Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/L3pgVBIjagrIcvAtaxbRdUQQHXo.roa
File: L3pgVBIjagrIcvAtaxbRdUQQHXo.roa (raw, json)
Hash identifier: Xvxvo/xNIatqwFngSvRdta4vL+u8vh8qY78OKzXpIDw=
Subject key identifier: 2F:7A:60:54:12:23:6A:0A:C8:72:F0:2D:6B:16:D1:75:44:10:1D:7A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1B9A64F2
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/L3pgVBIjagrIcvAtaxbRdUQQHXo.roa
Signing time: Mon 06 Jun 2022 10:41:38 +0000
ROA not before: Mon 06 Jun 2022 10:41:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.138.17.0/24 maxlen: 24
2a0f:e380::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 463103218 (0x1b9a64f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jun 6 10:41:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f7a605412236a0ac872f02d6b16d17544101d7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:96:37:2e:23:75:25:de:e0:73:e4:96:c0:67:
9c:d0:d6:19:4f:86:42:61:96:22:14:d7:d8:ba:c1:
86:a3:32:71:13:ff:3a:a9:2b:6d:a5:57:6b:cf:f9:
26:22:ea:74:f5:1e:c0:b9:b6:ac:66:50:74:c3:8f:
3b:64:ac:dd:d1:5e:5e:9a:d0:e3:87:7d:38:2a:16:
35:ac:e2:59:92:6a:8f:7a:99:94:cb:03:70:2d:3c:
3c:bf:cf:3c:be:f7:5f:cf:52:11:5c:1e:19:c6:7c:
c3:8c:5e:eb:ed:7c:3d:68:39:d5:fe:b4:1c:21:42:
41:1a:20:65:c5:a7:b9:a0:fa:13:09:ac:f1:f8:f6:
72:cc:06:c5:e4:fe:ad:05:e1:7b:51:9b:bf:ce:b9:
63:69:e6:5f:f7:13:aa:af:35:7c:4b:73:a2:4d:df:
93:51:df:5e:90:76:0a:f2:80:20:44:fa:a6:e2:c6:
54:67:fe:5b:c1:62:e6:f4:e6:87:5b:fe:3c:e7:af:
77:f1:1b:51:e4:e9:e6:af:50:e6:3a:cf:6a:e2:ee:
57:45:90:06:61:6c:8d:24:28:e2:da:28:0d:ca:70:
22:fb:c0:d2:e2:0b:14:89:79:01:90:eb:5f:a8:9e:
04:81:19:bb:63:5a:13:7b:0b:5a:c7:4f:b2:8c:58:
f4:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:7A:60:54:12:23:6A:0A:C8:72:F0:2D:6B:16:D1:75:44:10:1D:7A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/L3pgVBIjagrIcvAtaxbRdUQQHXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.17.0/24
IPv6:
2a0f:e380::/32
Signature Algorithm: sha256WithRSAEncryption
78:81:79:5c:7f:cc:b8:72:94:8f:6f:35:64:a8:b7:7a:43:78:
80:cb:ec:97:22:9f:84:a0:4d:23:78:89:19:ce:c3:89:0f:15:
17:27:94:51:79:fc:3b:66:96:d3:38:37:d2:05:19:7a:82:d3:
31:6d:96:40:af:ea:00:b4:46:58:43:07:30:84:5c:6d:c8:71:
76:58:8d:19:a4:6d:15:8e:6d:b6:91:21:40:a8:e7:55:76:87:
7e:68:66:ca:3a:7c:56:d4:54:15:f2:ce:00:05:5e:0c:d3:07:
43:f4:42:74:38:8d:14:d6:1f:9d:6e:1d:5b:65:8c:4b:6e:e0:
b1:84:35:2d:04:30:e7:00:11:3d:ea:e6:e9:24:b0:fc:63:34:
0e:da:47:3e:66:40:d1:db:f2:62:e8:b0:e9:93:1e:7a:f5:91:
35:f4:d7:b8:e5:96:97:89:0f:f3:49:02:86:3e:76:79:ca:cc:
39:95:70:a1:2d:23:84:c4:37:3e:47:c4:bb:7d:fe:f0:bf:89:
11:8f:9b:4d:e0:d9:b3:0e:54:49:04:9c:53:09:75:29:b7:23:
bf:e5:9c:0e:c0:1c:45:4e:49:45:59:c5:b3:4d:d1:50:78:80:
74:8b:86:6c:c6:4e:e5:85:0f:ec:58:84:72:2a:36:0c:f1:50:
e4:ae:0b:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:35:51 2024 by rpki-client on console-ams.rpki-client.org