Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/E9Gv_njk-L_jY4UD7hspzFSRVtw.roa
File: E9Gv_njk-L_jY4UD7hspzFSRVtw.roa (raw, json)
Hash identifier: g+pXjKnWt7Hao3f3FsAqo43qK0pO/mtpC2SuJEpj7WU=
Subject key identifier: 13:D1:AF:FE:78:E4:F8:BF:E3:63:85:03:EE:1B:29:CC:54:91:56:DC
Certificate issuer: /CN=74aebc154a56c83025cbd8641a9ac315cb551c06
Certificate serial: 08E3B8F0
Authority key identifier: 74:AE:BC:15:4A:56:C8:30:25:CB:D8:64:1A:9A:C3:15:CB:55:1C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK68FUpWyDAly9hkGprDFctVHAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/E9Gv_njk-L_jY4UD7hspzFSRVtw.roa
Signing time: Thu 19 May 2022 10:25:30 +0000
ROA not before: Thu 19 May 2022 10:25:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.15.21.0/24 maxlen: 24
194.53.136.0/24 maxlen: 24
194.53.137.0/24 maxlen: 24
194.53.138.0/24 maxlen: 24
194.53.139.0/24 maxlen: 24
2a0e:1d80:117::/64 maxlen: 64
2a0e:1d80:12::/48 maxlen: 48
2a0e:1d80:10::/48 maxlen: 48
2a0e:1d80:6::/48 maxlen: 48
2a0e:1d80:11::/48 maxlen: 48
2a0e:1d80:14::/48 maxlen: 48
2a0e:1d80:15::/48 maxlen: 48
2a0e:1d80:8::/48 maxlen: 48
2a0e:1d80:13::/48 maxlen: 48
2a0e:1d80:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149141744 (0x8e3b8f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74aebc154a56c83025cbd8641a9ac315cb551c06
Validity
Not Before: May 19 10:25:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13d1affe78e4f8bfe3638503ee1b29cc549156dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:36:d7:6c:b8:36:5b:3f:b1:44:26:fa:fb:9f:
0e:50:c2:b8:93:a0:c4:3c:80:76:96:98:cb:19:d8:
48:ff:a1:05:e0:73:f1:0d:ce:c1:97:20:85:3e:e0:
81:d5:de:4b:10:4c:f8:e6:dd:7a:39:ad:73:60:bc:
80:fc:eb:13:dd:1c:89:74:9c:5f:aa:46:14:4c:45:
fd:11:cd:92:e5:3e:78:6a:c2:91:be:fc:6b:4a:5c:
de:9b:e2:8c:85:be:42:d9:dd:cb:1d:ed:dc:7c:aa:
1e:ef:3d:c5:c2:48:7c:91:6a:24:67:74:fc:7a:d2:
71:d7:f0:2f:ab:90:e4:87:9f:35:c2:95:0b:be:59:
e5:63:2d:38:7c:c0:13:36:59:18:4b:e1:c6:cf:be:
a7:b2:34:93:10:95:8c:61:b0:54:d7:38:78:54:da:
56:87:cf:9d:55:cb:ec:fc:23:9d:91:a7:c7:bb:2a:
90:c2:1e:53:c0:a2:2f:f4:40:42:95:0e:4c:c3:5f:
e7:8d:59:45:a7:e1:c2:ae:f6:4b:bd:67:c4:40:65:
cd:4c:14:91:2c:37:b2:79:1c:ca:47:74:2e:fa:18:
a7:7e:c7:67:4c:88:b4:a9:ae:27:c8:ce:11:4a:d1:
39:44:5b:fc:82:da:34:65:86:4b:db:c6:79:0c:fa:
81:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:D1:AF:FE:78:E4:F8:BF:E3:63:85:03:EE:1B:29:CC:54:91:56:DC
X509v3 Authority Key Identifier:
keyid:74:AE:BC:15:4A:56:C8:30:25:CB:D8:64:1A:9A:C3:15:CB:55:1C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK68FUpWyDAly9hkGprDFctVHAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/E9Gv_njk-L_jY4UD7hspzFSRVtw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/dK68FUpWyDAly9hkGprDFctVHAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.21.0/24
194.53.136.0/22
IPv6:
2a0e:1d80:6::/48
2a0e:1d80:8::/47
2a0e:1d80:10::-2a0e:1d80:15:ffff:ffff:ffff:ffff:ffff
2a0e:1d80:117::/64
Signature Algorithm: sha256WithRSAEncryption
6d:87:64:cc:9f:91:32:ce:d6:61:7b:2b:45:e4:93:df:5e:68:
26:a6:11:42:d5:22:d5:25:ce:3f:f9:ca:b2:a0:fd:09:17:b1:
ed:be:7b:c2:3e:16:32:d6:2c:0f:16:ea:02:e5:5c:d7:27:d2:
be:1a:57:26:0a:1d:7a:51:5b:2c:60:51:c7:cb:23:1a:6c:02:
55:c3:43:8a:2c:28:34:42:2e:c0:55:b5:e1:2e:91:a4:be:29:
c9:65:75:5c:1d:08:37:3b:01:d4:cd:e4:4d:11:ae:9f:46:04:
df:b3:18:b8:12:0f:d2:03:ec:0f:d5:9f:98:ee:ad:4b:16:dd:
74:11:f6:4f:a0:de:8f:81:6b:d2:b0:89:cd:77:b4:84:55:e8:
f3:46:35:0c:fa:0c:16:7d:62:55:d4:c9:1c:20:c9:dc:5b:5c:
db:ed:d3:98:8d:47:35:08:a5:68:6b:1d:2c:f9:44:58:c3:7a:
3c:53:d0:5c:ac:c7:ce:a2:d0:8a:84:65:bd:1a:7f:e0:23:ac:
4f:09:fb:e6:b4:fc:8b:d2:12:5c:4f:14:e3:7e:fa:4b:cf:25:
93:7e:95:38:78:43:7c:6a:c1:cd:96:b6:8f:a3:83:8f:c2:4c:
07:b9:f0:04:07:6d:8f:ca:6e:45:8a:5e:55:c1:74:a9:b8:d4:
54:3a:fb:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:07 2023 by rpki-client on console-ams.rpki-client.org