Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/FxBmIVVaV_VG_vaWHDtcK50LHtI.roa
File: FxBmIVVaV_VG_vaWHDtcK50LHtI.roa (raw, json)
Hash identifier: TsGaKRdHeMURKbOckGvM8KJdvAl7dQLzX7jLGgvRp80=
Subject key identifier: 17:10:66:21:55:5A:57:F5:46:FE:F6:96:1C:3B:5C:2B:9D:0B:1E:D2
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0182B1E3BDB62161E185DBEA58C4915C6A44
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/FxBmIVVaV_VG_vaWHDtcK50LHtI.roa
Signing time: Thu 18 Aug 2022 16:57:48 +0000
ROA not before: Thu 18 Aug 2022 16:57:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 185.117.3.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
45.131.111.0/24 maxlen: 24
45.131.108.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
92.118.207.0/24 maxlen: 24
45.142.104.0/24 maxlen: 24
45.142.107.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b1:e3:bd:b6:21:61:e1:85:db:ea:58:c4:91:5c:6a:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 18 16:57:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=17106621555a57f546fef6961c3b5c2b9d0b1ed2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:39:3d:8e:76:c1:fd:ff:27:a2:9e:92:78:83:
6d:92:00:bf:31:f3:4c:14:cb:e3:22:ee:d3:02:56:
1b:67:4c:e2:37:82:e2:0b:36:ef:47:a3:69:5f:fe:
da:b4:7e:88:6c:c4:ca:6a:81:60:a2:33:1f:0f:5d:
1b:84:fb:8d:3e:4b:bc:88:2e:8d:de:4a:3e:b9:ba:
1d:23:1a:7d:0e:6a:47:f9:72:8b:31:7b:ad:5c:6b:
4b:e6:00:34:ec:a4:02:88:6d:42:05:6d:7d:45:0c:
95:15:a4:50:4e:98:59:e1:d1:6f:bf:9b:13:ce:4f:
05:ea:5e:e2:5d:5f:d2:8b:c2:55:3c:b9:f6:b0:71:
68:fa:09:80:76:e2:99:fa:84:55:53:1a:16:67:90:
ad:71:ab:ac:5e:28:da:6a:a7:40:1a:05:7c:a1:23:
94:35:91:8e:3b:66:5d:ce:f1:70:0f:a4:3d:93:56:
b0:2d:dc:91:c9:aa:95:f8:ae:22:e3:6e:e5:27:a9:
12:2e:f6:6e:88:51:28:de:f4:f6:c4:9a:39:60:ad:
43:44:04:b3:47:c7:e6:c8:f4:eb:e7:ad:73:1b:3f:
1d:ec:07:bb:82:3d:91:82:85:9b:35:b7:72:cd:be:
ab:c2:95:29:c8:54:cc:04:35:96:1e:25:4e:5f:48:
7a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:10:66:21:55:5A:57:F5:46:FE:F6:96:1C:3B:5C:2B:9D:0B:1E:D2
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/FxBmIVVaV_VG_vaWHDtcK50LHtI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.246.0/24
45.13.227.0/24
45.131.108.0/24
45.131.111.0/24
45.142.104.0/24
45.142.107.0/24
92.118.207.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:b4:42:a9:fa:35:56:d6:b1:be:ba:15:d6:d6:ca:b8:01:fe:
ef:04:c9:3f:f9:65:60:07:c4:6a:69:d1:7f:39:1f:f5:08:b7:
ee:8d:24:2e:a2:cb:b8:ad:09:56:02:33:4a:91:cc:9a:26:56:
41:f3:34:f5:30:42:02:de:49:14:ed:8e:4f:2a:1d:63:91:13:
f5:05:56:76:64:c3:f3:7e:96:6f:46:56:7e:f3:ce:33:7c:3e:
94:41:a1:ac:ec:93:b6:23:c9:a1:b1:29:ce:d0:ff:ae:42:b1:
17:fc:6d:f9:c9:33:eb:35:e1:74:9c:12:90:67:9c:57:3a:66:
8f:29:03:36:c9:8e:ac:32:a8:e0:7f:c4:78:34:d4:d3:20:04:
21:c3:42:e6:ce:d8:ef:c4:07:19:6d:c0:c8:2a:72:30:78:ef:
e2:78:37:e5:d7:dd:ce:a4:68:4b:18:8c:3a:85:2b:c9:ea:37:
b3:af:66:7c:8e:1d:25:b5:09:73:dd:42:15:47:d8:3c:81:a5:
89:6c:c3:46:ec:65:e4:3f:bb:9b:2f:72:49:0d:92:89:98:96:
3c:29:23:1f:89:55:8c:c7:e2:7d:9e:a2:f1:02:10:c1:80:8a:
79:47:3e:1f:f2:3a:a1:b7:dc:c8:2a:9c:48:d3:a7:5c:99:d5:
0a:c7:3e:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:28 2024 by rpki-client on console-fra.rpki-client.org