Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/P6PE0D7e9rd3nb5wrJp4Xj_Xg30.roa
File: P6PE0D7e9rd3nb5wrJp4Xj_Xg30.roa (raw, json)
Hash identifier: by1ObR+LTS3aHN9qjW1V48SJ7rpyXdLI2TAMrX1tSys=
Subject key identifier: 3F:A3:C4:D0:3E:DE:F6:B7:77:9D:BE:70:AC:9A:78:5E:3F:D7:83:7D
Certificate issuer: /CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Certificate serial: 0183A44EB7D7199ACEEE8CC6A3B1F8B1A1EC
Authority key identifier: 73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/P6PE0D7e9rd3nb5wrJp4Xj_Xg30.roa
Signing time: Tue 04 Oct 2022 18:42:45 +0000
ROA not before: Tue 04 Oct 2022 18:42:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39521
IP address blocks: 185.144.56.0/22 maxlen: 24
83.229.113.0/24 maxlen: 24
45.95.40.0/22 maxlen: 22
83.229.23.0/24 maxlen: 24
188.191.48.0/22 maxlen: 22
5.22.204.0/22 maxlen: 22
217.194.153.0/24 maxlen: 24
83.229.34.0/24 maxlen: 24
193.57.94.0/23 maxlen: 24
45.130.100.0/22 maxlen: 22
95.178.107.0/24 maxlen: 24
45.10.16.0/22 maxlen: 22
45.88.5.0/24 maxlen: 24
45.88.6.0/24 maxlen: 24
45.88.7.0/24 maxlen: 24
2a05:e4c0::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:a4:4e:b7:d7:19:9a:ce:ee:8c:c6:a3:b1:f8:b1:a1:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=73f210f1299a1e0aee71dc1d79e5fb12092d30a9
Validity
Not Before: Oct 4 18:42:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3fa3c4d03edef6b7779dbe70ac9a785e3fd7837d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:1b:a5:d6:cd:50:90:2f:11:e0:19:dd:9a:59:
e0:b1:56:1f:92:8d:31:5b:91:ef:c3:3f:a3:fb:cb:
96:02:26:8b:24:ad:7e:cd:d4:32:c5:9a:7e:03:46:
dc:15:7c:eb:17:c5:41:8c:a6:72:21:c2:14:00:28:
1f:23:db:ec:2e:a3:85:30:b1:85:d4:7a:a6:08:aa:
66:76:8a:b3:74:6e:5f:94:5d:de:03:74:90:a4:05:
18:3f:7b:76:e9:2f:f5:14:ec:06:e5:26:02:f6:f1:
50:9f:65:eb:64:b9:59:cd:6a:3e:9d:0d:16:52:b8:
27:81:aa:c4:5e:89:ef:72:50:d4:cc:53:d6:e8:a5:
f2:ba:78:2e:b1:95:40:f5:1e:27:d2:05:97:98:64:
70:5b:4c:f7:fe:96:0c:25:dc:d1:1c:ea:c1:3c:ff:
f5:b4:bb:74:b4:f2:4d:10:a0:ef:70:4a:79:0a:17:
c6:9c:9e:37:9d:91:e6:c4:fe:b0:45:ef:1b:1c:50:
8c:ed:c0:e2:e6:ea:c2:f1:50:4c:be:7f:c5:95:3c:
51:f9:e1:3d:19:82:25:69:73:74:f4:ea:25:fc:92:
20:2b:bb:d4:f8:10:75:34:f9:5e:39:24:23:82:59:
eb:9a:e7:1a:19:f2:c5:37:3c:ac:d8:2d:f1:76:78:
49:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:A3:C4:D0:3E:DE:F6:B7:77:9D:BE:70:AC:9A:78:5E:3F:D7:83:7D
X509v3 Authority Key Identifier:
keyid:73:F2:10:F1:29:9A:1E:0A:EE:71:DC:1D:79:E5:FB:12:09:2D:30:A9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/c_IQ8SmaHgrucdwdeeX7EgktMKk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/P6PE0D7e9rd3nb5wrJp4Xj_Xg30.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/db1b48-1cc5-4833-93d9-b9464718ba37/1/c_IQ8SmaHgrucdwdeeX7EgktMKk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.22.204.0/22
45.10.16.0/22
45.88.5.0-45.88.7.255
45.95.40.0/22
45.130.100.0/22
83.229.23.0/24
83.229.34.0/24
83.229.113.0/24
95.178.107.0/24
185.144.56.0/22
188.191.48.0/22
193.57.94.0/23
217.194.153.0/24
IPv6:
2a05:e4c0::/29
Signature Algorithm: sha256WithRSAEncryption
40:d0:ba:e9:32:fe:c5:6b:89:13:58:b3:42:c1:e5:a0:d3:a3:
c2:ac:57:06:af:01:b9:6f:08:2a:44:39:55:83:69:6e:c1:be:
33:9d:d3:ff:f4:35:e7:e5:b9:f6:b6:08:ef:61:18:e7:bc:1b:
87:d6:5a:50:db:bd:a4:6c:f3:00:ef:a0:b9:08:2e:ea:63:19:
a9:84:eb:d8:23:de:9e:d1:47:ff:85:62:12:b3:ce:18:5c:fa:
26:cc:fa:6b:26:41:ac:9f:84:44:5f:d5:ab:d6:d1:00:00:01:
a4:82:e2:92:cf:ed:e9:f3:e4:9e:b5:6f:96:06:37:aa:78:bf:
2a:50:6c:a6:d6:46:e1:ff:24:2a:ae:ac:f6:84:f1:e3:e2:b9:
93:67:ed:0f:6a:90:74:ce:c6:36:9c:2f:29:a9:6e:61:3c:da:
08:9b:ac:d3:23:57:50:a5:c6:ca:3f:74:5e:8a:31:12:f9:63:
0d:fb:98:46:e1:8c:34:0d:9a:39:cd:25:ce:0f:ab:1e:a4:df:
5e:61:d1:6a:7a:ba:41:08:d5:21:3e:eb:25:25:f6:0a:ab:f9:
e1:ce:ca:46:99:bb:25:14:70:d1:41:92:f0:c5:77:1e:50:d8:
68:65:ea:02:7b:2a:1f:8f:17:50:b5:08:1b:58:eb:62:c0:96:
76:55:03:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:25:07 2024 by rpki-client on console-fra.rpki-client.org