Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FcUsSxWFxrb1aI5-KdcIn_1JZDk.roa
File: FcUsSxWFxrb1aI5-KdcIn_1JZDk.roa (raw, json)
Hash identifier: XJ94wyOJssMWbwdeU4XnIugeOjlmOD10J/9RAa0hwow=
Subject key identifier: 15:C5:2C:4B:15:85:C6:B6:F5:68:8E:7E:29:D7:08:9F:FD:49:64:39
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 089669B3
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FcUsSxWFxrb1aI5-KdcIn_1JZDk.roa
Signing time: Wed 18 May 2022 15:38:16 +0000
ROA not before: Wed 18 May 2022 15:38:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.13.190.0/24 maxlen: 24
194.242.97.0/24 maxlen: 24
5.181.84.0/24 maxlen: 24
5.181.85.0/24 maxlen: 24
45.151.3.0/24 maxlen: 24
45.144.212.0/24 maxlen: 24
195.177.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 144075187 (0x89669b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: May 18 15:38:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15c52c4b1585c6b6f5688e7e29d7089ffd496439
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:f7:84:c2:05:3b:1a:bd:66:17:7d:2f:38:5c:
51:01:11:33:3f:2b:32:52:a0:6e:cb:b0:09:eb:a9:
22:14:d3:74:7c:b5:37:ff:b7:30:a0:45:f3:f1:b7:
2b:71:64:13:d2:de:41:04:c2:40:67:75:42:2d:6f:
21:db:44:a7:47:73:f6:4a:76:62:61:6e:8d:03:dc:
b2:f9:3f:67:c3:90:1b:48:1d:47:8a:3a:dd:18:67:
2c:ec:5a:28:dc:5e:70:8d:3a:49:7a:57:15:9e:54:
a7:87:49:0a:14:3f:77:c5:95:0a:ad:62:07:61:cb:
82:d3:49:3e:02:ec:a0:d3:87:c7:fc:58:24:22:a8:
0a:70:f0:c2:de:bf:c3:72:06:bf:99:48:0c:08:99:
8e:6f:c0:bc:31:c2:b0:89:58:13:9f:23:65:f1:f5:
d0:dd:70:3d:05:99:15:d3:7c:1d:a8:11:de:70:0a:
0c:e1:f1:2a:77:d5:ad:e7:24:a3:b4:6c:08:0f:55:
a7:dd:11:d7:da:00:e0:7e:20:48:9e:23:17:9a:df:
43:37:ef:ef:77:17:72:ca:2e:0f:dc:d9:b3:5f:2d:
51:c5:34:0b:10:bb:99:16:1b:01:e0:5e:a4:09:cf:
c3:bc:9c:b6:f7:76:8d:f0:50:47:da:d6:6b:31:b4:
32:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:C5:2C:4B:15:85:C6:B6:F5:68:8E:7E:29:D7:08:9F:FD:49:64:39
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/FcUsSxWFxrb1aI5-KdcIn_1JZDk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.84.0/23
45.13.190.0/24
45.144.212.0/24
45.151.3.0/24
194.242.97.0/24
195.177.92.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:05:b4:da:35:c5:c3:e8:7f:df:80:fe:86:bf:9f:69:b4:ca:
a5:98:ee:dc:83:71:96:aa:bc:df:aa:e1:29:6d:00:5e:d6:ec:
47:5e:c4:55:71:37:fc:70:94:ea:fa:68:6a:bb:33:f3:c6:4a:
69:ea:43:38:d3:c9:6c:83:35:1b:5f:3c:96:40:1a:e9:b3:aa:
cc:c4:88:cf:ce:b7:1f:e5:89:c5:25:99:ca:b9:d4:39:89:9e:
16:dc:18:79:31:7f:da:29:3e:65:df:f0:4a:0c:6c:e0:c1:60:
f7:03:14:3b:1d:16:11:77:ae:33:0d:9c:73:9c:b7:ae:8b:a8:
08:04:35:cb:4b:2c:67:33:1b:c0:37:75:a5:5c:ae:ae:d2:41:
a7:2e:06:d8:da:05:ef:3b:cf:79:88:76:40:ea:be:3e:a4:32:
29:2a:02:c0:56:93:14:e9:e0:2a:31:9c:ab:9d:fa:4d:47:ea:
c5:92:22:6c:06:5a:f9:f9:f7:68:c3:63:2c:53:85:f2:81:4e:
83:90:6c:13:61:c2:08:67:9d:3e:af:98:1b:97:85:7c:9a:e4:
10:fb:11:e3:55:a3:2a:e2:6a:fe:a4:ab:70:ac:e8:93:64:e7:
c4:17:a9:91:53:46:08:c9:27:2f:30:44:55:a6:77:94:6f:60:
87:08:91:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:20 2023 by rpki-client on console-ams.rpki-client.org