Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1bO2lgkZ3nJ2WH4jFuQdxOW3DRc.roa
File: 1bO2lgkZ3nJ2WH4jFuQdxOW3DRc.roa (raw, json)
Hash identifier: sl6j8TzMsofag9KHseXtcv36Fk2Miqzsz2k+wQhV8XU=
Subject key identifier: D5:B3:B6:96:09:19:DE:72:76:58:7E:23:16:E4:1D:C4:E5:B7:0D:17
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A63B096
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1bO2lgkZ3nJ2WH4jFuQdxOW3DRc.roa
Signing time: Wed 13 Apr 2022 08:33:51 +0000
ROA not before: Wed 13 Apr 2022 08:33:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 45.145.227.0/24 maxlen: 24
5.180.252.0/22 maxlen: 22
194.15.36.0/24 maxlen: 24
185.132.55.0/24 maxlen: 24
185.132.54.0/24 maxlen: 24
45.137.71.0/24 maxlen: 24
5.253.245.0/24 maxlen: 24
5.253.244.0/24 maxlen: 24
45.91.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174305430 (0xa63b096)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Apr 13 08:33:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5b3b6960919de7276587e2316e41dc4e5b70d17
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:18:f7:5f:6d:66:9a:6e:f9:71:70:9f:d0:e1:
11:1a:af:cc:4f:36:fb:46:80:b0:32:9c:b1:a9:7f:
ea:59:e7:fa:21:be:71:3a:82:70:0e:ea:19:6a:d3:
0e:fe:42:75:14:ea:41:4d:f1:7b:3d:bf:f6:89:63:
a3:5b:07:6d:67:d1:16:73:6a:cc:08:04:70:b2:65:
ce:ca:19:15:62:4c:c2:95:ab:f7:07:e4:3e:e6:c2:
59:54:17:2c:ce:7e:2c:37:32:6c:5a:80:e3:d0:5f:
d5:88:a5:07:81:8d:79:c6:72:c4:f7:ff:64:9f:0a:
c5:6b:5f:07:10:89:61:b1:64:19:f3:6d:ae:ba:f2:
09:9d:fd:e6:4a:d5:80:0d:d7:50:44:30:3d:f2:c7:
7d:9c:ac:da:40:7d:bd:29:28:40:f5:ff:f8:da:7a:
c7:0c:05:5d:45:fc:6a:94:48:62:2e:d4:27:3e:f5:
65:32:fc:80:da:52:4c:34:98:a7:ff:54:13:d7:37:
70:46:f3:e8:0d:42:d3:9e:ee:00:4d:51:de:2f:ad:
39:48:42:86:35:e0:26:b7:76:05:68:6b:d1:3a:2e:
cd:7c:9c:bf:09:ad:3d:26:4b:72:5e:15:50:d5:16:
85:97:06:7c:98:28:06:08:22:9d:68:6d:3e:34:34:
cb:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B3:B6:96:09:19:DE:72:76:58:7E:23:16:E4:1D:C4:E5:B7:0D:17
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1bO2lgkZ3nJ2WH4jFuQdxOW3DRc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.252.0/22
5.253.244.0/23
45.91.251.0/24
45.137.71.0/24
45.145.227.0/24
185.132.54.0/23
194.15.36.0/24
Signature Algorithm: sha256WithRSAEncryption
06:d5:c6:0f:fe:ec:21:92:ee:0e:21:c9:40:78:30:64:6e:57:
ad:d2:91:15:29:98:57:f7:2a:1f:31:77:28:5e:5e:1f:8d:64:
61:33:92:91:3b:74:de:34:27:2a:f4:95:24:c4:e4:6c:a0:6b:
ce:38:fa:c1:fe:bb:1c:7c:8b:67:93:8d:21:74:f4:11:05:26:
85:89:1f:12:f0:6d:00:dc:90:ec:5a:6e:9e:fa:31:b8:95:99:
98:8f:26:56:d6:fc:9e:aa:52:49:10:aa:b7:03:a5:9a:bc:cb:
b5:42:31:5a:a6:9a:d2:9c:c3:13:52:cf:5c:b0:75:67:84:32:
e2:b6:45:54:b1:c1:52:6d:0a:26:b8:d8:b2:77:62:cf:76:ee:
82:84:06:5f:5a:42:d3:3c:03:ca:f9:a3:d1:12:d8:74:88:df:
f9:af:ba:28:67:13:5f:6d:fa:5b:4f:94:d1:4d:b3:14:5e:c2:
5b:0e:e2:00:81:bf:eb:25:4d:e1:4b:43:a3:99:c1:96:af:fa:
af:53:f0:30:11:af:9f:24:87:03:5c:4a:b6:1a:06:3b:93:a1:
3f:40:6c:19:11:0b:e5:1c:02:a1:d4:b4:db:13:d2:95:ac:f0:
8d:c4:ce:9c:5f:e8:e2:7b:fe:48:81:ba:a5:a3:28:65:c6:87:
13:52:7a:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org