Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/Jf1CvKiSz7PWmX8FN2uTX5l8cE4.roa
File: Jf1CvKiSz7PWmX8FN2uTX5l8cE4.roa (raw, json)
Hash identifier: TnJLDiUYtTzPOefcSZMBTeVnSlIto7Cxey+Zyo/GI+4=
Subject key identifier: 25:FD:42:BC:A8:92:CF:B3:D6:99:7F:05:37:6B:93:5F:99:7C:70:4E
Certificate issuer: /CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Certificate serial: 0274091F
Authority key identifier: B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/Jf1CvKiSz7PWmX8FN2uTX5l8cE4.roa
Signing time: Sat 18 Jun 2022 12:26:44 +0000
ROA not before: Sat 18 Jun 2022 12:26:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212512
IP address blocks: 45.156.30.0/24 maxlen: 24
45.94.4.0/24 maxlen: 24
45.94.7.0/24 maxlen: 24
45.94.6.0/24 maxlen: 24
194.29.55.0/24 maxlen: 24
2a10:9f80::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41158943 (0x274091f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2c0bdafadea78dce312f862ddf42b1bd4c4f645
Validity
Not Before: Jun 18 12:26:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=25fd42bca892cfb3d6997f05376b935f997c704e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e0:c7:0f:c5:ed:f1:2c:8e:90:ba:21:f6:ee:
0a:68:76:bf:7d:f2:f3:65:b4:74:1c:30:a3:8d:6c:
2b:fd:ee:de:83:b8:7b:43:2f:a9:f0:51:c9:03:dd:
13:95:fd:8d:b6:27:05:20:52:de:db:31:e6:bc:26:
2c:76:7c:4f:6c:fb:4c:3b:f5:29:66:6c:a5:78:56:
5a:b1:fd:2c:53:eb:77:a8:f5:76:3b:eb:fa:22:e0:
bb:e5:64:17:88:5f:2b:15:a9:41:a2:ca:a4:3a:19:
35:07:35:82:ab:27:a7:64:a1:0d:7c:72:08:e0:54:
17:85:30:07:3a:ec:ad:37:a2:d9:ff:d0:40:04:39:
ca:1b:51:68:1a:df:f6:f4:89:97:3e:89:fa:6a:cf:
92:5a:b0:31:e1:85:c9:83:88:ea:f0:6e:19:8d:6b:
70:f2:11:50:50:43:cc:4a:f9:0b:37:c2:84:cf:02:
d1:40:5e:1d:5f:c9:da:8c:dd:38:91:6a:4e:50:67:
8e:82:a7:48:90:3d:e0:01:91:e0:d0:41:87:31:81:
b3:be:19:37:ed:31:e0:1d:e3:ad:28:d9:b0:e8:4c:
17:ff:c9:a4:30:cc:49:41:70:e8:77:0f:49:78:0a:
5c:db:da:e7:53:10:f1:ea:03:f4:c2:31:20:75:22:
f6:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:FD:42:BC:A8:92:CF:B3:D6:99:7F:05:37:6B:93:5F:99:7C:70:4E
X509v3 Authority Key Identifier:
keyid:B2:C0:BD:AF:AD:EA:78:DC:E3:12:F8:62:DD:F4:2B:1B:D4:C4:F6:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ssC9r63qeNzjEvhi3fQrG9TE9kU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/Jf1CvKiSz7PWmX8FN2uTX5l8cE4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1f3712-cf2c-486e-95b3-fcc336eed8d7/1/ssC9r63qeNzjEvhi3fQrG9TE9kU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.4.0/24
45.94.6.0/23
45.156.30.0/24
194.29.55.0/24
IPv6:
2a10:9f80::/29
Signature Algorithm: sha256WithRSAEncryption
24:21:c6:f3:8b:8b:25:c8:56:a1:74:3d:74:c4:95:7c:86:a6:
39:a9:b9:46:9e:83:62:e6:c1:04:e3:1d:08:96:5d:b9:3c:b7:
5a:90:53:7b:7f:e4:06:3c:1a:fc:1e:2a:6e:54:21:aa:c1:ab:
d5:0f:ca:bd:74:40:fb:4d:6a:1b:c1:2b:84:6e:5c:03:88:b8:
81:b2:ce:56:08:2d:5a:b9:73:aa:10:b7:9a:f7:50:90:3d:74:
a7:43:58:73:7c:ab:f9:92:10:db:78:99:cf:c2:1c:d1:0d:6d:
bc:9f:bd:2b:cb:ce:40:01:15:3c:dc:c3:47:dd:95:38:47:dd:
4a:ba:cc:a2:0b:7c:d3:bf:7d:10:1d:b2:ad:ac:62:51:ea:6d:
7d:fb:5e:fd:6f:ac:98:c9:fd:a9:25:6f:13:22:01:67:73:ac:
6e:ff:04:0c:76:ad:8a:0f:f9:3a:02:27:cb:89:9c:70:8e:fc:
c5:a5:fe:29:a2:5f:79:2e:97:9b:04:eb:73:2e:95:b7:07:f7:
c0:0c:9f:cd:b3:31:cf:80:ab:60:98:f8:25:41:76:cb:85:63:
1e:4b:66:cd:a0:a9:cd:54:3f:15:24:02:74:32:cb:5a:d3:15:
2c:bf:4b:53:28:84:e1:a2:d0:fd:4b:c8:95:b5:d0:50:c8:72:
a2:33:0d:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:51:36 2024 by rpki-client on console-ams.rpki-client.org