaTclyc5tDTGtka8aOjCP5dSbg.roa
File: lNaTclyc5tDTGtka8aOjCP5dSbg.roa (raw, json)
Hash identifier: XgIB6Dg6+5F1uOcpSwSbFajwPpd6j1E6bHhY1ZMy5Ag=
Subject key identifier: 94:D6:93:72:5C:9C:E6:D0:D3:1A:D9:1A:F1:A3:A3:08:FE:5D:49:B8
Certificate issuer: /CN=c8d5e37178d8524c72660a1d796165999e586622
Certificate serial: 0420FB2D
Authority key identifier: C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/lNaTclyc5tDTGtka8aOjCP5dSbg.roa
Signing time: Tue 25 Jan 2022 11:04:36 +0000
ROA not before: Tue 25 Jan 2022 11:04:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.151.204.0/22 maxlen: 24
45.67.44.0/22 maxlen: 22
2.57.180.0/22 maxlen: 24
45.15.52.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69270317 (0x420fb2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c8d5e37178d8524c72660a1d796165999e586622
Validity
Not Before: Jan 25 11:04:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=94d693725c9ce6d0d31ad91af1a3a308fe5d49b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:93:6b:d2:48:19:e2:87:1f:ef:5a:5f:56:54:
ef:f3:e4:9d:c1:b3:c6:8a:bb:f8:57:ef:18:3e:e7:
85:97:b8:fd:0b:4e:76:b6:10:39:98:12:cc:f6:65:
00:19:98:ce:13:7a:8d:ca:26:1f:9f:02:31:53:b1:
29:6f:6e:a3:ff:0d:09:f2:9d:2c:32:a8:e8:ae:fe:
0a:bd:dd:99:40:18:0f:5a:5d:05:62:a8:aa:9e:ca:
07:e5:8f:39:e1:66:61:c3:15:f8:8b:8a:cd:98:9c:
6d:cb:a7:ab:e6:b8:f9:09:03:8b:06:5d:66:a2:97:
00:ca:bd:7b:8c:d9:2e:21:93:8e:ec:68:e5:00:f5:
f0:e5:75:6b:21:4e:c4:01:f0:5e:3b:ef:76:0b:e4:
4b:e4:62:d7:2c:ae:a6:4a:1e:b2:be:12:f9:24:ec:
2f:f3:93:06:3f:94:4e:15:24:7a:f7:c7:fb:42:84:
b1:ab:a7:d4:aa:0a:74:7e:1e:9c:b6:52:7a:97:de:
a8:7e:cf:6a:e2:b1:48:70:7b:cd:f6:b3:a6:d8:6c:
2c:df:77:47:10:7b:b3:10:34:07:75:1a:37:6e:64:
47:07:88:e3:de:4a:20:23:7e:88:25:d9:d0:f6:b8:
6a:76:6c:87:16:b4:ac:4f:43:fd:7f:42:1b:84:f2:
f9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:D6:93:72:5C:9C:E6:D0:D3:1A:D9:1A:F1:A3:A3:08:FE:5D:49:B8
X509v3 Authority Key Identifier:
keyid:C8:D5:E3:71:78:D8:52:4C:72:66:0A:1D:79:61:65:99:9E:58:66:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yNXjcXjYUkxyZgodeWFlmZ5YZiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/lNaTclyc5tDTGtka8aOjCP5dSbg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/b54ca3-73d5-4984-8782-9e0aed2fb8ec/1/yNXjcXjYUkxyZgodeWFlmZ5YZiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.57.180.0/22
45.15.52.0/22
45.67.44.0/22
45.151.204.0/22
Signature Algorithm: sha256WithRSAEncryption
65:e4:c8:40:56:a5:d3:fe:ee:86:42:b4:df:fd:9f:0b:11:40:
35:e4:ab:b2:0a:fd:2f:4f:0c:6f:61:14:a7:f4:e9:1e:d8:34:
3e:f3:4f:7a:0e:4e:19:0b:88:6b:f9:89:77:19:d4:b7:37:79:
5e:1a:6c:1f:b4:a5:08:30:4a:52:58:63:cf:85:5a:a5:55:ed:
f5:f2:91:55:63:26:92:bd:54:54:ba:27:39:9a:72:c7:92:94:
06:aa:48:61:00:57:00:4a:8f:7f:3a:bb:8b:7e:6e:8b:ab:a5:
43:e6:a6:9b:d9:b8:22:14:75:b1:e3:cd:24:06:6c:2c:5a:14:
fe:3e:ad:c5:b8:26:44:62:ab:57:9f:1f:97:f4:b2:10:91:4c:
4e:cf:59:0e:a7:e7:2a:24:60:5e:ae:60:a5:6b:3f:f8:66:24:
56:d0:52:1c:1e:99:84:a6:25:7c:f3:16:fc:35:ba:33:d0:88:
dc:35:2d:6c:5b:2a:12:b9:66:b2:89:51:f6:7d:8d:d4:b2:57:
45:1a:3d:37:9b:c2:d0:62:d8:fd:38:a9:bb:48:7d:db:37:dc:
3e:d4:60:2a:48:1f:60:2d:7b:70:54:df:fe:c6:f8:fe:b2:db:
2f:a6:fd:27:7f:83:48:17:c8:fe:6a:5d:c4:86:65:83:02:50:
cc:ef:ca:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:02 2024 by rpki-client on console-ams.rpki-client.org