Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/Lbe5IhaV7qP4KRfKB3Wn-QrdQo8.roa
File: Lbe5IhaV7qP4KRfKB3Wn-QrdQo8.roa (raw, json)
Hash identifier: KygUo2OVIruIo5MLmFWs+TqzidoZA/r/ZBcYMKfgqUg=
Subject key identifier: 2D:B7:B9:22:16:95:EE:A3:F8:29:17:CA:07:75:A7:F9:0A:DD:42:8F
Certificate issuer: /CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5
Certificate serial: 06BFAFF2
Authority key identifier: 97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/Lbe5IhaV7qP4KRfKB3Wn-QrdQo8.roa
Signing time: Sat 01 Jan 2022 14:04:26 +0000
ROA not before: Sat 01 Jan 2022 14:04:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 30823
IP address blocks: 160.20.145.0/24 maxlen: 24
160.20.144.0/24 maxlen: 24
160.20.146.0/24 maxlen: 24
160.20.147.0/24 maxlen: 24
45.11.16.0/22 maxlen: 22
45.153.240.0/22 maxlen: 22
152.89.244.0/22 maxlen: 22
152.89.247.0/24 maxlen: 24
91.200.100.0/22 maxlen: 22
45.147.228.0/22 maxlen: 22
45.138.172.0/22 maxlen: 22
45.138.175.0/24 maxlen: 24
2a0c:6a41:f230::/48 maxlen: 48
2a0e:b540:ff03::/48 maxlen: 48
2a0e:b540::/29 maxlen: 29
2a0c:6a40::/29 maxlen: 29
2a09:38c0::/29 maxlen: 29
2a0d:4cc0::/29 maxlen: 29
2a10:9c00::/29 maxlen: 29
2a0e:5100::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113225714 (0x6bfaff2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=974661cb1c38e63bd78bd6b2b1d68686a5415bf5
Validity
Not Before: Jan 1 14:04:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2db7b9221695eea3f82917ca0775a7f90add428f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:98:c7:1d:9f:43:20:e9:5d:4e:8e:e8:3c:fa:
3b:b5:3b:18:41:24:ce:a5:87:61:b9:d5:98:cb:a8:
ac:5d:65:29:e0:a1:69:c6:81:38:e1:19:7f:b4:e3:
76:69:66:38:c0:6a:e6:06:ac:11:3a:97:e4:2e:3c:
61:31:a6:3b:ec:6a:60:d6:cb:d4:42:5e:3c:30:a5:
d9:b0:44:7a:8c:fd:e4:38:fd:87:c1:b8:ea:15:ea:
22:a9:28:4b:ee:60:35:c1:ac:3b:2d:f9:a8:d1:70:
09:73:f9:33:b8:a2:0d:33:eb:54:ad:0b:39:f1:d1:
a4:3b:a9:3b:06:b3:72:16:71:fd:b1:3e:3b:b6:c9:
db:f1:01:bf:97:e7:74:a3:d8:ff:da:7f:dd:42:66:
a9:a7:a4:9b:39:8e:e2:d9:9b:6a:fb:32:51:5c:95:
57:c2:37:a8:be:e4:ac:c1:d2:45:fe:49:2c:e8:aa:
eb:fe:c2:3e:43:dc:36:33:6f:22:d8:3b:7e:f3:8b:
23:57:38:bf:a2:5c:f9:23:be:93:1f:2e:82:cc:17:
c4:3c:25:13:f7:da:13:d0:37:f8:30:71:18:2a:38:
7e:71:4d:db:fa:42:6b:ee:9d:f1:49:5f:5d:6c:82:
32:8c:e1:98:b4:d9:2d:f4:28:e9:de:c9:82:a9:ee:
20:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:B7:B9:22:16:95:EE:A3:F8:29:17:CA:07:75:A7:F9:0A:DD:42:8F
X509v3 Authority Key Identifier:
keyid:97:46:61:CB:1C:38:E6:3B:D7:8B:D6:B2:B1:D6:86:86:A5:41:5B:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l0Zhyxw45jvXi9aysdaGhqVBW_U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/Lbe5IhaV7qP4KRfKB3Wn-QrdQo8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a0bf3e-3645-4e16-bca9-8adac17e90ae/1/l0Zhyxw45jvXi9aysdaGhqVBW_U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.16.0/22
45.138.172.0/22
45.147.228.0/22
45.153.240.0/22
91.200.100.0/22
152.89.244.0/22
160.20.144.0/22
IPv6:
2a09:38c0::/29
2a0c:6a40::/29
2a0d:4cc0::/29
2a0e:5100::/29
2a0e:b540::/29
2a10:9c00::/29
Signature Algorithm: sha256WithRSAEncryption
c4:77:39:bc:bb:7c:3b:c1:0a:9a:84:bf:94:ff:90:fc:ac:b7:
c8:c9:82:27:9a:db:0a:fc:50:e3:92:1c:9d:78:7f:e8:6c:cf:
1e:77:00:5b:cd:2a:33:f4:a0:be:68:4a:9a:3f:a3:9a:01:58:
d4:6a:7f:dd:1b:b6:c0:ed:82:1e:7b:85:3f:64:11:fe:48:ea:
01:ce:9f:be:15:61:1d:f2:70:7b:a4:17:69:ea:86:79:35:ff:
0a:39:44:ad:79:01:25:2f:df:05:ac:73:df:5a:02:e3:63:9c:
51:7e:92:f8:96:d9:dc:19:d3:ac:e0:6f:a3:97:07:5f:86:b9:
58:31:3e:f4:11:8c:0c:a1:de:c3:0a:39:ec:c8:a8:e7:7e:08:
41:b9:6c:c1:27:fd:cd:fa:4d:4b:1b:fd:5b:b6:f7:34:5f:25:
b9:b1:51:fa:8e:7f:79:0a:d3:2f:f5:26:67:13:aa:c3:da:44:
73:b9:20:6f:c5:ba:0e:36:32:d9:99:7d:8a:06:67:9e:5f:f8:
6d:c7:cd:66:d9:c7:41:e0:5a:f8:cc:0c:18:14:45:75:25:75:
72:c0:cf:ca:56:fc:53:46:76:e4:4a:02:2b:e2:2f:ea:04:e4:
74:75:55:4f:fc:39:0e:b9:3b:0d:4b:dd:83:b5:2b:a8:68:f1:
94:ec:73:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:36 2024 by rpki-client on console-fra.rpki-client.org