Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c7z-B_5PrQL70ldffMNokCxfqro.roa
File: c7z-B_5PrQL70ldffMNokCxfqro.roa (raw, json)
Hash identifier: 15a3Rvh7KJjTge8mGmF3qCHOEBbI5QYnswGDdQCn/Fw=
Subject key identifier: 73:BC:FE:07:FE:4F:AD:02:FB:D2:57:5F:7C:C3:68:90:2C:5F:AA:BA
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0181D9824A6BF1A2EE244C8FF23CBACE1300
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c7z-B_5PrQL70ldffMNokCxfqro.roa
Signing time: Thu 07 Jul 2022 16:33:23 +0000
ROA not before: Thu 07 Jul 2022 16:33:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213250
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
45.131.66.0/23 maxlen: 23
45.13.224.0/23 maxlen: 23
194.15.36.0/24 maxlen: 24
5.182.206.0/23 maxlen: 23
5.182.204.0/23 maxlen: 23
2.56.245.0/24 maxlen: 24
5.252.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d9:82:4a:6b:f1:a2:ee:24:4c:8f:f2:3c:ba:ce:13:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Jul 7 16:33:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73bcfe07fe4fad02fbd2575f7cc368902c5faaba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:25:77:8e:65:f4:70:85:63:89:98:4c:b6:50:
ab:9a:ea:04:6c:ff:e4:23:e5:1a:3b:eb:aa:31:aa:
92:df:4e:18:df:77:8b:24:df:da:d7:df:1e:80:e4:
fd:9d:32:ef:ec:53:34:69:e2:18:eb:f4:40:3b:6b:
16:c8:8c:26:40:a2:fb:80:7f:28:ab:66:38:ca:78:
df:af:f3:8b:31:8e:df:87:a3:9a:e5:8a:a4:b3:e5:
71:ce:78:a6:c0:f5:2a:de:99:9c:6e:63:34:08:40:
2e:f1:19:6c:4c:ed:08:5e:49:7f:cf:a6:6c:c1:7b:
42:66:c8:75:d0:2b:aa:2e:97:2e:41:a7:9f:f0:4a:
19:82:24:59:77:bd:69:65:c0:8e:da:bf:89:43:12:
22:41:3c:38:13:dc:9c:40:c9:da:99:83:8c:d4:af:
b1:b4:60:3b:23:78:a2:f3:9a:8b:eb:98:68:bb:eb:
c6:57:b3:e4:af:bd:d7:38:c8:32:0f:31:c8:4b:86:
0a:bd:9e:9e:9b:36:77:0a:97:be:e4:d4:0c:b0:21:
bf:30:d6:23:f7:af:3b:c2:be:24:87:0d:c4:6d:1c:
29:42:9e:c8:e0:4b:3a:96:4f:cb:ca:90:a3:7d:8c:
60:e9:67:ec:4b:55:7c:44:ff:7c:0e:33:27:8e:fd:
7a:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:BC:FE:07:FE:4F:AD:02:FB:D2:57:5F:7C:C3:68:90:2C:5F:AA:BA
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/c7z-B_5PrQL70ldffMNokCxfqro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.245.0/24
5.182.204.0/22
5.252.100.0/22
45.13.224.0/23
45.89.124.0/22
45.131.66.0/23
194.15.36.0/24
Signature Algorithm: sha256WithRSAEncryption
04:f8:00:e6:a7:ed:6b:b3:9e:98:4c:ef:fd:ea:cc:f1:07:05:
77:ef:9c:f4:4b:58:e8:b0:47:5c:d7:fa:53:42:14:00:e0:80:
88:8d:ee:ed:e3:d3:de:a3:f2:c9:69:ec:ac:a5:49:91:7d:13:
34:d2:0d:e7:08:4b:3d:e2:f2:3d:93:19:38:94:7f:9f:59:1b:
09:4f:0c:19:aa:1f:69:3c:4e:7c:2f:d3:df:81:88:35:92:9b:
d2:4b:ec:20:55:02:6c:d6:b7:98:f6:84:64:d9:2c:a6:5d:ea:
e6:9d:9f:2b:d2:15:a0:d9:3b:d6:9a:5a:e6:1d:5a:9e:2c:11:
af:01:c9:b2:95:84:44:3f:37:86:e8:df:da:2d:16:b5:de:eb:
15:94:74:e7:b9:8b:88:32:c7:68:d2:13:ed:4a:e8:be:87:50:
34:fb:9e:e0:8f:86:10:3e:ea:4d:e4:33:29:a6:d0:cb:7c:53:
18:ae:71:d7:b9:4b:22:a7:50:20:2f:c1:69:3e:56:30:27:98:
af:11:b2:a3:17:c6:5d:01:5f:d8:fe:5a:ea:82:5c:da:fb:7e:
66:0c:19:df:3c:42:b7:6f:ed:6f:00:e0:bc:53:89:df:10:2d:
9a:65:da:aa:49:f3:e9:dd:ea:4a:a9:e9:cc:6b:a2:7c:dc:59:
44:1b:6e:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org