Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/1lWxy6m5qkT_kORLcf8q60S1epI.roa
File: 1lWxy6m5qkT_kORLcf8q60S1epI.roa (raw, json)
Hash identifier: ahUBV+TRkPldFJd4Hoa5aUuzww1epZYeJOkuCzrxVGk=
Subject key identifier: D6:55:B1:CB:A9:B9:AA:44:FF:90:E4:4B:71:FF:2A:EB:44:B5:7A:92
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 09EAADBE
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/1lWxy6m5qkT_kORLcf8q60S1epI.roa
Signing time: Mon 27 Jun 2022 11:06:47 +0000
ROA not before: Mon 27 Jun 2022 11:06:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3320
IP address blocks: 45.140.8.0/23 maxlen: 23
45.151.112.0/22 maxlen: 23
45.157.202.0/23 maxlen: 23
45.154.238.0/23 maxlen: 23
45.157.32.0/23 maxlen: 23
45.128.158.0/23 maxlen: 23
45.141.62.0/23 maxlen: 23
2a0c:9e02::/32 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 166374846 (0x9eaadbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jun 27 11:06:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d655b1cba9b9aa44ff90e44b71ff2aeb44b57a92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:fa:b2:ab:d3:62:fc:1b:37:e8:61:d2:63:a6:
d6:8e:42:e2:a2:48:65:d7:8c:f1:08:79:2f:19:7b:
35:6a:86:f8:20:40:8b:31:64:15:ad:70:02:c3:d8:
f5:9d:ef:25:fd:f4:b9:9a:fb:2a:9d:29:c1:da:01:
36:11:be:bb:2c:e9:de:ff:80:03:62:28:ad:b0:92:
e8:ed:dc:5e:2b:54:ac:bf:9b:cd:6a:84:d5:cb:08:
f8:45:a5:8d:e3:3d:b5:48:86:5d:10:3c:c5:2b:a3:
95:d2:0a:b3:a5:52:c8:d1:c3:e7:ae:38:3b:fa:f8:
d6:8e:62:8f:9b:77:47:c0:47:b6:4d:de:c3:2c:bc:
c1:3b:47:91:97:46:db:6e:1c:37:39:51:36:e3:2d:
2b:e8:25:a2:ed:42:28:67:2b:4c:3f:7c:b1:2f:0e:
9b:80:e9:38:ec:81:ab:85:5f:a3:d1:6e:97:a8:83:
c1:3f:af:3d:f4:43:3e:dc:9c:82:8c:8b:d5:90:9a:
10:b5:53:e0:38:e3:8f:57:7d:f1:36:42:b3:7f:a8:
24:30:37:aa:2e:2e:7e:6f:8b:6f:25:e4:1c:6d:b6:
bc:6a:e9:0d:9c:47:a5:36:94:b2:eb:c6:58:4a:9c:
bd:da:e2:f0:a3:40:34:04:8f:ac:a3:bb:dd:63:9a:
48:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:55:B1:CB:A9:B9:AA:44:FF:90:E4:4B:71:FF:2A:EB:44:B5:7A:92
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/1lWxy6m5qkT_kORLcf8q60S1epI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.158.0/23
45.140.8.0/23
45.141.62.0/23
45.151.112.0/22
45.154.238.0/23
45.157.32.0/23
45.157.202.0/23
IPv6:
2a0c:9e02::/32
Signature Algorithm: sha256WithRSAEncryption
b5:24:d6:d0:c0:e9:ce:f0:6b:d7:2b:6f:84:32:41:b8:cf:a8:
ce:7f:a8:b5:f9:94:01:ad:b5:10:dd:94:d7:34:e9:24:1d:1c:
b3:48:70:8e:52:30:81:b2:96:5d:9f:91:95:a6:3d:a7:7c:2e:
0f:00:1b:49:27:98:9b:9a:33:a2:56:09:62:32:c9:78:13:a7:
09:47:0f:76:ab:42:33:04:47:92:de:46:9a:0f:d2:fd:05:b1:
89:1c:82:79:31:ff:ea:1a:05:0b:87:71:0a:dc:99:af:e5:3a:
d9:f8:90:bd:71:73:0f:8a:1d:df:3d:e3:0d:f7:79:9d:27:71:
a5:94:46:47:46:94:3f:c8:94:a7:f6:e9:d5:b0:de:cc:8f:73:
63:2b:0f:27:e7:b3:46:08:5a:6c:4e:7f:e7:d5:c4:b8:94:dd:
97:7e:ee:c7:f3:fd:5c:7f:e0:fb:66:8a:58:bf:2f:51:f6:60:
9c:a0:07:22:38:70:a8:8d:49:5c:29:d5:f6:cf:eb:0f:c9:b8:
db:b2:af:74:36:d6:5e:1d:8f:ea:13:0f:ac:3c:76:0e:fc:0f:
f8:70:2c:f1:21:e8:28:5b:12:aa:56:4e:83:32:41:a8:cb:95:
1d:1a:1d:7c:0a:ce:16:0e:f4:23:ea:a3:33:e1:32:f5:d3:ff:
34:44:62:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org