Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/0uIpaG0m8gJ8v2-ud4Sm1R_dCbk.roa
File: 0uIpaG0m8gJ8v2-ud4Sm1R_dCbk.roa (raw, json)
Hash identifier: +ntW+e7SJHb2HsYiP9HH/HTXbhfQrARNrgB24TNaHu4=
Subject key identifier: D2:E2:29:68:6D:26:F2:02:7C:BF:6F:AE:77:84:A6:D5:1F:DD:09:B9
Certificate issuer: /CN=f4460d6554d581ebb80e39e45015cd7d36d93f66
Certificate serial: 230AAF9B
Authority key identifier: F4:46:0D:65:54:D5:81:EB:B8:0E:39:E4:50:15:CD:7D:36:D9:3F:66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9EYNZVTVgeu4DjnkUBXNfTbZP2Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/0uIpaG0m8gJ8v2-ud4Sm1R_dCbk.roa
Signing time: Sat 01 Jan 2022 12:01:18 +0000
ROA not before: Sat 01 Jan 2022 12:01:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2535
IP address blocks: 149.184.160.0/20 maxlen: 20
149.184.160.0/21 maxlen: 21
149.184.168.0/21 maxlen: 21
149.189.192.0/22 maxlen: 22
149.189.192.0/21 maxlen: 21
149.189.196.0/22 maxlen: 22
149.182.217.0/24 maxlen: 24
149.182.216.0/24 maxlen: 24
149.182.216.0/23 maxlen: 23
149.184.144.0/24 maxlen: 24
149.184.144.0/23 maxlen: 23
149.184.143.0/24 maxlen: 24
149.184.145.0/24 maxlen: 24
149.184.142.0/24 maxlen: 24
149.184.142.0/23 maxlen: 23
149.189.160.0/21 maxlen: 21
149.189.160.0/20 maxlen: 20
149.189.168.0/21 maxlen: 21
149.195.58.0/23 maxlen: 23
149.195.58.0/24 maxlen: 24
149.195.59.0/24 maxlen: 24
149.184.224.0/19 maxlen: 19
149.184.224.0/20 maxlen: 20
149.184.240.0/20 maxlen: 20
149.185.136.0/24 maxlen: 24
149.185.200.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 587902875 (0x230aaf9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f4460d6554d581ebb80e39e45015cd7d36d93f66
Validity
Not Before: Jan 1 12:01:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d2e229686d26f2027cbf6fae7784a6d51fdd09b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:37:c5:0d:78:4e:a2:54:fd:0e:86:41:96:67:
68:59:53:8e:fb:b8:66:8c:e1:80:7c:82:4f:57:ec:
18:27:cc:46:13:be:4d:1a:56:d3:62:d0:23:fa:95:
98:c8:01:f2:ab:13:da:99:5f:f9:d8:ad:37:1f:8c:
e8:9a:8f:47:51:99:24:5d:6b:e3:8f:63:d6:9d:fb:
66:f4:2a:92:b3:6e:36:75:ba:ef:fc:7b:8d:6d:2b:
47:4a:23:a7:25:28:16:7e:5e:7c:7e:ff:9c:5a:4e:
39:ec:fb:05:66:66:6d:ab:bc:ce:fc:d9:fc:ea:b4:
b8:dc:4b:74:5a:66:06:cd:ad:51:43:30:22:e7:ca:
08:00:94:3c:3d:86:c7:4f:20:1f:2e:c1:57:d0:ff:
dd:21:4f:96:48:bd:00:46:f7:4a:b1:96:97:a6:e5:
48:97:34:38:f6:0b:3a:00:78:5b:44:d0:48:d2:92:
25:93:1a:af:e8:59:87:9a:81:98:70:1f:0c:f8:1e:
ee:ec:79:ca:1c:23:b9:3c:ed:89:33:32:f1:68:d6:
74:9c:f2:f7:a6:9b:27:2c:01:57:a8:55:be:6d:6f:
d4:23:7c:68:92:83:05:7f:5b:f5:5f:57:27:b8:e7:
74:0f:f5:15:5f:5c:db:02:d7:1e:c8:54:ae:3c:94:
e7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:E2:29:68:6D:26:F2:02:7C:BF:6F:AE:77:84:A6:D5:1F:DD:09:B9
X509v3 Authority Key Identifier:
keyid:F4:46:0D:65:54:D5:81:EB:B8:0E:39:E4:50:15:CD:7D:36:D9:3F:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9EYNZVTVgeu4DjnkUBXNfTbZP2Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/0uIpaG0m8gJ8v2-ud4Sm1R_dCbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/455f56-1e6f-467d-b711-ebdf38b0095c/1/9EYNZVTVgeu4DjnkUBXNfTbZP2Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
149.182.216.0/23
149.184.142.0-149.184.145.255
149.184.160.0/20
149.184.224.0/19
149.185.136.0/24
149.185.200.0/24
149.189.160.0/20
149.189.192.0/21
149.195.58.0/23
Signature Algorithm: sha256WithRSAEncryption
3e:b2:55:7a:9b:43:ef:9f:13:d1:62:cf:30:b9:a2:d2:14:6e:
f2:8c:c7:17:47:84:66:a3:06:ab:5d:a0:db:80:83:d2:18:7f:
28:8a:48:d8:f3:0b:c3:bc:83:6f:ce:d3:87:f9:75:2c:fe:1a:
9f:ed:5e:67:73:3c:0a:64:e8:15:65:0b:35:20:f9:42:5b:c7:
89:37:2b:cd:10:52:9f:49:74:67:15:32:61:d7:67:78:06:d0:
00:2d:a6:86:db:96:83:c8:ed:51:1b:d2:e9:a4:47:f7:e8:e4:
64:f3:3f:e6:d8:93:33:a8:c8:58:6a:48:6c:73:c9:17:f2:68:
09:c2:e7:57:1d:98:f9:92:18:e5:ac:44:dd:12:90:61:e0:a0:
a2:7b:dd:5f:8f:1f:f6:2a:3c:82:14:ab:5b:69:8c:77:3e:96:
27:6e:3f:46:f7:0b:06:aa:f4:5b:b8:89:10:3d:f1:41:9c:70:
3e:a2:87:2f:00:48:0e:d8:7e:65:80:f6:4d:eb:1c:7e:34:b9:
c0:f2:30:69:7e:b0:8e:aa:d8:fc:35:dc:4b:fe:3e:d3:90:3b:
7d:5f:17:a1:40:6b:19:72:1d:75:10:f7:d7:b2:15:40:0a:c2:
43:54:f4:7d:ee:88:a8:6e:25:2a:2f:a2:9c:5d:7a:94:30:a9:
fd:6c:f3:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:57:27 2024 by rpki-client on console-ams.rpki-client.org