Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/UwLS7JrqTg4Dmgy3PP0Pn0J-BDE.roa
File: UwLS7JrqTg4Dmgy3PP0Pn0J-BDE.roa (raw, json)
Hash identifier: ZCT1ArLJlUdHzd6QlX9oPcqeOINAbo+tISgA59Bofw0=
Subject key identifier: 53:02:D2:EC:9A:EA:4E:0E:03:9A:0C:B7:3C:FD:0F:9F:42:7E:04:31
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 08BB1762
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/UwLS7JrqTg4Dmgy3PP0Pn0J-BDE.roa
Signing time: Wed 11 May 2022 05:09:55 +0000
ROA not before: Wed 11 May 2022 05:09:55 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48266
IP address blocks: 45.67.200.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146478946 (0x8bb1762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: May 11 05:09:55 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5302d2ec9aea4e0e039a0cb73cfd0f9f427e0431
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:c5:a3:a8:0c:66:fa:66:d0:6a:7c:8a:af:
a6:2a:7d:f3:ec:dc:1c:a5:4b:5c:cc:6b:fc:88:1f:
fd:dc:1d:b5:c1:44:b3:9a:01:a8:d5:ef:fd:4e:8d:
fa:3d:82:2e:96:30:f3:6b:92:05:4c:a6:0d:2b:72:
0d:82:2a:a4:03:32:35:a8:18:98:0a:5e:b6:52:bd:
08:c6:f5:20:22:e7:b4:90:af:a6:b5:f7:0f:d9:26:
b3:91:c0:e1:7b:7f:4d:e9:51:48:94:10:87:7d:83:
3a:1c:8d:ab:ac:f6:41:08:a7:af:d7:b8:9c:13:7c:
91:a4:ee:c3:04:04:f2:34:de:93:31:b3:f3:d3:e9:
ac:e9:23:68:a2:39:fd:75:1d:d8:50:97:14:93:40:
85:4e:81:94:cf:9c:6e:3b:64:82:df:f9:e1:87:c5:
52:84:f3:df:9c:78:49:93:22:a2:80:84:cb:d1:0a:
54:f8:c7:77:91:4f:70:f3:42:c6:6f:23:9c:5e:94:
79:50:8e:65:f4:15:44:4c:bc:9d:b1:dd:91:92:77:
ab:07:f8:53:66:88:59:fe:cf:0b:86:bd:f1:db:8f:
53:b6:25:ef:f7:0d:33:89:e0:9a:60:76:5f:b5:01:
7f:1d:24:95:c9:77:a2:03:72:f0:c3:fc:02:ba:02:
ba:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:02:D2:EC:9A:EA:4E:0E:03:9A:0C:B7:3C:FD:0F:9F:42:7E:04:31
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/UwLS7JrqTg4Dmgy3PP0Pn0J-BDE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.200.0/23
Signature Algorithm: sha256WithRSAEncryption
68:b1:f8:c2:53:f4:74:6b:75:2c:aa:cf:4e:21:37:eb:3e:46:
66:1e:ab:a9:f4:98:bc:a0:63:b1:b1:ba:94:1a:96:63:2a:b5:
95:48:1d:d6:94:6f:e8:4a:6d:3f:a7:75:5b:e4:44:96:78:cf:
63:9f:ad:35:b7:d0:73:86:56:fe:80:e3:49:cf:d0:09:c2:ac:
81:02:3c:70:4b:e2:d5:46:49:8a:59:95:5a:9d:2c:18:7e:ef:
08:85:e5:a8:6f:7d:19:1e:6f:96:a7:74:74:e7:e8:03:ec:81:
c1:ee:d2:1c:96:55:d1:66:af:67:ca:55:01:8b:8b:6d:aa:6a:
88:40:e0:99:85:05:77:3d:8a:d0:9a:f6:0c:5f:90:57:d9:b5:
9a:f9:9c:60:4f:9d:60:73:fe:11:5e:0d:39:6a:1d:5f:f0:00:
1d:3d:7d:b0:33:44:c0:4e:d8:f0:40:cb:6a:ce:72:d3:94:3e:
bd:a9:f0:35:5d:d1:b9:37:f0:49:44:9a:fd:83:5d:78:98:8c:
a9:fb:6a:95:6a:60:83:52:6a:64:cc:0a:50:73:5a:26:a4:12:
3c:82:35:4d:b8:81:96:86:6c:bd:d6:35:d0:ce:a2:0b:8d:00:
e9:f4:2f:a7:40:c2:a7:a0:ff:5a:7f:49:53:d2:ef:dd:fd:63:
e1:47:20:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org