Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kX-e62yEINJ98BV1QSJbHh0Mn1s.roa
File: kX-e62yEINJ98BV1QSJbHh0Mn1s.roa (raw, json)
Hash identifier: CI9OiTbiL9v9wE60u/YKMcx0R1ZHlKDekf0GU5WvoeY=
Subject key identifier: 91:7F:9E:EB:6C:84:20:D2:7D:F0:15:75:41:22:5B:1E:1D:0C:9F:5B
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 09C4D72A
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kX-e62yEINJ98BV1QSJbHh0Mn1s.roa
Signing time: Sat 12 Feb 2022 10:57:42 +0000
ROA not before: Sat 12 Feb 2022 10:57:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48658
IP address blocks: 45.131.64.0/24 maxlen: 24
5.180.252.0/22 maxlen: 22
45.137.203.0/24 maxlen: 24
5.252.100.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 163895082 (0x9c4d72a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Feb 12 10:57:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=917f9eeb6c8420d27df0157541225b1e1d0c9f5b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:cd:35:b2:c3:b3:04:28:50:68:d0:5c:44:c4:
36:e4:92:55:68:0d:c0:b5:47:a2:55:7a:84:ac:34:
aa:be:1b:92:8d:11:fd:87:8b:31:e8:a5:1d:9c:57:
5e:fe:ae:fe:ec:fb:7c:1d:f3:25:92:eb:ee:4d:b9:
b4:6b:1c:2d:8d:c3:ad:75:2c:f2:6e:f5:e9:a6:34:
58:1e:71:78:8c:cb:b4:a9:a9:73:f4:c0:22:9a:17:
82:95:ea:84:86:98:7e:95:2c:a4:4c:99:05:88:83:
db:f0:f4:6e:da:33:af:a5:ae:52:5e:2f:ec:2f:ad:
3f:03:95:24:da:4a:8f:5d:c6:4e:9f:17:fc:be:bc:
21:be:e1:f9:7c:f5:5b:05:28:3b:d8:0d:27:5b:f7:
d4:cd:c2:90:36:c8:aa:b6:0b:1e:80:f8:8c:99:a4:
4b:c9:9b:3d:4e:32:bb:e2:9d:40:b8:12:e1:a5:93:
2f:5a:07:14:79:7f:b8:aa:03:1a:6f:98:ec:51:02:
45:ab:c7:df:72:c4:5a:6b:c2:54:b1:b3:c2:8d:e3:
3f:ae:e2:6e:72:e8:9f:6e:ec:a5:e7:46:8b:63:2f:
41:90:5e:5e:b3:ff:b2:5c:10:32:0d:31:78:b3:12:
94:03:22:63:07:01:77:db:d4:1e:8a:a3:79:25:cd:
e3:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:7F:9E:EB:6C:84:20:D2:7D:F0:15:75:41:22:5B:1E:1D:0C:9F:5B
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kX-e62yEINJ98BV1QSJbHh0Mn1s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.252.0/22
5.252.100.0/22
45.131.64.0/24
45.137.203.0/24
Signature Algorithm: sha256WithRSAEncryption
98:d7:ff:99:4d:3c:e6:a1:69:5c:af:b6:ef:34:ad:7f:7d:33:
3a:b1:f3:2e:e1:57:fb:26:03:12:67:c4:9a:fb:b5:e2:9d:60:
37:93:9b:99:d0:cf:ce:89:b1:5c:ed:b8:6a:c9:06:51:1b:d8:
c3:ae:36:d8:64:c0:03:e2:0c:f2:2e:e9:31:bf:97:9f:6f:ae:
17:1f:a5:ec:89:35:fa:ca:0e:49:56:4e:c2:71:43:d2:79:9c:
57:7d:0a:a6:33:84:81:c7:11:40:6d:b7:e7:b5:cb:b8:28:38:
b7:80:17:a5:3f:2b:ce:70:10:1a:e8:3b:d9:d7:9c:65:cf:5f:
78:7e:00:6a:65:1c:0b:c9:76:3d:7c:ae:1d:22:56:5b:1d:fa:
99:1b:db:05:73:64:89:fd:c7:82:bc:56:2c:f3:be:ef:9f:20:
81:7e:6f:5f:bc:3a:58:47:3c:eb:34:96:38:7c:ed:fc:1e:7d:
9f:f6:0a:9c:de:54:8d:52:5c:3c:49:7f:8e:ae:26:83:18:36:
1e:e3:75:26:5f:e4:ba:23:82:b4:e3:ca:54:da:cb:73:8f:c4:
cb:8f:cc:09:7f:2b:9c:13:a6:8e:10:32:63:80:da:ed:7c:25:
a5:c3:2c:53:8c:90:67:9b:4d:68:b6:79:e0:db:67:dd:01:64:
2e:21:01:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org