Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/V4H0tovUJ5ZHtexWLSyl7ljtLB8.roa
File: V4H0tovUJ5ZHtexWLSyl7ljtLB8.roa (raw, json)
Hash identifier: 6HHZKC0Hc2wFUOBVXyk/Y2wLsQWHwZahj0nLJvoja3s=
Subject key identifier: 57:81:F4:B6:8B:D4:27:96:47:B5:EC:56:2D:2C:A5:EE:58:ED:2C:1F
Certificate issuer: /CN=74aebc154a56c83025cbd8641a9ac315cb551c06
Certificate serial: 08CAEEC6
Authority key identifier: 74:AE:BC:15:4A:56:C8:30:25:CB:D8:64:1A:9A:C3:15:CB:55:1C:06
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK68FUpWyDAly9hkGprDFctVHAY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/V4H0tovUJ5ZHtexWLSyl7ljtLB8.roa
Signing time: Mon 09 May 2022 06:30:23 +0000
ROA not before: Mon 09 May 2022 06:30:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.15.21.0/24 maxlen: 24
194.53.136.0/24 maxlen: 24
194.53.137.0/24 maxlen: 24
194.53.138.0/24 maxlen: 24
2a0e:1d80:12::/48 maxlen: 48
2a0e:1d80:10::/48 maxlen: 48
2a0e:1d80:6::/48 maxlen: 48
2a0e:1d80:11::/48 maxlen: 48
2a0e:1d80:14::/48 maxlen: 48
2a0e:1d80:15::/48 maxlen: 48
2a0e:1d80:8::/48 maxlen: 48
2a0e:1d80:13::/48 maxlen: 48
2a0e:1d80:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147517126 (0x8caeec6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74aebc154a56c83025cbd8641a9ac315cb551c06
Validity
Not Before: May 9 06:30:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5781f4b68bd4279647b5ec562d2ca5ee58ed2c1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ad:59:14:7b:02:25:26:b1:2d:33:00:54:a1:
a3:fb:4b:ab:17:20:fa:13:9a:6f:04:bc:cd:c7:42:
14:92:12:ae:5e:e9:0d:01:5c:8a:02:e5:89:ec:3c:
1f:c7:ff:84:29:c9:f3:e2:a0:25:cf:7a:ad:84:9d:
af:36:93:ec:73:e4:15:d6:e2:b2:85:6e:12:d4:79:
c6:fa:7c:05:ec:dd:2d:bc:8e:8c:71:a6:71:02:23:
7e:17:46:7d:9e:1f:e0:65:8e:2c:ea:0e:4d:86:c4:
70:73:f5:43:be:3e:d2:80:a5:e1:11:d4:b4:13:c5:
a4:cc:7d:70:25:d3:41:f9:a4:36:7c:49:19:13:66:
a4:f4:a2:74:6c:f9:92:36:ce:76:9d:fa:be:77:6e:
76:ec:be:4e:41:f9:5d:c8:c2:df:a0:bf:3d:18:e6:
b8:03:2e:32:a1:70:e0:17:d4:bd:ff:db:82:95:16:
aa:da:e5:62:56:58:31:44:af:6b:1e:57:18:a2:b4:
a7:6e:8f:5b:f0:90:aa:ff:14:9e:c2:53:70:95:1e:
24:7c:95:64:81:e1:d3:d1:93:8e:6b:9d:ff:d3:fd:
0b:c8:67:8e:36:6b:bc:5a:34:1d:df:8b:b7:0d:d3:
9a:9a:b7:4a:e4:08:43:de:ae:24:eb:04:05:dc:00:
5c:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:81:F4:B6:8B:D4:27:96:47:B5:EC:56:2D:2C:A5:EE:58:ED:2C:1F
X509v3 Authority Key Identifier:
keyid:74:AE:BC:15:4A:56:C8:30:25:CB:D8:64:1A:9A:C3:15:CB:55:1C:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK68FUpWyDAly9hkGprDFctVHAY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/V4H0tovUJ5ZHtexWLSyl7ljtLB8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/6de7a0-4073-4272-bf44-07a1d65548ba/1/dK68FUpWyDAly9hkGprDFctVHAY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.21.0/24
194.53.136.0-194.53.138.255
IPv6:
2a0e:1d80:6::/48
2a0e:1d80:8::/47
2a0e:1d80:10::-2a0e:1d80:15:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
4b:cd:20:fe:fa:9a:20:56:90:27:bb:77:26:f9:0a:a3:92:c0:
52:28:6e:3a:2f:78:d0:da:8f:60:69:9f:d5:9e:b2:ad:7b:35:
61:16:76:d2:98:bd:b6:e4:0f:da:03:fa:e7:df:ac:69:af:76:
77:0c:bb:17:b1:84:e4:6b:89:b8:4b:4f:78:b7:b6:3b:8d:fd:
75:8c:21:ad:4c:0f:da:c8:b3:23:28:50:63:18:66:10:3b:34:
33:39:71:19:d1:28:f9:a9:1f:d0:b9:23:5f:d7:cf:03:46:7b:
b9:03:a6:cc:8e:ad:c2:3a:c6:43:29:52:2e:da:71:0b:c3:8f:
28:d0:38:96:34:b3:40:18:7e:be:b3:83:72:59:1a:a4:59:e1:
82:b4:eb:ce:41:fc:93:0d:72:c3:5b:74:4c:dd:59:39:43:65:
ec:2d:17:21:13:d9:77:5c:c8:85:ba:54:18:c7:25:47:7a:dc:
eb:37:fd:ec:63:b1:b4:18:cb:05:b3:ca:d4:9b:61:fd:6c:65:
d8:64:41:78:e7:be:b4:81:f4:cc:8f:16:34:7b:df:1c:12:39:
4e:73:ef:72:73:ef:cf:fb:ec:a0:7b:3f:9f:a4:2a:ae:5f:b4:
88:12:b9:e9:17:82:9c:0e:72:ea:dc:01:1c:b1:0b:5b:78:19:
d0:a9:39:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:19:57 2024 by rpki-client on console-fra.rpki-client.org