Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/d2e14e-f900-4ab0-93fd-fdebf125b48e/1/sS0DhbJ52c_XBCWsngxAJJWsi6g.roa
File: sS0DhbJ52c_XBCWsngxAJJWsi6g.roa (raw, json)
Hash identifier: PEjrVyN5BYjqMLcHNjMTKbl7bLt3JH3rJ+s56V1kaAw=
Subject key identifier: B1:2D:03:85:B2:79:D9:CF:D7:04:25:AC:9E:0C:40:24:95:AC:8B:A8
Certificate issuer: /CN=1644e6c50cb692dfb640f6f88e228a2d9b06c679
Certificate serial: 0865422D
Authority key identifier: 16:44:E6:C5:0C:B6:92:DF:B6:40:F6:F8:8E:22:8A:2D:9B:06:C6:79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FkTmxQy2kt-2QPb4jiKKLZsGxnk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/d2e14e-f900-4ab0-93fd-fdebf125b48e/1/sS0DhbJ52c_XBCWsngxAJJWsi6g.roa
Signing time: Sat 01 Jan 2022 03:59:38 +0000
ROA not before: Sat 01 Jan 2022 03:59:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208776
IP address blocks: 45.14.58.0/24 maxlen: 24
45.14.57.0/24 maxlen: 24
45.14.56.0/23 maxlen: 23
45.14.56.0/24 maxlen: 24
45.14.56.0/22 maxlen: 22
45.14.58.0/23 maxlen: 23
45.14.59.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140853805 (0x865422d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1644e6c50cb692dfb640f6f88e228a2d9b06c679
Validity
Not Before: Jan 1 03:59:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b12d0385b279d9cfd70425ac9e0c402495ac8ba8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:5e:84:47:d4:16:80:43:bf:44:3a:bb:33:26:
05:dc:f0:00:5e:c0:3e:41:88:c0:7d:15:6d:89:40:
37:80:cc:e5:04:57:ac:d4:4e:c4:a7:7e:d3:12:d5:
d9:2c:0b:9a:75:0c:e7:27:83:94:d1:07:3b:44:c6:
7e:f6:b9:c9:6f:91:27:e3:02:e6:30:ea:8a:90:87:
c0:26:2e:11:27:53:84:f3:93:89:5a:2e:1e:eb:0e:
3a:f8:dd:7f:c1:35:4e:59:00:b1:ba:54:15:0d:f8:
52:bf:50:e9:65:9b:f7:ed:64:cc:c5:f1:6a:f7:35:
b0:10:d0:b8:5e:75:33:30:fe:7a:09:2d:29:c9:42:
e5:97:66:04:29:cd:03:16:51:5b:fd:8d:81:1e:f2:
c5:ed:1a:38:cc:2a:0e:61:25:eb:40:19:fb:cb:ce:
14:56:c8:97:cf:ae:19:d6:04:f6:f6:b0:29:eb:07:
07:2c:56:ff:d3:a2:27:18:28:aa:96:1d:ec:db:e6:
0d:03:c7:04:61:52:e2:db:ba:4f:6d:e4:52:60:69:
49:e8:1e:7d:3d:2e:80:76:23:a7:83:ea:33:d1:a8:
a9:db:86:6c:57:4b:21:41:0b:fc:40:44:43:e5:93:
1d:81:5f:43:06:3e:8f:e5:52:6f:3a:c2:93:60:98:
0d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:2D:03:85:B2:79:D9:CF:D7:04:25:AC:9E:0C:40:24:95:AC:8B:A8
X509v3 Authority Key Identifier:
keyid:16:44:E6:C5:0C:B6:92:DF:B6:40:F6:F8:8E:22:8A:2D:9B:06:C6:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FkTmxQy2kt-2QPb4jiKKLZsGxnk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d2e14e-f900-4ab0-93fd-fdebf125b48e/1/sS0DhbJ52c_XBCWsngxAJJWsi6g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/d2e14e-f900-4ab0-93fd-fdebf125b48e/1/FkTmxQy2kt-2QPb4jiKKLZsGxnk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.56.0/22
Signature Algorithm: sha256WithRSAEncryption
29:a8:4a:47:3b:b8:56:43:c0:2a:83:b7:b7:23:b7:7a:74:3a:
d0:41:a3:fd:7c:e8:f5:2d:c4:d2:66:02:8c:2f:2c:fa:2a:35:
4a:45:7c:6e:f6:d5:5f:ce:2e:51:db:0c:e0:81:44:76:00:4e:
96:fe:e7:94:79:7b:5b:b1:0a:69:60:be:8c:9c:46:e7:4a:4e:
64:d8:34:8b:c0:33:e7:21:1d:37:a8:b2:f3:9a:24:90:95:f1:
65:08:29:09:55:40:8d:72:a5:9c:21:ec:8d:b7:19:68:47:dc:
45:ef:22:5e:af:42:8d:62:af:76:09:bc:09:1f:81:eb:cf:ad:
d0:1d:05:60:94:56:f1:2a:21:88:b9:9e:30:fa:14:1b:ac:9a:
e7:cb:f3:3d:c6:e9:f7:2b:97:df:58:50:4b:92:34:30:a1:53:
0b:94:ca:46:55:8a:d7:9a:b5:06:8b:67:f9:8a:cb:91:52:b6:
49:99:d0:2f:4d:9d:78:e2:57:c3:86:ce:89:f3:8a:fe:30:55:
76:f7:99:9a:e7:cc:db:ad:7d:8c:84:a8:a8:a0:b4:f2:1b:2a:
ce:f2:b4:b8:da:ab:6f:52:4d:a6:a9:58:a2:1e:39:51:08:db:
4a:47:79:88:d5:15:12:ba:68:02:b4:cc:84:b5:90:78:51:df:
d8:88:53:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:31:57 2024 by rpki-client on console-fra.rpki-client.org