Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/22b0fe-9dc8-4bef-a299-30097a246a9c/1/miUR1sOAODdbNh1SpGff8xMx9tk.roa
File: miUR1sOAODdbNh1SpGff8xMx9tk.roa (raw, json)
Hash identifier: lzBd6VKUekTYt2KLQa9AqhWFRVtuigwr07tnIDaL8QI=
Subject key identifier: 9A:25:11:D6:C3:80:38:37:5B:36:1D:52:A4:67:DF:F3:13:31:F6:D9
Certificate issuer: /CN=708612e8703a660889ca0f457cf1b4d8a0d53b4d
Certificate serial: 0182A81099CD1D9FD1BBF8D238F9407CFABE
Authority key identifier: 70:86:12:E8:70:3A:66:08:89:CA:0F:45:7C:F1:B4:D8:A0:D5:3B:4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cIYS6HA6ZgiJyg9FfPG02KDVO00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/22b0fe-9dc8-4bef-a299-30097a246a9c/1/miUR1sOAODdbNh1SpGff8xMx9tk.roa
Signing time: Tue 16 Aug 2022 19:10:36 +0000
ROA not before: Tue 16 Aug 2022 19:10:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8211
IP address blocks: 145.72.108.0/23 maxlen: 23
145.72.108.0/22 maxlen: 22
145.72.110.0/23 maxlen: 23
145.72.120.0/21 maxlen: 21
145.72.124.0/22 maxlen: 22
145.72.120.0/22 maxlen: 22
145.72.94.0/23 maxlen: 23
145.72.94.0/24 maxlen: 24
145.72.95.0/24 maxlen: 24
145.72.96.0/23 maxlen: 23
145.72.96.0/22 maxlen: 22
145.72.98.0/23 maxlen: 23
145.72.100.0/22 maxlen: 22
2a02:cc4:2f00::/41 maxlen: 41
2a02:cc4:2100::/41 maxlen: 41
2a02:cc4:2f40::/42 maxlen: 42
2a02:cc4:2f00::/42 maxlen: 42
2a02:cc4:2f0::/45 maxlen: 45
2a02:cc4:2f0::/44 maxlen: 44
2a02:cc4:2f8::/45 maxlen: 45
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a8:10:99:cd:1d:9f:d1:bb:f8:d2:38:f9:40:7c:fa:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=708612e8703a660889ca0f457cf1b4d8a0d53b4d
Validity
Not Before: Aug 16 19:10:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9a2511d6c38038375b361d52a467dff31331f6d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:c8:28:3b:df:61:44:6c:00:78:cc:a4:d6:1f:
7d:71:c3:a2:05:36:cf:74:c6:7e:64:40:bc:62:28:
e2:f8:1d:40:93:85:7f:c3:b5:10:d7:8b:1e:e1:8c:
94:1c:53:b2:13:5a:b4:ea:f5:a5:bd:1b:a5:7f:d0:
4b:05:2c:0a:67:08:bc:7e:8a:c0:3e:18:1a:aa:e7:
7d:e2:27:16:79:02:90:5e:96:56:91:b7:0e:93:6d:
f4:69:70:20:df:c6:f2:58:9a:7e:b8:fa:8f:c1:0f:
39:52:09:4c:b3:fd:61:02:19:e2:c5:8a:3c:21:23:
d2:0a:06:ae:3c:94:7a:35:ce:51:c1:83:5c:4c:2a:
b8:e2:82:4f:1d:e5:c7:03:d9:08:55:77:fa:27:0b:
46:a7:00:46:78:17:95:c7:12:21:96:0a:f2:c1:e6:
b7:ef:ae:6d:00:80:50:dc:07:48:42:29:98:2e:18:
57:7b:33:61:42:c2:b3:27:73:0d:e1:f2:76:bc:07:
53:df:cc:58:0b:34:1d:0f:80:9c:85:e5:11:c5:17:
6c:d8:34:40:b5:b1:b5:81:fc:86:0e:87:1f:40:b1:
c2:11:da:2c:10:cb:cc:5c:a8:02:43:a2:aa:7d:f0:
0b:3f:e6:3c:b5:fa:8b:13:16:64:81:d8:19:9f:42:
09:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:25:11:D6:C3:80:38:37:5B:36:1D:52:A4:67:DF:F3:13:31:F6:D9
X509v3 Authority Key Identifier:
keyid:70:86:12:E8:70:3A:66:08:89:CA:0F:45:7C:F1:B4:D8:A0:D5:3B:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cIYS6HA6ZgiJyg9FfPG02KDVO00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/22b0fe-9dc8-4bef-a299-30097a246a9c/1/miUR1sOAODdbNh1SpGff8xMx9tk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/22b0fe-9dc8-4bef-a299-30097a246a9c/1/cIYS6HA6ZgiJyg9FfPG02KDVO00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.72.94.0-145.72.103.255
145.72.108.0/22
145.72.120.0/21
IPv6:
2a02:cc4:2f0::/44
2a02:cc4:2100::/41
2a02:cc4:2f00::/41
Signature Algorithm: sha256WithRSAEncryption
75:05:79:04:b7:93:bd:d1:c9:bd:6b:47:5e:13:4d:de:61:42:
67:7c:62:83:25:ee:d7:8d:07:de:14:ff:35:1d:8d:62:bd:3d:
ea:f6:c8:b6:4c:59:2a:ad:a2:0d:a2:a9:df:d6:13:c6:b7:eb:
b4:95:e5:4d:15:16:bd:95:de:f9:3d:46:19:6e:b1:a6:c7:7f:
94:fc:44:24:e9:6e:d9:9a:0c:a3:7d:5b:63:e8:d0:8d:cf:70:
41:2a:aa:2e:f2:b0:ec:f5:55:20:1f:2c:0b:4b:df:9b:61:7a:
9e:19:a0:d6:7b:2b:5b:65:a0:b3:cb:c1:9f:06:10:18:39:6f:
d9:80:b1:5b:81:c0:eb:74:84:d0:90:20:ac:e2:f8:d0:f3:95:
8d:37:bc:d8:a9:47:35:d6:21:25:fa:dc:55:f1:4b:8b:38:4e:
96:06:87:22:6d:dd:45:e6:d9:0a:6c:b8:ee:7b:68:17:60:ce:
37:bb:f7:77:13:a0:6d:9f:50:9e:21:a9:9a:85:39:f0:44:68:
ae:db:ec:0e:49:6f:69:12:21:29:f8:41:0f:d0:57:01:ce:bb:
4b:c8:00:d5:88:aa:b1:a3:e0:af:43:bb:cd:8b:0d:75:98:16:
3f:9e:ca:23:7d:e8:e8:99:44:80:2c:51:8a:ef:43:4a:08:8c:
7f:ee:9c:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:53:50 2024 by rpki-client on console-ams.rpki-client.org