Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FgC3S0fC5xM9_CASxGEyz_pCyK8.roa
File: FgC3S0fC5xM9_CASxGEyz_pCyK8.roa (raw, json)
Hash identifier: yIycpbkbcYL1WuA4WvkVgBpMXLjgFjwgTRy9XEtUWQo=
Subject key identifier: 16:00:B7:4B:47:C2:E7:13:3D:FC:20:12:C4:61:32:CF:FA:42:C8:AF
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1A7ED493
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FgC3S0fC5xM9_CASxGEyz_pCyK8.roa
Signing time: Wed 23 Feb 2022 05:23:01 +0000
ROA not before: Wed 23 Feb 2022 05:23:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 45.86.202.0/24 maxlen: 24
45.86.200.0/24 maxlen: 24
136.144.17.0/24 maxlen: 24
193.37.33.0/24 maxlen: 24
193.37.32.0/24 maxlen: 24
136.144.19.0/24 maxlen: 24
194.5.48.0/24 maxlen: 24
194.5.49.0/24 maxlen: 24
194.34.172.0/24 maxlen: 24
194.5.52.0/24 maxlen: 24
194.5.53.0/24 maxlen: 24
136.144.42.0/24 maxlen: 24
194.34.173.0/24 maxlen: 24
45.84.219.0/24 maxlen: 24
45.84.217.0/24 maxlen: 24
45.84.218.0/24 maxlen: 24
45.84.216.0/24 maxlen: 24
193.36.224.0/24 maxlen: 24
193.36.225.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
193.176.211.0/24 maxlen: 24
45.154.138.0/24 maxlen: 24
45.146.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 444519571 (0x1a7ed493)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Feb 23 05:23:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1600b74b47c2e7133dfc2012c46132cffa42c8af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f4:21:59:10:a5:22:79:fd:cc:20:ed:2f:89:
b7:c0:78:ea:4e:55:33:7c:88:60:c5:65:67:fb:29:
e5:b6:92:4a:e2:3a:f9:1e:a7:cd:4f:1c:b4:b8:a4:
e3:cb:90:6c:07:99:41:58:32:cf:ae:61:52:3d:ec:
b1:32:f5:54:a4:8c:11:fb:ea:cd:82:16:fa:67:16:
de:67:61:95:44:3a:38:74:24:0b:a1:34:a3:2d:d7:
ae:39:7f:ba:e3:f0:4c:3e:2b:6d:0c:e2:7c:fb:cc:
73:ab:cb:63:25:12:2b:8c:48:f0:5b:99:91:88:e2:
9e:3e:2c:3b:09:cd:6b:1d:6c:72:fa:d2:29:5d:1b:
d4:95:c7:7e:c8:b1:88:ce:95:39:a9:f7:23:32:c6:
65:70:8c:26:dc:b8:c1:93:ca:d9:04:d0:23:59:f1:
ef:5a:c8:73:5f:5b:53:40:c3:48:c7:aa:57:e7:b6:
7f:45:f9:5a:71:d9:4e:11:73:ec:7a:c0:04:f8:cd:
55:1d:0d:63:62:5f:7a:d1:80:aa:7b:9e:45:e1:6c:
76:79:ae:79:d7:79:06:57:76:58:ab:32:78:f9:d3:
d6:dd:53:b8:15:da:6a:c3:c2:20:79:14:83:37:40:
3b:98:1c:27:fd:8a:f6:0a:eb:9d:79:84:43:3b:97:
52:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:00:B7:4B:47:C2:E7:13:3D:FC:20:12:C4:61:32:CF:FA:42:C8:AF
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/FgC3S0fC5xM9_CASxGEyz_pCyK8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/22
45.86.200.0/24
45.86.202.0/24
45.95.243.0/24
45.146.54.0/24
45.154.138.0/24
136.144.17.0/24
136.144.19.0/24
136.144.42.0/24
193.36.224.0/23
193.37.32.0/23
193.176.211.0/24
194.5.48.0/23
194.5.52.0/23
194.34.172.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:3f:fb:0d:ec:de:49:3d:5e:04:9b:2d:fc:e2:b9:6c:d8:86:
d2:3b:42:bc:b3:fd:b0:db:80:5c:06:a8:90:77:b5:f4:f1:23:
f8:0f:4b:9f:69:19:5f:a6:95:2a:4a:eb:90:de:33:1e:3f:50:
3f:e6:58:af:07:17:d0:f9:c0:16:5b:23:38:06:2f:15:3b:09:
43:2d:69:84:4e:91:11:d7:96:92:10:4c:cc:5e:67:a9:06:2c:
7b:27:4c:8e:11:a8:b4:2a:be:32:12:b2:01:69:65:c7:d1:71:
82:e0:fb:2e:a4:bf:18:15:0f:05:fb:6d:e0:cc:08:b1:ae:a1:
dd:b2:62:30:7c:89:fd:76:e4:9b:3c:7e:b4:d7:af:ca:04:3d:
37:d9:1d:ad:72:5b:0a:e9:ab:f9:db:6b:c2:6f:86:6c:12:08:
96:4b:90:e5:3c:96:7f:92:2b:28:44:55:9d:f9:9d:e3:bd:26:
63:67:50:fb:22:fd:60:bb:77:ba:2c:65:69:27:f4:6f:b5:c1:
f9:90:d5:16:ac:75:d9:33:e9:8a:41:40:a6:eb:7d:e4:bf:ff:
33:13:e6:c7:8e:54:47:b8:c8:0b:46:1f:4b:74:f1:7d:cf:82:
fa:2b:d7:02:27:0d:54:96:43:6a:05:71:1c:02:bf:d4:0a:bc:
5e:9c:6f:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org