Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/_l90VsowjNCH1Le-Yt-kyTuB8tg.roa
File: _l90VsowjNCH1Le-Yt-kyTuB8tg.roa (raw, json)
Hash identifier: 1I5skhkXQcoUrZFK7HTGSwcYU+5O7pBGR9lgah8u4nA=
Subject key identifier: FE:5F:74:56:CA:30:8C:D0:87:D4:B7:BE:62:DF:A4:C9:3B:81:F2:D8
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 313DAC
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/_l90VsowjNCH1Le-Yt-kyTuB8tg.roa
Signing time: Tue 22 Mar 2022 11:36:39 +0000
ROA not before: Tue 22 Mar 2022 11:36:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140947
IP address blocks: 45.155.67.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3227052 (0x313dac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 22 11:36:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fe5f7456ca308cd087d4b7be62dfa4c93b81f2d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:24:8d:7d:62:80:e6:62:60:dd:12:47:06:2d:
07:f2:b0:6f:0f:11:63:c0:69:32:eb:43:75:6e:a7:
25:2f:77:37:f1:54:c3:c2:09:01:39:89:8c:f6:49:
51:c0:73:a6:9d:f1:e5:c5:4e:50:6d:4f:06:41:15:
6f:52:94:02:06:2d:8a:ab:ff:77:29:f6:aa:11:08:
e7:3d:32:a8:97:b5:e4:bc:7a:2e:be:ee:d2:9e:d3:
ac:f2:35:37:52:e8:d0:8b:48:fb:b8:f0:7f:8c:f2:
74:ad:fe:d1:d2:18:a3:e3:3b:bf:90:0a:5a:e6:18:
c9:0a:28:a9:f5:ed:ab:61:ab:6c:be:dd:71:2e:5f:
23:b9:5a:61:b8:37:d6:d8:48:4c:74:1d:43:c6:ce:
37:13:3a:0d:71:ec:92:b6:33:4c:07:7f:5e:63:d7:
57:df:f2:e1:a4:30:f7:e2:d8:5a:9b:a9:74:64:07:
79:4f:05:e5:ba:87:42:9c:14:93:f3:ca:7c:b6:63:
d9:75:7e:2f:8d:dd:09:c6:d8:6a:4f:e5:0a:41:22:
58:ed:18:36:f1:dd:68:59:5a:04:a2:a4:33:00:57:
81:dc:f7:c6:4d:2b:4c:75:c3:93:7f:84:1f:10:56:
96:81:91:56:df:d7:13:49:83:16:f1:ba:d4:0c:dd:
97:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:5F:74:56:CA:30:8C:D0:87:D4:B7:BE:62:DF:A4:C9:3B:81:F2:D8
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/_l90VsowjNCH1Le-Yt-kyTuB8tg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.67.0/24
Signature Algorithm: sha256WithRSAEncryption
07:35:d0:be:ed:3d:39:99:b4:5b:d4:78:82:8d:58:e5:2a:3c:
a1:6e:09:3d:dc:87:55:87:d7:50:7c:6a:3b:19:af:55:f0:5f:
69:5b:ec:8e:ef:f0:8c:dc:78:73:40:c3:71:8f:6b:9f:67:6a:
cb:c1:9a:9c:86:cc:d3:15:2c:d9:24:b6:c4:b2:e9:7b:6b:98:
f3:80:95:d8:cb:b3:23:2e:af:c5:ec:4c:26:e0:49:9b:aa:45:
0a:63:cc:a1:79:5b:f3:28:7e:c4:c6:d7:ae:57:5a:85:56:68:
67:b8:b3:9f:39:10:33:e1:0d:17:48:68:6a:d7:44:62:b1:ee:
1e:7b:cb:f0:d8:f9:45:a3:6f:38:a7:e0:64:0d:0c:d1:2d:bf:
e2:a3:a2:d6:7b:08:75:a7:38:a4:a1:38:cb:70:a2:be:34:f0:
44:90:5b:f5:4f:dc:57:85:90:bf:30:4a:37:c3:3e:13:7e:75:
f4:cf:d5:f2:b9:83:38:a6:11:8b:71:e2:d0:c7:29:64:6f:35:
05:39:41:98:13:2f:47:c7:7a:c9:78:3d:94:04:d5:6b:8d:8f:
df:17:11:44:fe:e5:4a:b7:3f:ca:34:90:7c:10:d7:5d:1b:e3:
d3:12:87:2d:a4:8d:20:3d:a2:11:1e:1b:19:15:05:8c:e3:74:
0d:f8:02:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net