Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ltk3umctIum1xEHHGEIMSZ4kMuM.roa
File: ltk3umctIum1xEHHGEIMSZ4kMuM.roa (raw, json)
Hash identifier: DN5fZyf28YOgedwAcoTdPsa0smkNpTp2vW6mgJ4Hcxk=
Subject key identifier: 96:D9:37:BA:67:2D:22:E9:B5:C4:41:C7:18:42:0C:49:9E:24:32:E3
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 17EBE336
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ltk3umctIum1xEHHGEIMSZ4kMuM.roa
Signing time: Sat 01 Jan 2022 04:54:46 +0000
ROA not before: Sat 01 Jan 2022 04:54:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209859
IP address blocks: 45.10.0.0/24 maxlen: 32
195.85.10.0/23 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401335094 (0x17ebe336)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jan 1 04:54:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=96d937ba672d22e9b5c441c718420c499e2432e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:77:2f:0a:11:20:ba:e7:5e:62:e9:16:de:53:
ca:3f:bf:53:4e:a1:a2:32:88:e9:65:23:81:16:e0:
b5:21:a1:96:07:8c:9b:bc:47:ad:de:1e:a4:80:da:
3d:29:c9:c1:af:4d:7d:28:d8:8d:45:ef:df:b9:c3:
fd:c9:d8:46:fe:af:ba:dd:28:f7:c6:04:59:7d:6a:
36:78:65:66:41:53:b7:05:7f:fe:c7:bc:e8:c9:96:
af:13:1e:14:ca:92:3b:4d:04:05:37:ad:2d:2e:7b:
b1:ba:27:e8:4d:4f:fb:e4:75:a5:7e:3e:96:d4:b0:
3e:7b:b1:a7:75:b8:40:7a:08:11:0e:4d:46:a8:11:
a3:89:41:82:0e:83:5c:ff:f4:3b:66:04:dd:1c:7b:
39:66:71:f2:e1:4e:28:b3:f1:67:69:6d:07:c2:ae:
32:d2:d1:d8:54:0c:26:ec:4a:74:bf:3b:7c:e3:3c:
8e:e8:77:ad:36:d3:a1:51:bc:eb:55:cd:cf:08:a5:
81:41:46:a5:e7:28:46:a3:bf:fa:7a:70:68:51:42:
90:fd:4a:b3:fb:c2:fb:1e:f2:15:7e:52:c9:40:0f:
07:68:4e:f9:53:40:63:14:60:77:dd:a4:7e:53:d8:
b6:7b:c8:1c:15:ef:af:2a:4d:86:9a:05:30:42:82:
5c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:D9:37:BA:67:2D:22:E9:B5:C4:41:C7:18:42:0C:49:9E:24:32:E3
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/ltk3umctIum1xEHHGEIMSZ4kMuM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.0.0/24
195.85.10.0/23
Signature Algorithm: sha256WithRSAEncryption
52:90:97:d9:05:40:b3:01:fd:9f:a2:4e:08:ad:5e:24:b3:fe:
89:85:ec:1e:65:6c:d4:3a:c9:65:61:c5:0e:19:f7:5d:34:ad:
3c:e5:0c:c5:80:bd:cd:40:8d:77:92:42:c4:1c:4a:8e:9f:4d:
3b:ee:75:2b:9d:79:1f:7f:55:c2:b9:36:c7:e5:3d:57:fd:ff:
03:6e:25:11:60:53:b6:e1:0c:45:5b:50:de:20:5b:86:c4:e9:
40:d2:12:75:37:f5:7a:4f:8d:b2:68:50:d0:7b:2a:8c:b7:60:
f8:44:72:66:cd:3e:b3:56:3b:6e:99:cb:09:0d:41:f9:ab:5b:
d9:42:33:cb:d5:37:a9:16:77:4f:11:40:d8:d8:2f:36:e9:8c:
ff:94:a8:da:d7:2b:ad:19:ef:29:18:11:02:b7:5f:fc:c2:ba:
77:89:89:f9:06:14:5c:21:50:9b:6f:51:ce:07:cb:3d:4e:d2:
c4:4b:0f:e7:0a:5e:0f:42:be:50:d2:5c:fb:ef:0f:1f:bf:47:
ac:e7:97:da:73:fc:31:29:87:68:6d:e8:09:42:bd:88:2b:e3:
1d:e0:fc:32:9f:fc:9d:49:c7:24:51:0e:05:c2:67:2a:e4:25:
16:21:46:46:d5:58:92:b0:08:61:91:f4:48:82:64:c1:76:64:
28:53:84:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org