Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/I6XDVzRL8k1YvEFsyPDmLm6c4kg.roa
File: I6XDVzRL8k1YvEFsyPDmLm6c4kg.roa (raw, json)
Hash identifier: gtphdUvXVcgKe9FcdosJVKRwQXlN/ULGFpJOb3g3XuM=
Subject key identifier: 23:A5:C3:57:34:4B:F2:4D:58:BC:41:6C:C8:F0:E6:2E:6E:9C:E2:48
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19C79D31
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/I6XDVzRL8k1YvEFsyPDmLm6c4kg.roa
Signing time: Sat 01 Jan 2022 15:56:35 +0000
ROA not before: Sat 01 Jan 2022 15:56:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 45.149.105.0/24 maxlen: 24
45.87.30.0/23 maxlen: 23
45.149.106.0/23 maxlen: 23
45.134.220.0/23 maxlen: 23
45.148.98.0/23 maxlen: 23
45.148.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 432512305 (0x19c79d31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=23a5c357344bf24d58bc416cc8f0e62e6e9ce248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:ab:d8:9d:88:d3:28:e5:70:37:fe:bb:c9:83:
b4:47:81:80:4b:5b:bb:38:a2:aa:f1:95:e6:f7:3b:
48:45:0c:48:90:62:9f:60:d8:28:99:19:6b:61:cc:
7d:5b:52:f0:25:25:df:d8:6e:fe:49:f7:8b:2c:30:
84:1b:42:a7:5c:b2:55:f5:68:10:f6:47:df:ab:af:
da:19:01:36:1b:d5:5a:17:88:76:8b:71:bd:ec:d5:
31:b4:d6:82:0d:83:8d:3a:d7:9c:23:96:ef:af:cf:
12:eb:6b:ad:38:ee:ee:fe:08:8c:2e:7d:c1:4e:c4:
d6:d8:8e:1f:45:31:6c:cf:bb:6d:90:5a:03:e3:4f:
3e:b7:03:a4:65:97:30:dd:b3:98:c2:8e:c0:1d:67:
04:5a:ea:9f:38:94:b8:09:30:82:da:cb:61:a1:05:
78:d6:ad:60:94:17:10:60:aa:f9:58:9a:a7:04:d6:
5c:a2:0f:1a:39:0f:00:31:2b:95:99:76:48:c3:98:
82:45:98:d3:55:20:7c:2d:30:f1:ba:74:ff:6b:bb:
3e:bc:32:1d:25:71:ca:d2:56:8c:84:a2:70:65:dd:
3c:9e:74:eb:85:02:fd:ea:2f:87:dd:49:2d:1d:f4:
71:b8:0f:70:ac:93:68:3d:41:bf:8c:96:55:f9:2d:
e2:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A5:C3:57:34:4B:F2:4D:58:BC:41:6C:C8:F0:E6:2E:6E:9C:E2:48
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/I6XDVzRL8k1YvEFsyPDmLm6c4kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.30.0/23
45.134.220.0/23
45.148.97.0-45.148.99.255
45.149.105.0-45.149.107.255
Signature Algorithm: sha256WithRSAEncryption
06:5a:5e:8e:f9:31:46:51:86:a5:bf:53:7e:12:67:b5:45:0f:
97:87:0e:97:03:dc:48:90:75:81:aa:01:ec:af:84:3c:70:b5:
6b:84:05:b6:46:7f:2f:8b:d2:b1:b3:91:6a:73:2b:37:87:0b:
04:50:da:6d:f0:2f:00:ef:de:92:1b:fc:7d:14:1c:d8:19:cc:
4b:fe:02:f7:18:05:25:5b:47:5b:6b:0e:02:92:b9:56:f5:86:
c4:1c:68:1c:22:c2:ec:2f:48:75:eb:80:10:e0:b6:62:20:1f:
5f:df:96:0a:c0:57:36:b6:88:5c:58:a5:6b:9b:18:8b:06:70:
d7:79:96:d9:cd:86:6f:e8:ca:1e:e8:a2:0e:18:30:8d:93:5c:
12:0e:b1:0a:a1:da:73:22:98:69:87:c5:e7:72:01:20:f0:fa:
31:1d:c6:91:c0:f8:87:3e:2d:5c:69:f2:83:c5:4c:a6:37:f7:
e3:3e:57:73:80:ed:7f:91:e0:fa:1e:47:8f:74:b2:49:14:f4:
23:d3:88:99:33:e2:fb:69:42:e9:22:7c:3c:9e:92:37:6f:cd:
e9:3b:f0:47:08:1a:51:44:f8:bb:28:7f:85:2e:47:fd:75:00:
dd:e5:88:94:6c:67:7c:1f:d6:fd:16:63:4f:1e:2a:35:a7:21:
45:de:c9:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org