Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/L0G5OyrRak3F_v4D7gawB9jMnGE.roa
File: L0G5OyrRak3F_v4D7gawB9jMnGE.roa (raw, json)
Hash identifier: nr20lY/PtE9O71XL3lwyHc2ViL5g8EV8Os1m/vxMt2A=
Subject key identifier: 2F:41:B9:3B:2A:D1:6A:4D:C5:FE:FE:03:EE:06:B0:07:D8:CC:9C:61
Certificate issuer: /CN=53bd0992872152a86d60d963b87d01817c00fc53
Certificate serial: 07CFAD54
Authority key identifier: 53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/L0G5OyrRak3F_v4D7gawB9jMnGE.roa
Signing time: Sat 01 Jan 2022 12:58:17 +0000
ROA not before: Sat 01 Jan 2022 12:58:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9044
IP address blocks: 45.86.132.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131050836 (0x7cfad54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53bd0992872152a86d60d963b87d01817c00fc53
Validity
Not Before: Jan 1 12:58:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f41b93b2ad16a4dc5fefe03ee06b007d8cc9c61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:7a:5a:72:28:9c:13:d8:78:0b:2e:58:d0:98:
6a:a9:a5:e6:92:f8:58:dc:b7:12:1a:64:d6:5c:06:
39:16:05:38:92:01:81:08:3b:ef:38:8a:9f:19:44:
be:f2:90:54:7d:39:30:d2:13:1b:59:41:0d:6f:ad:
f9:24:5d:76:90:d2:be:50:63:1c:1f:b7:dd:18:7e:
ee:86:53:5f:40:c9:63:be:69:31:d3:6c:7c:9b:57:
13:77:70:07:39:91:82:d3:bf:a3:e4:76:85:47:bf:
6e:99:97:c2:d3:e0:fa:b6:c5:84:ed:5a:bc:7e:54:
fd:d2:93:da:7c:0f:1d:e8:ed:d8:0d:9f:8e:67:3e:
e2:14:d4:4f:bb:58:dd:12:fe:f3:fb:1e:c4:51:5e:
e4:7b:07:09:4e:a7:0b:92:e7:a0:cd:61:52:de:cc:
59:86:70:86:cf:79:ee:d1:7a:ab:22:9a:27:2f:f8:
b0:be:df:9a:bb:52:02:4d:88:07:97:55:71:3a:30:
44:65:16:6c:fb:af:03:03:8c:5d:5b:40:7d:c2:f6:
78:93:99:38:f3:59:26:45:bc:6f:31:8e:48:a3:5d:
e9:c6:b8:71:4e:c2:c9:e5:ac:42:bf:bf:6a:6e:ce:
e5:ca:17:df:d9:64:6f:a2:8a:97:80:06:e4:6f:b1:
ca:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:41:B9:3B:2A:D1:6A:4D:C5:FE:FE:03:EE:06:B0:07:D8:CC:9C:61
X509v3 Authority Key Identifier:
keyid:53:BD:09:92:87:21:52:A8:6D:60:D9:63:B8:7D:01:81:7C:00:FC:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U70JkochUqhtYNljuH0BgXwA_FM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/L0G5OyrRak3F_v4D7gawB9jMnGE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/6e264e-d6ce-42d5-b05d-e15f4f8409e6/1/U70JkochUqhtYNljuH0BgXwA_FM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.132.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:15:f0:2c:eb:10:ab:b4:3b:72:07:2b:c3:b8:20:a3:13:9b:
a2:a7:7e:b0:3d:a2:81:b0:c1:e0:3b:e4:68:1e:6d:73:a2:43:
8a:31:a7:ba:95:3a:4e:88:97:03:bb:43:07:26:de:ec:f6:3c:
ad:d8:25:d3:c2:93:11:d4:8a:9f:69:3a:90:5a:63:e5:fa:11:
52:36:13:6f:70:d8:ce:51:2f:c5:4a:ea:a4:8b:c5:07:53:ca:
05:36:b6:54:3a:27:1f:2f:48:8b:7b:b8:a2:69:35:f2:06:55:
5e:0e:ae:ef:12:8c:70:3c:bd:66:77:c2:45:ac:ac:f6:b9:5c:
d0:02:07:c1:9e:6c:64:23:7d:5f:df:95:b5:6c:dc:4b:ec:3d:
49:10:42:65:84:45:08:fb:ca:dd:86:6c:fe:af:cd:87:69:ac:
8f:5b:b2:2f:a9:b7:f0:6f:46:66:97:94:f4:e6:fe:4f:e8:08:
ca:a5:4d:ed:12:28:0b:60:39:23:94:b1:a3:55:c5:17:4a:3b:
57:f9:32:f6:f9:fc:f5:2f:5e:fc:c3:73:61:e5:e3:c3:40:1a:
ae:c5:82:18:33:0f:18:80:ae:50:99:1c:9e:f0:cc:a7:cd:ac:
69:31:9a:c2:f1:e2:85:27:5f:2b:00:da:71:f9:88:4b:76:6c:
f3:b0:fe:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 13 02:42:33 2025 by rpki-client