Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/1-uJYfh4jUGtd6MdwxbxrqjWKbl8.roa
File: 1-uJYfh4jUGtd6MdwxbxrqjWKbl8.roa (raw, json)
Hash identifier: POPeXLVAlfLiXAcCcdAeXyWu6j7PHSZccd3rcs2FSTE=
Subject key identifier: FA:E2:58:7E:1E:23:50:6B:5D:E8:C7:70:C5:BC:6B:AA:35:8A:6E:5F
Certificate issuer: /CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Certificate serial: 018539974D4A46E8CCC6EEB4DBAFD3CC7929
Authority key identifier: 9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/1-uJYfh4jUGtd6MdwxbxrqjWKbl8.roa
Signing time: Thu 22 Dec 2022 11:28:15 +0000
ROA not before: Thu 22 Dec 2022 11:28:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34927
IP address blocks: 45.134.88.0/24 maxlen: 24
45.134.91.0/24 maxlen: 24
45.134.89.0/24 maxlen: 24
193.148.251.0/24 maxlen: 24
193.148.250.0/24 maxlen: 24
193.148.249.0/24 maxlen: 24
193.148.248.0/24 maxlen: 24
2a0c:9a40:1024::/48 maxlen: 48
2a0c:9a40:1002::/48 maxlen: 48
2a0c:9a44::/48 maxlen: 48
2a0c:9a40:1000::/44 maxlen: 48
2a0c:9a40:1080::/44 maxlen: 48
2a0c:9a40:1058::/48 maxlen: 48
2a0c:9a40:1::/48 maxlen: 48
2a0c:9a40:1001::/48 maxlen: 48
2a0c:9a40:1055::/48 maxlen: 48
2a0c:9a40:1070::/48 maxlen: 48
2a0c:9a40:1050::/48 maxlen: 48
2a0c:9a40:1054::/48 maxlen: 48
2a0c:9a40:1057::/48 maxlen: 48
2a0c:9a40:1072::/48 maxlen: 48
2a0c:9a40:1090::/44 maxlen: 48
2a0c:9a40:1030::/44 maxlen: 48
2a0c:9a40:1070::/44 maxlen: 48
2a0c:9a40:1051::/48 maxlen: 48
2a0c:9a40:2600::/40 maxlen: 48
2a0c:9a40:2c00::/40 maxlen: 48
2a0c:9a40:2500::/40 maxlen: 40
2a0c:9a40:2a00::/40 maxlen: 40
2a0c:9a40:2200::/40 maxlen: 40
2a0c:9a40:2100::/40 maxlen: 40
2a0c:9a40:2800::/40 maxlen: 40
2a0c:9a40:2400::/40 maxlen: 40
2a0c:9a40:2700::/40 maxlen: 40
2a0c:9a40:1060::/48 maxlen: 48
2a0c:9a40:2900::/48 maxlen: 48
2a0c:9a40:1080::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:97:4d:4a:46:e8:cc:c6:ee:b4:db:af:d3:cc:79:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e95a361fe2b2c5292626ba4c56a65a814e48008
Validity
Not Before: Dec 22 11:28:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fae2587e1e23506b5de8c770c5bc6baa358a6e5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:22:0a:4d:8c:f4:6e:9d:1c:c7:30:c2:7d:f8:
54:d1:67:1d:08:cf:bc:9d:f6:27:4a:ac:84:01:c1:
dd:f8:41:a8:ea:85:a6:a6:14:10:a7:9f:8a:b4:f4:
63:af:26:2f:17:29:ce:82:52:29:6d:53:b4:84:82:
38:6c:df:51:18:ab:28:3e:9c:9f:47:49:c1:37:c4:
a2:b4:2e:9b:3e:ec:dd:d2:fd:23:f2:46:e4:dc:56:
11:29:ce:46:5e:56:29:61:c9:b6:80:b6:19:43:c5:
5d:19:0e:80:8d:3a:dc:e0:d8:39:e3:37:a0:8c:58:
d4:ac:41:ef:65:fd:b1:d1:16:6e:20:20:4a:19:22:
19:21:c0:dc:7a:72:0d:d1:a7:07:70:10:fc:7b:96:
2b:d9:92:80:38:ad:fb:ab:21:c7:12:78:2b:4f:82:
77:9d:79:25:e9:45:85:33:ff:9d:a9:fe:ca:8d:ba:
a4:78:c6:9e:26:55:03:6c:45:e4:20:05:0a:6b:4f:
1d:0e:77:6e:ac:8a:e3:49:db:80:3d:fe:16:40:c2:
21:70:5e:ba:ae:c2:fa:dc:28:20:b1:43:f5:4a:3d:
0e:b3:dc:08:91:90:f7:28:26:21:e1:ef:43:a9:9d:
41:d2:30:65:64:92:78:a2:2a:77:6a:cd:13:f3:57:
ec:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E2:58:7E:1E:23:50:6B:5D:E8:C7:70:C5:BC:6B:AA:35:8A:6E:5F
X509v3 Authority Key Identifier:
keyid:9E:95:A3:61:FE:2B:2C:52:92:62:6B:A4:C5:6A:65:A8:14:E4:80:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/npWjYf4rLFKSYmukxWplqBTkgAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/1-uJYfh4jUGtd6MdwxbxrqjWKbl8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/f96f73-6686-4164-b23f-bf4e527b9fa8/1/npWjYf4rLFKSYmukxWplqBTkgAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.88.0/23
45.134.91.0/24
193.148.248.0/22
IPv6:
2a0c:9a40:1::/48
2a0c:9a40:1000::/44
2a0c:9a40:1024::/48
2a0c:9a40:1030::/44
2a0c:9a40:1050::/47
2a0c:9a40:1054::/47
2a0c:9a40:1057::-2a0c:9a40:1058:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:1060::/48
2a0c:9a40:1070::-2a0c:9a40:109f:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2100::-2a0c:9a40:22ff:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2400::-2a0c:9a40:2900:ffff:ffff:ffff:ffff:ffff
2a0c:9a40:2a00::/40
2a0c:9a40:2c00::/40
2a0c:9a44::/48
Signature Algorithm: sha256WithRSAEncryption
ae:04:66:df:60:43:60:c0:e1:f4:73:f0:f3:2c:1d:2b:44:e1:
f1:b8:29:f4:0a:7c:ba:3d:94:82:05:16:60:d7:9e:75:19:3e:
57:d4:bb:ed:52:43:26:92:46:a4:fe:50:23:3c:9e:62:d8:71:
28:61:1b:2f:65:d5:be:41:56:39:e8:19:21:9c:1a:5f:b9:ba:
5c:b8:79:83:7c:aa:76:34:5a:75:a6:34:d7:13:1d:3c:ae:0d:
e8:0d:9e:a8:d6:57:84:ce:b5:1b:4f:37:4b:b6:46:1d:53:9d:
e5:7b:b8:66:f8:4d:f2:72:70:5b:aa:a8:c8:c0:db:19:46:da:
79:10:22:1f:80:a2:b7:68:73:4f:65:1a:8e:d6:33:1a:5b:21:
11:54:01:59:0c:b4:6d:ad:d6:df:d7:20:4f:b0:56:93:e6:83:
b9:c3:c9:2c:ef:55:89:1d:84:9b:ad:00:9a:d9:10:21:e3:07:
34:b3:77:1f:12:e6:14:f2:47:4d:d6:19:c4:9b:97:96:15:d6:
78:23:35:a1:eb:36:e0:e1:2e:a8:c0:d4:a6:67:af:91:13:f1:
ba:69:84:b3:16:f5:55:db:a5:cd:1e:04:64:43:8d:2a:99:82:
fc:3b:73:d0:ee:11:70:7b:28:9b:0b:a1:0d:b4:98:3a:90:65:
c6:65:45:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:27 2023 by rpki-client on console-ams.rpki-client.org