Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ubSmLzuLgBk0p7sVjvynZPfudOA.roa
File: ubSmLzuLgBk0p7sVjvynZPfudOA.roa (raw, json)
Hash identifier: zZDGhwZFS1kiRGO7JiPX1xW1eUQVqTDx68FjhZNPUBs=
Subject key identifier: B9:B4:A6:2F:3B:8B:80:19:34:A7:BB:15:8E:FC:A7:64:F7:EE:74:E0
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A113B7D
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ubSmLzuLgBk0p7sVjvynZPfudOA.roa
Signing time: Mon 14 Mar 2022 13:57:14 +0000
ROA not before: Mon 14 Mar 2022 13:57:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213250
IP address blocks: 45.89.124.0/23 maxlen: 23
45.89.126.0/23 maxlen: 23
45.131.66.0/23 maxlen: 23
5.182.206.0/23 maxlen: 23
5.182.204.0/23 maxlen: 23
2.56.245.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 168901501 (0xa113b7d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 14 13:57:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b9b4a62f3b8b801934a7bb158efca764f7ee74e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9b:3f:84:ca:2b:e7:82:5f:bc:25:08:70:64:
c1:aa:34:aa:d2:7a:f7:10:8f:4b:48:14:91:20:6b:
2d:d1:d5:92:81:18:43:e3:67:23:e5:ea:57:03:41:
64:fa:94:0e:08:b5:3f:a4:5b:21:e6:30:4d:01:cb:
76:a5:17:27:46:4d:93:c4:79:78:9d:52:a8:f8:ab:
a4:bb:df:1d:1b:28:46:77:ef:bd:29:34:41:62:8f:
01:c8:0f:09:70:de:68:8c:ba:9d:13:74:8c:c9:70:
a7:da:50:fd:ba:8a:99:a8:cf:6d:d4:f1:c7:2a:aa:
b2:f0:0e:b4:d3:ed:30:ce:6b:aa:a4:99:1e:ca:0e:
3c:d8:e5:df:8e:48:4a:62:bd:6a:e6:c0:de:63:b0:
89:c4:2a:f9:82:52:0a:2f:ae:92:d5:e1:bc:df:48:
b7:88:54:89:47:ef:b4:01:2f:7e:78:a1:59:f8:e7:
c2:42:f5:56:72:3a:1a:d9:e7:bc:d5:8b:9e:31:f2:
1f:7c:cb:74:7b:c6:d7:0a:64:56:7f:14:6e:9d:18:
8a:ef:a1:8c:6a:2b:97:27:e3:8d:70:af:fd:17:bb:
a8:31:ce:38:28:25:d0:34:7d:1b:ba:a4:25:aa:5b:
ba:ee:ab:95:01:43:dc:23:2e:d6:31:36:24:32:98:
41:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:B4:A6:2F:3B:8B:80:19:34:A7:BB:15:8E:FC:A7:64:F7:EE:74:E0
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/ubSmLzuLgBk0p7sVjvynZPfudOA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.245.0/24
5.182.204.0/22
45.89.124.0/22
45.131.66.0/23
Signature Algorithm: sha256WithRSAEncryption
2f:38:a0:a0:75:a1:87:cd:de:7c:df:25:61:c1:68:c2:26:85:
a1:c0:f2:3f:ea:5f:15:4a:27:1d:ba:77:50:d8:97:b1:30:d6:
d0:0b:cd:bf:5e:7f:26:41:fe:5a:bd:a1:b8:86:6c:76:68:6d:
94:29:0c:29:a0:c5:16:1c:e0:1b:21:4f:a4:9b:79:6a:47:56:
b6:8a:dd:39:38:9c:46:67:92:04:18:dd:f8:c1:42:79:be:7c:
68:c4:46:23:cd:1e:6f:fd:8e:e4:7d:48:cb:c0:59:b6:29:6c:
ba:2d:53:e1:62:55:e0:c7:60:82:41:86:37:87:3a:8a:ad:b8:
ad:59:83:fd:55:bf:e9:5d:37:55:d5:72:d0:56:74:8a:f0:4f:
3b:8c:61:09:56:99:76:04:4b:47:f8:15:73:98:46:ef:c7:2a:
7c:ed:41:4a:70:39:4d:c5:62:4d:e6:a0:5c:83:6f:d5:cf:69:
73:e6:8a:2a:25:f0:7c:00:6f:48:9a:5a:36:83:00:57:43:5d:
0d:80:91:23:2f:53:85:a9:bb:98:ec:95:66:fe:59:6c:a2:c4:
a3:1d:94:a9:fa:ef:bb:11:68:38:11:9f:6a:48:e3:98:03:76:
06:51:3f:1d:c2:fc:3f:d7:e3:db:34:67:9e:b6:7c:0b:a0:f6:
39:a0:4e:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:14 2024 by rpki-client on console-ams.rpki-client.org