Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/mBDmRCG0nD5AnCcjI0RQpd4oGVM.roa
File: mBDmRCG0nD5AnCcjI0RQpd4oGVM.roa (raw, json)
Hash identifier: LeNV0aFajRQND+EKA5i0XPXbBc6iYxo9wDwPODxS+m4=
Subject key identifier: 98:10:E6:44:21:B4:9C:3E:40:9C:27:23:23:44:50:A5:DE:28:19:53
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 097DE7A9
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/mBDmRCG0nD5AnCcjI0RQpd4oGVM.roa
Signing time: Wed 11 May 2022 19:04:02 +0000
ROA not before: Wed 11 May 2022 19:04:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.140.10.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:21::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 159246249 (0x97de7a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 11 19:04:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9810e64421b49c3e409c2723234450a5de281953
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:c7:8d:f1:ef:71:e9:a1:90:36:21:c3:31:d6:
09:1a:29:bf:41:a9:54:53:cd:96:9a:82:c1:ca:57:
a3:6b:e0:47:45:f9:13:9e:aa:57:77:79:df:a8:10:
13:f8:95:8a:eb:00:fb:b3:2e:17:8a:af:f4:68:dd:
82:14:10:67:e4:19:4d:2b:3c:4e:c7:c6:51:f7:a4:
08:1b:02:e0:16:82:22:a5:b4:c5:04:c4:57:e9:89:
2b:3c:bd:61:c9:30:28:ba:63:0a:21:5a:05:e0:35:
14:cf:a5:68:dc:6f:99:8d:0c:a5:5f:b2:d5:8c:1e:
a1:06:e6:3c:2a:a7:80:f3:ee:ef:c4:d5:49:b1:5b:
49:44:c0:b1:97:64:63:27:ce:14:98:e2:94:17:42:
ab:20:99:42:4d:1e:54:98:78:e9:81:44:b6:94:d3:
d7:b9:60:48:7a:a3:73:c8:68:f0:cd:bc:57:00:03:
e4:80:af:f4:96:e6:57:f6:4d:d6:df:36:27:30:b8:
fb:75:6c:88:84:0e:6d:4f:ab:11:83:84:02:32:7c:
5e:b5:37:93:2d:ba:f5:90:bf:e7:05:fd:9f:56:54:
a2:44:ad:e4:a6:27:97:3b:f8:2f:4e:cd:b3:6d:0c:
87:69:b1:34:d2:96:54:f8:9e:22:a0:ee:79:6b:f4:
6c:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:10:E6:44:21:B4:9C:3E:40:9C:27:23:23:44:50:A5:DE:28:19:53
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/mBDmRCG0nD5AnCcjI0RQpd4oGVM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.10.0/24
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0-185.208.210.255
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
194.146.48.0/24
195.26.7.0/24
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/47
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
b3:81:3c:8a:4b:29:d2:f0:9f:da:45:99:b1:d6:09:77:c1:1c:
cb:5d:1b:ca:54:a8:ae:7e:81:3d:bb:7e:a4:47:87:c3:8c:e6:
25:c5:25:36:c8:27:5f:b6:31:f9:a7:84:c9:fd:c8:f0:e0:1d:
ae:70:9f:fe:a8:59:4d:6d:99:cf:69:c1:93:e6:a7:fb:20:23:
a1:e8:69:16:23:0a:08:98:a4:de:49:2f:09:0e:30:92:4f:5e:
e1:3b:5c:f0:05:46:0a:df:01:0e:8c:9a:f0:c6:5f:10:ba:bb:
f1:78:25:6d:0f:2d:65:b4:ce:1b:06:89:c3:1f:31:67:fa:f9:
09:19:d3:f7:6d:63:02:e7:72:9b:68:81:f0:1c:85:47:bf:08:
f6:1c:1b:bb:f0:d2:c7:8f:1e:16:b0:e5:e4:c5:dc:9b:da:f8:
66:1a:94:71:f7:55:15:54:4d:bc:ba:88:3e:e6:dd:f3:81:c0:
11:ec:48:19:f6:4f:ed:82:b9:f8:97:86:67:3c:58:64:68:85:
1c:a3:56:ac:8a:77:ea:93:ab:36:d8:de:ca:39:f3:99:49:cb:
9f:ca:a3:42:e2:7e:d6:38:b3:03:4b:55:c5:3b:54:d6:7b:a5:
44:fa:44:ef:4a:d8:f0:32:fa:1b:b3:b5:ef:61:24:f0:15:23:
b9:66:18:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org