Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/LC4CIGETgw2WjRC4EGNiC2vKp9k.roa
File: LC4CIGETgw2WjRC4EGNiC2vKp9k.roa (raw, json)
Hash identifier: sRetot9qxAzU3Wjy8y0fG6703h577YziiJJdJXJJw/o=
Subject key identifier: 2C:2E:02:20:61:13:83:0D:96:8D:10:B8:10:63:62:0B:6B:CA:A7:D9
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 0555F58D
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/LC4CIGETgw2WjRC4EGNiC2vKp9k.roa
Signing time: Sat 01 Jan 2022 06:56:06 +0000
ROA not before: Sat 01 Jan 2022 06:56:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 395886
IP address blocks: 45.81.128.0/24 maxlen: 24
45.135.117.0/24 maxlen: 24
45.135.116.0/24 maxlen: 24
45.91.83.0/24 maxlen: 24
45.91.82.0/24 maxlen: 24
45.91.81.0/24 maxlen: 24
45.91.80.0/24 maxlen: 24
45.155.223.0/24 maxlen: 24
45.155.222.0/24 maxlen: 24
45.140.89.0/24 maxlen: 24
45.140.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 89519501 (0x555f58d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jan 1 06:56:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2c2e02206113830d968d10b81063620b6bcaa7d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bf:f4:56:5c:81:09:18:93:f0:f4:ee:1f:d2:
92:28:c4:e6:2a:97:5d:1d:b2:6b:8b:80:e4:6e:31:
7e:25:a6:d9:37:17:d4:22:26:a5:86:7b:85:ef:f5:
f5:36:f6:4f:38:1b:68:68:0d:25:35:97:1f:5e:03:
ba:18:4e:d8:90:ce:0d:9f:9c:34:67:43:76:d5:d8:
0f:34:7a:49:ab:03:06:d6:2f:0b:ff:e2:73:8d:d8:
05:17:3d:bc:53:a7:82:c8:f1:a3:90:ac:6e:66:e1:
91:bc:d6:1f:f6:30:bb:74:2a:5d:33:fd:21:dd:79:
72:15:28:15:3f:84:a9:5a:c7:65:5e:42:fc:1d:66:
51:86:4a:61:ee:43:b5:6c:f9:84:21:af:91:de:70:
81:5a:d4:57:cc:c0:b9:0b:85:91:1f:56:ba:97:35:
d3:08:d4:a1:65:6a:97:4e:49:3a:58:ad:83:68:88:
5f:d1:fc:17:bb:66:fd:a7:66:22:ac:3d:8e:10:f8:
4a:cd:09:6c:8f:bc:3a:c3:0e:d0:d9:21:d5:1d:8e:
15:0f:7f:bd:bc:63:20:19:c6:f2:25:86:8b:84:a7:
33:b3:6e:9a:b4:5d:13:71:5e:d4:e3:48:55:99:a6:
09:06:cb:c5:f8:00:4a:78:c3:ff:9b:4d:16:87:77:
46:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:2E:02:20:61:13:83:0D:96:8D:10:B8:10:63:62:0B:6B:CA:A7:D9
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/LC4CIGETgw2WjRC4EGNiC2vKp9k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.128.0/24
45.91.80.0/22
45.135.116.0/23
45.140.88.0/23
45.155.222.0/23
Signature Algorithm: sha256WithRSAEncryption
5f:40:f1:1c:d9:19:01:63:c6:57:74:82:45:0a:0f:17:7f:dc:
db:58:a5:e6:10:13:57:38:49:88:24:cb:4a:31:aa:b4:b7:f9:
d1:8e:fc:a1:f4:1e:19:86:46:e1:6d:ed:a9:61:78:9c:0f:ff:
ba:63:3c:90:b2:31:b7:08:86:60:cd:65:40:3a:ab:85:0a:93:
03:32:95:e7:a3:13:21:1e:04:0b:b3:82:ad:d7:25:76:7a:88:
8c:d3:87:c7:a7:d2:ce:28:99:61:7a:8b:4f:10:66:9e:f8:d4:
47:cf:b9:4f:40:68:50:8d:ee:ce:a4:1f:a6:e0:24:b1:66:c7:
45:70:37:e0:31:5e:e9:7e:29:36:d8:86:70:04:de:43:2c:ea:
44:5b:4d:f9:b6:54:94:a8:1f:11:ec:77:2b:1d:26:93:37:9f:
8a:56:7a:45:29:16:e8:ee:4f:d6:1f:6c:78:96:28:b6:cc:a2:
ba:15:a1:e2:59:27:cb:9d:dd:36:28:f0:a7:3a:4d:de:13:37:
96:3d:1e:1b:f8:41:4d:fd:c5:14:12:43:c5:67:c6:89:80:fe:
14:e6:b5:21:50:94:12:c5:af:ab:14:28:e0:df:e3:1b:97:e6:
11:68:8f:da:8a:93:e2:e7:4a:34:e5:27:fd:af:f9:a1:64:c1:
ee:f3:cf:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:06 2023 by rpki-client on console-fra.rpki-client.org