Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RuxX-m51__hsuEIuKyR9d8lsfHE.roa
File: RuxX-m51__hsuEIuKyR9d8lsfHE.roa (raw, json)
Hash identifier: ivn9sC+Irfs441a0LMMGKsraLRcYyO0Mup+uKJZL3yM=
Subject key identifier: 46:EC:57:FA:6E:75:FF:F8:6C:B8:42:2E:2B:24:7D:77:C9:6C:7C:71
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 01821216A74C8AEAF7969047A0E9C21B1B61
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RuxX-m51__hsuEIuKyR9d8lsfHE.roa
Signing time: Mon 18 Jul 2022 16:14:10 +0000
ROA not before: Mon 18 Jul 2022 16:14:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 400377
IP address blocks: 212.87.204.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
85.31.44.0/24 maxlen: 24
85.31.46.0/24 maxlen: 24
194.55.186.0/24 maxlen: 24
185.246.222.0/24 maxlen: 24
185.246.223.0/24 maxlen: 24
194.48.250.0/24 maxlen: 24
109.206.241.0/24 maxlen: 24
109.206.242.0/24 maxlen: 24
94.103.124.0/24 maxlen: 24
185.218.138.0/24 maxlen: 24
185.225.74.0/24 maxlen: 24
94.154.160.0/24 maxlen: 24
94.154.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:12:16:a7:4c:8a:ea:f7:96:90:47:a0:e9:c2:1b:1b:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jul 18 16:14:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=46ec57fa6e75fff86cb8422e2b247d77c96c7c71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:12:d1:ae:22:6c:52:1b:4b:16:f5:d5:15:f6:
fe:a0:14:41:b5:f2:80:8e:2d:e3:9e:fb:0e:0a:b7:
c8:3b:3e:39:d7:d5:f9:b9:2e:ac:28:01:bb:88:b0:
1b:59:ad:05:a9:60:78:b1:2b:bf:ec:ad:e2:f3:d2:
de:fd:94:44:76:83:77:17:be:14:f3:b4:1e:67:06:
14:f0:a6:7e:50:e0:ed:f8:2c:11:86:23:62:fd:3f:
0c:ab:db:57:f4:50:ca:27:49:56:f5:78:ec:a6:72:
2e:ce:f3:80:36:a2:53:e9:4e:0a:e5:6f:19:95:20:
44:01:2b:8c:ea:a8:47:62:92:1c:20:a0:37:32:58:
41:23:5d:72:5d:45:27:15:ec:b9:d4:7a:8b:2f:be:
66:93:78:b9:a5:2a:11:a6:30:2a:26:ba:ae:e3:4d:
c7:e0:5c:ea:90:d1:0a:e2:16:e1:58:da:1e:da:a1:
50:63:03:4e:1d:c3:d6:a4:9c:6d:6a:fc:3f:94:ce:
b5:4f:62:1f:05:84:00:cb:ce:4a:1b:f1:98:6f:3c:
f7:e4:79:2b:e9:f5:c4:1d:7e:0e:02:48:0b:f4:94:
a9:9f:1d:9d:b4:0c:20:a9:56:e6:95:30:68:d3:96:
1c:c3:72:be:c4:60:48:8b:d9:3c:62:52:18:d1:4f:
94:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:EC:57:FA:6E:75:FF:F8:6C:B8:42:2E:2B:24:7D:77:C9:6C:7C:71
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/RuxX-m51__hsuEIuKyR9d8lsfHE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
80.76.51.0/24
85.31.44.0/24
85.31.46.0/24
94.103.124.0/24
94.154.160.0/24
94.154.173.0/24
109.206.241.0-109.206.242.255
185.218.138.0/24
185.225.74.0/24
185.246.222.0/23
194.48.250.0/24
194.55.186.0/24
212.87.204.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:f1:c7:11:24:58:bf:6b:df:c4:b9:cc:e8:2c:10:36:8d:a9:
20:aa:a7:e8:e3:7c:9b:a4:a5:d2:47:c3:cf:38:b2:cb:17:6f:
df:1d:46:05:e3:c9:9b:d1:27:3e:59:57:de:64:9d:4f:8a:5d:
f5:e5:76:7a:85:2a:23:ee:a8:95:b1:85:d9:99:f2:8c:c5:5e:
48:0b:fc:3e:0a:04:b1:8c:85:6e:d8:eb:ef:8e:3d:c3:ce:32:
cb:e2:61:47:67:bf:5e:58:09:32:57:24:a7:ac:c9:11:e6:e8:
c1:3e:66:17:fb:4c:be:2b:38:8d:1b:90:51:09:47:2f:69:91:
33:01:cc:6e:bc:2f:91:7d:24:c2:80:fa:f0:c2:fe:3f:49:39:
ad:2c:63:7a:3e:f7:8f:07:1d:5d:f3:ec:d8:97:8a:03:d2:c6:
bb:72:1e:63:59:47:2f:40:d4:8b:54:44:6b:b8:c2:91:05:16:
6e:03:9c:a4:b6:dc:ca:e3:3c:f0:09:c8:ca:dd:a8:84:95:d4:
6a:50:aa:37:2d:93:a4:0e:4d:5e:76:91:82:16:5c:90:73:a2:
94:36:75:0a:b2:16:ba:fe:a3:41:46:ec:e3:95:fa:5c:aa:c0:
29:4b:a3:c0:2c:df:f0:8d:48:ef:75:dc:c2:87:84:06:5a:ac:
57:61:39:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:37 2023 by rpki-client on console-ams.rpki-client.org