Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/TJpL9lf9HJD2aOY7GgXMD7Z9IZo.roa
File: TJpL9lf9HJD2aOY7GgXMD7Z9IZo.roa (raw, json)
Hash identifier: yoBw6P/yJpRB9lZ7+Qba+jIsx9Bn+sPBgT3Yd3v6NdQ=
Subject key identifier: 4C:9A:4B:F6:57:FD:1C:90:F6:68:E6:3B:1A:05:CC:0F:B6:7D:21:9A
Certificate issuer: /CN=54404da602dab0625be7223d09320b1cd7aafced
Certificate serial: 0858399C
Authority key identifier: 54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/TJpL9lf9HJD2aOY7GgXMD7Z9IZo.roa
Signing time: Mon 18 Apr 2022 13:41:28 +0000
ROA not before: Mon 18 Apr 2022 13:41:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45040
IP address blocks: 45.152.76.0/24 maxlen: 24
45.152.77.0/24 maxlen: 24
45.152.79.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 139999644 (0x858399c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54404da602dab0625be7223d09320b1cd7aafced
Validity
Not Before: Apr 18 13:41:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4c9a4bf657fd1c90f668e63b1a05cc0fb67d219a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:cf:61:92:16:5a:f7:1f:e7:c1:cc:6c:07:7b:
18:f9:db:5f:c2:b7:b9:97:05:fa:4d:81:64:e5:35:
d9:48:25:1f:60:28:f4:8b:0c:64:e4:a6:5f:20:c0:
b5:99:a3:f1:f0:99:77:35:91:dc:51:4e:4f:06:2e:
e3:5d:e4:53:75:58:fc:6d:ef:d9:ea:f1:cb:fa:5b:
cc:f7:e4:43:29:3c:85:67:93:a7:56:85:cc:eb:9a:
21:62:db:56:a6:ac:13:a4:d3:63:08:f4:71:fa:f1:
37:33:cd:37:26:44:36:07:5d:d3:2b:8c:3c:52:05:
fb:71:cb:5f:66:63:3a:3d:40:5f:30:ae:fb:2f:aa:
df:f4:17:47:a1:ec:f9:b6:3f:45:a5:a3:0e:e2:45:
26:4a:f6:d7:e4:25:09:06:46:f5:cf:97:42:79:b0:
4c:da:a4:8d:1d:9e:82:e6:aa:a5:8b:4c:55:14:f0:
ee:ad:14:2d:ba:5e:23:20:74:d5:7c:ad:c6:ff:26:
b7:82:22:e1:34:4f:81:06:d9:dd:05:ba:42:c8:98:
f9:d3:eb:dc:dc:0f:51:c2:c9:92:ad:b5:07:18:19:
3b:75:a7:fb:d6:8a:90:d0:44:75:b4:74:8a:4a:50:
0f:f6:23:af:d1:a2:c6:bf:50:ef:40:8e:78:cb:e6:
93:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:9A:4B:F6:57:FD:1C:90:F6:68:E6:3B:1A:05:CC:0F:B6:7D:21:9A
X509v3 Authority Key Identifier:
keyid:54:40:4D:A6:02:DA:B0:62:5B:E7:22:3D:09:32:0B:1C:D7:AA:FC:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VEBNpgLasGJb5yI9CTILHNeq_O0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/TJpL9lf9HJD2aOY7GgXMD7Z9IZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/7d2cb5-bddf-4201-baf8-1b24484e55ec/1/VEBNpgLasGJb5yI9CTILHNeq_O0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.76.0/23
45.152.79.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:00:04:34:c4:1c:8e:c9:47:c1:a4:74:82:9a:e0:b6:a3:83:
d5:5a:e1:93:d9:1c:5b:a4:45:7b:93:b3:c7:a9:89:4b:91:35:
05:40:8c:bb:ea:c3:8c:12:0d:e7:e9:1c:a9:10:90:41:75:21:
63:1d:97:3a:27:4f:46:88:b4:67:e9:02:fb:43:79:3d:ac:3f:
c7:4a:a1:ff:bc:5f:fb:5b:3e:ce:5b:29:b2:de:1d:c9:98:d9:
02:45:1e:e3:84:da:c9:87:61:ea:4e:db:75:cb:1c:85:b2:83:
48:8e:ec:f9:03:8f:dc:7e:7e:2d:5a:db:90:f8:ac:6a:47:25:
12:7c:ab:73:e9:fd:10:c6:4d:d6:8b:12:73:4d:1c:c8:a6:04:
96:c8:a5:68:84:fa:bb:95:68:52:dc:a0:08:1e:a7:05:ba:11:
c2:f3:b9:4b:28:35:0b:db:63:ba:a1:8a:38:61:b2:89:d5:0d:
43:7c:8c:53:f5:2a:58:ad:39:f9:9c:61:b5:91:dd:30:83:cf:
4f:27:61:b0:46:70:0f:98:f5:3e:04:6e:de:3c:48:a3:d3:05:
fe:68:19:99:70:9a:88:1a:55:83:b9:21:cb:ad:10:5a:d5:14:
e7:b0:d3:23:d2:1b:ef:60:b7:1c:79:a5:43:ba:8d:be:b1:12:
36:a5:0c:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:01 2024 by rpki-client on console-fra.rpki-client.org