Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/L4k5BAbqYmWycx3zzIFDGYOX56Q.roa
File: L4k5BAbqYmWycx3zzIFDGYOX56Q.roa (raw, json)
Hash identifier: IwglO5+/m88TQjDe58UKc9MXfqo54pDux+ugMspJTuU=
Subject key identifier: 2F:89:39:04:06:EA:62:65:B2:73:1D:F3:CC:81:43:19:83:97:E7:A4
Certificate issuer: /CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Certificate serial: 0576950D
Authority key identifier: 20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/L4k5BAbqYmWycx3zzIFDGYOX56Q.roa
Signing time: Sat 01 Jan 2022 11:01:53 +0000
ROA not before: Sat 01 Jan 2022 11:01:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48813
IP address blocks: 45.140.108.0/22 maxlen: 24
185.145.248.0/22 maxlen: 24
193.19.208.0/22 maxlen: 24
2a07:4b00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91657485 (0x576950d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=206d182a3b44a7be05d3ee70dc90a85d57abfb8d
Validity
Not Before: Jan 1 11:01:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f89390406ea6265b2731df3cc8143198397e7a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:46:a2:83:cb:2f:d1:61:77:10:ae:15:bc:ae:
b9:3d:2c:34:a2:37:3e:9b:40:ee:79:95:10:f6:2f:
53:2c:83:95:b7:9f:3b:8d:8c:90:28:1d:9e:26:b7:
84:9b:44:a4:d7:45:46:64:29:37:e4:5f:a4:a5:7f:
25:53:1e:0a:6d:72:b0:5e:10:8e:d1:6e:bd:ca:f8:
4e:44:1f:7d:25:57:06:50:80:4f:08:94:0e:96:9a:
2b:b1:ea:fc:55:b3:3f:75:49:0a:06:1f:62:af:1a:
45:f1:8b:40:f9:84:94:38:d9:5c:4b:e6:46:98:74:
65:0f:b6:a8:6b:62:6a:d4:77:f3:84:90:ee:b7:c9:
ad:ee:76:07:54:8d:ff:cf:a9:9e:db:cc:5f:b1:36:
f7:3e:ba:32:78:5a:27:38:3c:88:75:8b:ce:33:80:
88:3f:67:72:6f:e1:ce:35:bd:48:8e:9b:8b:95:fc:
eb:6c:ee:92:e7:49:61:41:fa:ce:50:d2:8d:cf:c9:
86:75:b2:ab:58:b7:78:15:5c:96:55:de:0d:25:01:
b2:11:4b:74:83:4f:c8:4e:75:57:ba:0d:c4:06:15:
81:e0:45:a8:2f:85:73:b5:c7:38:99:fb:f9:ab:d9:
02:7e:68:54:b1:23:b8:73:a1:71:fb:0b:5b:84:b3:
bc:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:89:39:04:06:EA:62:65:B2:73:1D:F3:CC:81:43:19:83:97:E7:A4
X509v3 Authority Key Identifier:
keyid:20:6D:18:2A:3B:44:A7:BE:05:D3:EE:70:DC:90:A8:5D:57:AB:FB:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IG0YKjtEp74F0-5w3JCoXVer-40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/L4k5BAbqYmWycx3zzIFDGYOX56Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/e6f2ee-0476-40b4-bb6a-660778099b3d/1/IG0YKjtEp74F0-5w3JCoXVer-40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.108.0/22
185.145.248.0/22
193.19.208.0/22
IPv6:
2a07:4b00::/29
Signature Algorithm: sha256WithRSAEncryption
1a:45:c4:d0:4d:3a:0a:78:2e:f3:a4:10:1e:65:00:43:93:eb:
46:e3:81:04:7b:8d:94:69:26:fc:d0:ab:0a:42:fa:08:81:da:
fc:c1:80:a5:7e:56:0b:d2:d2:0d:69:ac:66:e4:0f:91:e2:69:
fc:92:dc:1e:23:8b:2e:41:66:e1:ed:53:93:9c:dd:26:e6:e8:
60:1b:dc:81:e5:36:69:c4:34:45:5d:8b:50:11:5d:02:e2:fe:
58:3b:f9:ab:00:f2:39:ba:7c:e4:dd:17:01:ac:63:c9:c4:49:
18:2e:a3:4b:b9:21:49:0b:e4:17:b6:78:3d:28:a3:16:be:a9:
e0:1b:0a:30:96:40:a3:81:64:f7:4d:b9:61:50:d1:d7:f4:d8:
27:7a:14:7b:2b:38:44:94:00:0a:61:7f:3c:9c:23:11:2d:25:
75:ac:31:f2:07:a3:a2:ba:72:3e:83:9a:b4:80:3d:7c:15:ba:
d8:53:36:e9:2a:93:38:0a:ff:2c:cb:dc:a1:30:8f:44:1f:42:
03:e4:f6:5f:79:72:c7:71:7d:49:54:15:49:9e:14:ee:63:55:
76:94:93:84:e3:f1:44:1f:d7:f4:a4:de:64:2a:95:db:b8:11:
14:c4:4f:32:30:80:65:06:d3:5e:a7:20:6b:8a:e9:79:7d:ac:
13:dd:68:a1
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:15 2024 by rpki-client on console-fra.rpki-client.org