Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/LYDp-BuUvY3iNluRU3iHr1mUfy0.roa
File: LYDp-BuUvY3iNluRU3iHr1mUfy0.roa (raw, json)
Hash identifier: YAPMjuhlWYOrK/zZ3fADLrZ4uMpjNACshCtpf5i+hbU=
Subject key identifier: 2D:80:E9:F8:1B:94:BD:8D:E2:36:5B:91:53:78:87:AF:59:94:7F:2D
Certificate issuer: /CN=29ba0a1d7848d2c1b231dd3e6824420d18799913
Certificate serial: 08C85FE6
Authority key identifier: 29:BA:0A:1D:78:48:D2:C1:B2:31:DD:3E:68:24:42:0D:18:79:99:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KboKHXhI0sGyMd0-aCRCDRh5mRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/LYDp-BuUvY3iNluRU3iHr1mUfy0.roa
Signing time: Thu 24 Feb 2022 17:36:55 +0000
ROA not before: Thu 24 Feb 2022 17:36:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208956
IP address blocks: 45.13.67.0/24 maxlen: 24
45.13.64.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147349478 (0x8c85fe6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ba0a1d7848d2c1b231dd3e6824420d18799913
Validity
Not Before: Feb 24 17:36:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2d80e9f81b94bd8de2365b91537887af59947f2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:17:8d:4b:33:3c:77:26:1e:fe:75:31:f4:54:
70:dc:76:43:95:b1:96:99:cc:9c:a4:e2:84:1a:da:
00:0f:21:a7:52:4c:f0:69:41:a3:22:30:ad:9d:86:
fc:ef:76:56:50:44:23:f8:21:c0:9b:7c:90:bc:67:
7a:c8:bc:0a:43:94:36:bb:26:ac:28:07:25:71:0b:
7f:f9:b6:c3:2f:65:83:fa:62:ab:fb:11:f9:c7:e2:
e4:39:4e:93:5d:27:fc:df:26:22:f7:65:f1:c3:80:
2d:44:ea:2a:33:4d:e3:ba:49:d1:7d:db:c8:fb:d0:
01:0b:d1:4e:cf:21:6b:5c:eb:4d:57:77:ed:90:72:
69:73:9f:75:58:a2:73:df:22:bc:d2:d7:39:4c:73:
ee:d1:06:68:11:a2:94:7b:8e:b0:5f:9c:7f:cc:60:
1b:1d:3f:b9:7e:3d:89:b6:7d:e5:17:4a:b1:3a:2d:
38:f4:8a:f2:eb:c3:a3:44:e7:61:ba:43:68:e1:d9:
c1:1e:c1:9d:42:05:bc:d3:66:fa:7a:c7:12:af:19:
74:43:af:7e:95:eb:b6:ec:fc:29:b2:de:ab:03:42:
34:1b:a7:b9:80:84:4e:aa:9f:26:49:a6:7c:78:f7:
49:bd:2c:d7:2c:a0:43:d2:15:5e:7b:97:0f:1b:85:
b0:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:80:E9:F8:1B:94:BD:8D:E2:36:5B:91:53:78:87:AF:59:94:7F:2D
X509v3 Authority Key Identifier:
keyid:29:BA:0A:1D:78:48:D2:C1:B2:31:DD:3E:68:24:42:0D:18:79:99:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KboKHXhI0sGyMd0-aCRCDRh5mRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/LYDp-BuUvY3iNluRU3iHr1mUfy0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/KboKHXhI0sGyMd0-aCRCDRh5mRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.64.0/23
45.13.67.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:eb:1d:1a:05:86:f1:6a:78:08:d2:ab:5f:65:2f:ab:5d:f2:
29:9b:a8:a8:1f:da:a8:6a:cc:08:cf:3b:88:57:eb:d2:49:37:
9a:7c:e2:23:88:65:e1:5a:e3:59:3b:86:fa:ee:92:00:2e:bf:
16:9f:93:3e:10:64:f1:91:a1:db:0b:13:7e:f4:4a:81:65:03:
2a:df:b0:e4:03:50:cf:1c:e4:80:14:a4:02:51:96:ce:27:d9:
f7:f2:de:d7:35:a5:3b:28:bd:b0:75:7b:1f:50:62:9c:a7:ab:
5f:c6:bf:8b:95:c9:7e:84:2a:5a:5d:f2:a0:4f:72:72:f2:11:
a1:a2:5b:16:14:d7:05:9c:59:8c:9f:44:19:50:ee:e3:a7:f6:
c4:bb:92:cc:1d:26:03:bc:b4:06:60:bc:c9:27:b6:b4:34:1e:
b4:9e:9f:d6:fb:02:35:be:54:c8:a7:18:7d:cb:70:d9:4f:12:
d6:3f:42:65:23:a3:f8:d2:6f:7c:f8:a3:53:05:69:c0:ec:8a:
de:52:9c:ad:7f:2e:32:52:8e:0b:5f:a4:11:f3:4e:76:06:02:
b5:6a:46:36:7f:db:a9:4a:04:38:3b:26:e2:d3:c6:4b:21:49:
ea:43:07:23:d3:c5:81:77:3e:19:19:1d:f3:61:ba:fb:79:57:
27:88:9d:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:01 2024 by rpki-client on console-fra.rpki-client.org