Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/lWnly5gaUiG8nigD9-ooI2H6S4M.roa
File: lWnly5gaUiG8nigD9-ooI2H6S4M.roa (raw, json)
Hash identifier: Z6HeywjEcg7Kt6FsN5gBE7jZ+GFlhMdO/teI3+sc1NM=
Subject key identifier: 95:69:E5:CB:98:1A:52:21:BC:9E:28:03:F7:EA:28:23:61:FA:4B:83
Certificate issuer: /CN=29ba0a1d7848d2c1b231dd3e6824420d18799913
Certificate serial: 09A1855C
Authority key identifier: 29:BA:0A:1D:78:48:D2:C1:B2:31:DD:3E:68:24:42:0D:18:79:99:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KboKHXhI0sGyMd0-aCRCDRh5mRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/lWnly5gaUiG8nigD9-ooI2H6S4M.roa
Signing time: Fri 03 Jun 2022 20:34:20 +0000
ROA not before: Fri 03 Jun 2022 20:34:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208956
IP address blocks: 45.13.67.0/24 maxlen: 24
45.13.66.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161580380 (0x9a1855c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ba0a1d7848d2c1b231dd3e6824420d18799913
Validity
Not Before: Jun 3 20:34:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9569e5cb981a5221bc9e2803f7ea282361fa4b83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:0b:fb:7d:a4:86:10:76:cf:5c:b9:72:10:c9:
65:72:42:d4:96:8c:d2:07:47:38:e0:e8:35:a1:74:
49:5d:11:9d:1c:07:3a:31:dd:b1:62:bc:ca:86:f8:
eb:c8:3b:65:5c:5b:53:b6:88:a0:a1:35:47:f8:79:
01:85:6c:da:52:62:f2:16:70:f0:2e:9d:66:17:cf:
13:62:7f:87:35:bc:4b:45:56:62:eb:3c:af:df:1f:
ba:d0:b2:3f:38:cc:1c:97:05:2c:63:b3:ea:1e:88:
f5:b9:33:16:ac:af:9b:ab:ff:e0:91:12:8c:36:d2:
80:8b:a3:c6:ab:4a:21:e7:3d:64:11:c0:99:17:6f:
23:07:59:2b:30:a4:36:7e:08:88:e6:49:a9:c1:92:
57:c4:ae:54:f0:db:f7:92:c8:be:e4:8e:f8:a4:53:
26:7a:c5:9f:c4:88:a2:2a:03:22:d6:1d:c4:77:81:
0d:f4:e9:14:17:e5:7c:bf:7e:6a:8c:50:81:6b:ae:
ac:f7:74:39:48:a1:c4:08:f6:9d:54:64:06:e7:2b:
04:64:a5:bb:b2:63:c6:41:35:61:3d:ae:a0:73:3d:
eb:ec:d1:78:c5:89:e1:b8:e3:58:55:8f:12:d1:19:
72:de:27:4f:02:dd:da:64:b2:3b:c0:c9:68:f1:b8:
8e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:69:E5:CB:98:1A:52:21:BC:9E:28:03:F7:EA:28:23:61:FA:4B:83
X509v3 Authority Key Identifier:
keyid:29:BA:0A:1D:78:48:D2:C1:B2:31:DD:3E:68:24:42:0D:18:79:99:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KboKHXhI0sGyMd0-aCRCDRh5mRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/lWnly5gaUiG8nigD9-ooI2H6S4M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/30c0c0-9eca-464f-8b9f-6a5b5f5ca9d3/1/KboKHXhI0sGyMd0-aCRCDRh5mRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.66.0/23
Signature Algorithm: sha256WithRSAEncryption
01:8c:62:03:59:88:de:56:68:6b:f2:28:7c:24:06:49:b1:e6:
a5:7a:c6:94:70:9b:26:63:2b:f7:5c:9e:a1:5d:75:bb:43:c3:
41:cb:43:63:13:3f:3e:1a:f6:0d:fa:18:cc:34:4b:73:3a:16:
b2:77:76:fa:c2:3a:cc:f6:87:ed:a4:e1:58:79:bb:4e:62:e9:
cc:b5:c0:ec:c2:fe:bf:b7:41:2d:83:b7:48:19:7b:b5:e3:05:
74:2f:1c:2d:5f:54:3d:49:34:2d:fd:95:57:c5:1f:5f:d4:a7:
ac:58:7e:5f:ab:b3:86:51:d2:ab:b8:4f:5b:b9:cb:c8:6b:6e:
0d:20:da:68:bc:a9:61:0b:e0:27:ce:a9:07:3b:a6:7d:b6:a6:
c8:19:9c:42:3c:f3:0c:9f:04:33:1c:06:b5:c2:e8:50:4d:a8:
fe:c2:9f:f7:08:37:45:e0:5b:b2:5a:0c:99:4e:86:bc:9e:73:
f6:c8:ce:db:61:ee:9e:b4:58:68:12:9e:13:3c:69:77:d4:4c:
0b:3d:a0:fd:3f:fb:94:5e:3d:56:bf:71:09:a9:70:88:52:37:
35:7a:6e:69:a1:50:01:df:0d:45:9e:f8:aa:35:24:85:17:a3:
60:da:29:29:c5:db:73:b5:48:e8:78:1b:27:40:f9:2a:a3:95:
90:55:cc:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:53 2023 by rpki-client on console.sobornost.net