Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/LzXhvmFgD1qrgD62CKx_oK_PEr0.roa
File: LzXhvmFgD1qrgD62CKx_oK_PEr0.roa (raw, json)
Hash identifier: rQRi0hHvOyNwhMO5Evkrv2/Rvu5wOzU15p9Ic1IC+uY=
Subject key identifier: 2F:35:E1:BE:61:60:0F:5A:AB:80:3E:B6:08:AC:7F:A0:AF:CF:12:BD
Certificate issuer: /CN=4987941e74c1c03e7aba3b878530095eb6fa874e
Certificate serial: 0184EBC35F1C5A33B2D85FED42B247AA948C
Authority key identifier: 49:87:94:1E:74:C1:C0:3E:7A:BA:3B:87:85:30:09:5E:B6:FA:87:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SYeUHnTBwD56ujuHhTAJXrb6h04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/LzXhvmFgD1qrgD62CKx_oK_PEr0.roa
Signing time: Wed 07 Dec 2022 08:46:00 +0000
ROA not before: Wed 07 Dec 2022 08:46:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200736
IP address blocks: 45.66.40.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:eb:c3:5f:1c:5a:33:b2:d8:5f:ed:42:b2:47:aa:94:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4987941e74c1c03e7aba3b878530095eb6fa874e
Validity
Not Before: Dec 7 08:46:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f35e1be61600f5aab803eb608ac7fa0afcf12bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:8f:05:1e:c7:45:bf:ea:02:39:67:aa:24:cf:
f9:5e:ea:a9:65:df:04:94:b3:9c:0d:bb:42:d0:e9:
26:47:63:59:c8:81:6c:a7:d0:64:57:db:49:4d:bd:
95:59:25:62:58:21:47:0c:59:c9:ae:67:77:8e:c6:
44:29:16:cd:96:34:2d:2f:39:5d:93:30:b3:34:1f:
20:f6:38:27:c5:30:e8:76:1f:ae:e3:e4:96:77:9d:
98:d6:65:ab:16:e9:0a:64:42:7a:e5:99:3b:10:83:
ea:e4:b2:e7:8a:29:b4:c1:25:9f:13:ff:65:3c:c0:
ed:16:0e:19:67:7c:ce:83:17:f3:8b:57:72:01:fe:
30:70:a7:16:3d:ec:bd:eb:e0:8d:55:03:c4:48:8d:
0e:5d:a6:4a:e1:66:f0:2c:93:52:a3:5f:22:d6:49:
23:99:a8:94:29:85:e2:7d:cd:e9:31:3d:e1:fc:34:
c8:e2:6e:82:a0:2e:ac:ee:d2:56:ef:73:ad:41:f9:
ea:5e:8e:90:01:66:53:b6:a5:d7:00:05:87:66:98:
00:fe:b5:c7:2c:10:36:04:5f:a6:c0:81:cd:68:55:
c5:c7:af:43:4d:6a:4d:0d:63:c9:de:38:3b:2a:43:
d4:e6:ed:06:03:b3:83:8c:20:d5:fc:a4:ec:ea:85:
ca:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:35:E1:BE:61:60:0F:5A:AB:80:3E:B6:08:AC:7F:A0:AF:CF:12:BD
X509v3 Authority Key Identifier:
keyid:49:87:94:1E:74:C1:C0:3E:7A:BA:3B:87:85:30:09:5E:B6:FA:87:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SYeUHnTBwD56ujuHhTAJXrb6h04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/LzXhvmFgD1qrgD62CKx_oK_PEr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/70777b-68b0-42a8-9e9d-e8ada51ee8ff/1/SYeUHnTBwD56ujuHhTAJXrb6h04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.40.0/22
Signature Algorithm: sha256WithRSAEncryption
86:7c:d1:a0:ab:a6:45:6e:24:58:81:e8:55:5f:dc:79:dc:6f:
9b:f5:9a:eb:aa:12:9f:b4:c0:a9:6b:0b:02:35:ab:a1:d3:ab:
86:c8:56:f6:61:4b:d6:9a:7b:c6:b5:f2:73:78:b4:13:35:53:
76:81:a5:ff:8d:2c:72:c2:f5:1a:39:f5:4f:fc:09:e4:ba:c4:
e2:cd:69:78:ea:29:ab:0d:f8:4b:18:ec:0c:70:63:bc:b1:43:
9e:98:f8:54:f1:c7:48:8a:39:d7:1c:ab:6b:c3:61:b5:be:a6:
0f:f3:7a:bd:13:6b:73:65:9a:6f:b9:0e:18:52:32:7e:65:aa:
a3:97:78:17:a5:39:75:10:a1:12:25:dc:9e:3b:ba:21:2b:9c:
64:7e:b2:52:1e:32:76:37:28:64:82:cb:be:ef:6b:45:ae:9e:
27:ff:3d:ab:36:55:f1:48:92:c9:33:ce:59:88:4d:62:c5:f6:
1f:20:ef:bf:43:72:c9:8f:67:c0:48:97:d5:84:96:7b:fa:35:
4f:26:a8:5a:6a:e9:23:fd:4b:4a:e1:19:b7:28:bd:42:7e:8f:
cc:a8:48:83:f7:dc:9a:7f:d2:a7:ec:5c:7e:42:f8:06:81:13:
66:21:7d:c2:e6:74:12:34:53:c7:a0:52:b2:e4:8c:bc:73:ba:
f3:72:3a:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net