Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/l-dMlL3sEiED5QtZR8ZSsU9OPW4.roa
File: l-dMlL3sEiED5QtZR8ZSsU9OPW4.roa (raw, json)
Hash identifier: L6ZCXmD/O+YdyjVbFiSUQHebYJBaWa9bIhCtQ2OtY2w=
Subject key identifier: 97:E7:4C:94:BD:EC:12:21:03:E5:0B:59:47:C6:52:B1:4F:4E:3D:6E
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 01825EB42FBF8573122BB01FFEBAF732E147
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/l-dMlL3sEiED5QtZR8ZSsU9OPW4.roa
Signing time: Tue 02 Aug 2022 13:17:23 +0000
ROA not before: Tue 02 Aug 2022 13:17:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48357
IP address blocks: 45.12.134.0/24 maxlen: 24
45.15.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5e:b4:2f:bf:85:73:12:2b:b0:1f:fe:ba:f7:32:e1:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Aug 2 13:17:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=97e74c94bdec122103e50b5947c652b14f4e3d6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ff:c3:1d:d2:96:85:e0:87:94:b3:d6:5f:7b:
28:75:38:63:43:cb:0b:a3:f1:d1:a7:63:c2:6b:4e:
dc:72:e3:7e:59:0f:6a:86:1e:81:a4:99:08:af:a8:
b9:1a:65:9e:f8:cf:7c:11:aa:ae:39:f6:18:53:fd:
6c:99:dd:d2:71:f3:fe:6c:ae:76:e2:16:6d:8f:d5:
e1:9c:f0:cb:b2:ba:65:50:61:e9:b3:9c:76:d2:91:
ca:e5:a9:93:7c:37:0c:29:c0:5c:d5:66:51:da:33:
a3:ec:51:40:e8:19:d5:b1:94:74:ea:34:f1:be:5d:
53:f7:2b:8c:cf:5b:9e:1d:e8:a4:29:7f:36:4c:b1:
f6:70:27:d1:b7:09:00:c3:25:8f:d1:4e:46:e6:bd:
9f:8c:b1:4b:54:32:85:8d:9e:48:0d:98:1d:e7:0a:
f6:19:d4:3e:88:cf:ae:33:9b:7b:e3:c3:ed:ac:55:
5f:6b:64:24:05:41:20:e0:32:b9:5b:fe:c7:2b:8c:
ff:dc:7e:f1:b6:64:6a:ab:41:f2:ce:f9:ab:e0:f0:
47:f6:6b:5d:3b:14:bf:11:fa:b8:f4:cc:d3:5f:66:
fa:c9:35:4e:53:92:14:fd:24:2f:0a:a6:53:65:67:
48:9c:6d:40:fc:11:3a:bf:4b:08:29:e0:60:de:14:
4d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:E7:4C:94:BD:EC:12:21:03:E5:0B:59:47:C6:52:B1:4F:4E:3D:6E
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/l-dMlL3sEiED5QtZR8ZSsU9OPW4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.134.0/24
45.15.140.0/24
Signature Algorithm: sha256WithRSAEncryption
17:e1:6e:81:92:a2:ba:09:96:f0:46:a5:45:cb:fd:40:34:7c:
34:de:59:a7:71:7e:18:68:3e:55:0a:6b:8b:fb:0d:26:5f:f4:
fe:c3:c5:2f:b6:47:b1:6e:12:6a:25:43:74:a7:a9:c2:62:49:
1e:2d:4d:d0:1d:9a:18:9f:d8:12:79:b7:01:54:79:56:83:54:
58:85:a9:ef:06:d3:f2:aa:38:7a:81:6a:ea:a8:f0:23:76:23:
6d:0b:db:a2:29:34:2a:97:3c:1a:74:ee:d6:4e:38:f6:4f:31:
95:ca:ec:96:84:89:89:18:8f:1f:16:2e:7f:59:bf:5c:0d:4b:
b9:ae:6c:13:69:11:3f:bf:8c:f8:20:65:88:eb:96:67:bd:2a:
e3:57:4b:29:bb:76:12:53:9e:33:2d:9a:3c:0b:60:f6:07:7e:
c5:a4:97:fc:f9:eb:a7:fe:27:a1:ce:91:ad:6e:ab:e2:2c:de:
57:e3:85:33:76:37:e1:17:6a:92:68:a6:f6:ea:f6:61:89:8a:
30:ae:6b:be:f3:0c:f7:1c:52:74:5b:c0:57:1a:65:82:58:f4:
ee:8c:79:fd:ed:f2:aa:04:75:bd:e6:9a:bd:99:61:09:e2:af:
d5:1b:bd:2c:36:cb:f5:16:30:96:25:b7:e9:de:35:d3:f0:11:
b5:4a:e7:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-ams.rpki-client.org