Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/VjX2yns_SOCPEW_A42-44x4e2ZI.roa
File: VjX2yns_SOCPEW_A42-44x4e2ZI.roa (raw, json)
Hash identifier: iH4m+3h4aB/LOV8cp9K8Pt1tZ7Ek+K9HO6dQKUOSosg=
Subject key identifier: 56:35:F6:CA:7B:3F:48:E0:8F:11:6F:C0:E3:6F:B8:E3:1E:1E:D9:92
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 0183D30447ECF07C903C2596F9C93A2C7A51
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/VjX2yns_SOCPEW_A42-44x4e2ZI.roa
Signing time: Thu 13 Oct 2022 20:23:36 +0000
ROA not before: Thu 13 Oct 2022 20:23:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7029
IP address blocks: 45.13.191.0/24 maxlen: 24
45.151.0.0/23 maxlen: 24
45.151.2.0/24 maxlen: 24
195.211.188.0/22 maxlen: 24
45.144.215.0/24 maxlen: 24
45.144.214.0/24 maxlen: 24
2.56.108.0/22 maxlen: 24
194.15.52.0/23 maxlen: 24
45.88.136.0/24 maxlen: 24
45.88.137.0/24 maxlen: 24
45.88.139.0/24 maxlen: 24
193.30.241.0/24 maxlen: 24
85.209.120.0/24 maxlen: 24
85.209.122.0/24 maxlen: 24
85.209.121.0/24 maxlen: 24
193.57.41.0/24 maxlen: 24
45.132.182.0/23 maxlen: 24
195.177.94.0/24 maxlen: 24
195.177.93.0/24 maxlen: 24
195.177.95.0/24 maxlen: 24
77.83.38.0/24 maxlen: 24
77.83.37.0/24 maxlen: 24
195.62.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:d3:04:47:ec:f0:7c:90:3c:25:96:f9:c9:3a:2c:7a:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Oct 13 20:23:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5635f6ca7b3f48e08f116fc0e36fb8e31e1ed992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:68:d0:35:28:69:7c:0c:d2:2f:20:3c:d4:db:
cb:26:70:4a:b8:39:34:9b:18:43:17:06:bf:5e:62:
ae:a7:2a:45:bc:dc:d3:8a:c1:23:52:8b:db:d6:12:
1b:99:43:49:d0:00:00:95:22:46:20:37:66:53:a1:
50:a0:fd:43:9f:1f:18:99:d1:ba:c0:32:a4:0a:08:
93:01:8c:b1:85:02:da:17:1f:29:4f:49:12:02:5c:
cd:19:40:f8:15:c1:85:b8:3f:11:0c:32:40:79:7d:
41:87:b9:88:4d:56:61:48:9c:38:66:fc:56:70:e0:
29:92:21:4e:86:ae:28:7d:33:04:1f:e1:7e:f8:dd:
1e:fe:45:3f:7c:f3:99:fb:a6:04:0a:fd:df:4e:76:
4d:3c:9b:c1:40:49:18:d4:de:54:d8:8a:63:34:1b:
99:1a:de:34:10:69:63:14:a2:29:89:67:51:de:e4:
15:05:b5:29:e3:4d:15:93:a0:36:f9:8f:8e:aa:70:
6f:46:7e:7f:30:1f:94:76:c0:f3:c0:c8:29:a1:79:
82:7f:7b:20:15:32:31:e0:12:fd:26:43:6e:34:93:
d1:f5:c2:b6:53:d7:a2:26:75:18:5d:1d:96:5b:1e:
b1:3e:08:df:c1:ff:59:04:28:c1:7a:5f:39:3f:0d:
e4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:35:F6:CA:7B:3F:48:E0:8F:11:6F:C0:E3:6F:B8:E3:1E:1E:D9:92
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/VjX2yns_SOCPEW_A42-44x4e2ZI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.56.108.0/22
45.13.191.0/24
45.88.136.0/23
45.88.139.0/24
45.132.182.0/23
45.144.214.0/23
45.151.0.0-45.151.2.255
77.83.37.0-77.83.38.255
85.209.120.0-85.209.122.255
193.30.241.0/24
193.57.41.0/24
194.15.52.0/23
195.62.24.0/24
195.177.93.0-195.177.95.255
195.211.188.0/22
Signature Algorithm: sha256WithRSAEncryption
bc:da:4c:b1:f1:24:e3:c6:89:d6:06:cb:2a:bb:b9:82:2d:b1:
f2:1c:fd:59:73:1a:da:48:40:1b:80:79:19:4b:83:04:f0:bd:
b0:ca:c8:8a:2e:bd:a9:48:a9:a9:af:62:00:12:48:82:d2:18:
c9:ee:b7:88:83:64:58:21:a2:48:b2:8c:b5:43:8a:20:44:bf:
c5:9a:50:bf:c5:c6:e9:43:c4:a7:0e:40:e1:d4:5e:20:e7:1f:
d5:a2:13:20:43:18:2f:c7:90:ba:ea:db:52:ef:cc:f1:af:5f:
63:74:d3:7c:09:11:a1:82:ae:81:d9:46:22:03:18:cd:e1:75:
0e:6c:ad:20:86:b7:0e:6b:8a:f0:60:85:83:07:31:1f:92:34:
1b:e8:b4:6f:ea:e7:ff:d9:79:27:f3:51:1b:b3:d1:fe:67:6b:
e6:61:06:cf:9f:c1:42:07:59:63:03:3c:c6:a7:52:7e:55:c0:
ed:8d:3c:92:0b:cb:75:88:32:aa:d2:03:53:f7:b1:fe:0a:82:
2d:6a:79:84:d7:03:9a:da:97:fc:7e:50:44:90:2c:cd:9d:db:
de:34:12:56:eb:9c:99:65:9a:e0:26:3d:f4:64:82:e8:1c:17:
51:56:4b:f4:03:d4:80:89:77:9b:82:e0:91:be:57:d3:d1:20:
73:1d:57:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:32 2023 by rpki-client on console-fra.rpki-client.org