Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CFM952TT6tKg87554fuUwh78M7w.roa
File: CFM952TT6tKg87554fuUwh78M7w.roa (raw, json)
Hash identifier: l1nGRnoa1i0v0sgtezx2Z37OsByr3CxGUigmBto28X8=
Subject key identifier: 08:53:3D:E7:64:D3:EA:D2:A0:F3:BE:79:E1:FB:94:C2:1E:FC:33:BC
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 09232D1C
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CFM952TT6tKg87554fuUwh78M7w.roa
Signing time: Sat 01 Jan 2022 16:00:46 +0000
ROA not before: Sat 01 Jan 2022 16:00:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207837
IP address blocks: 185.227.71.0/24 maxlen: 24
45.90.145.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153300252 (0x9232d1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:00:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=08533de764d3ead2a0f3be79e1fb94c21efc33bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:7d:5a:6e:ce:f3:33:19:90:0e:f7:75:49:f1:
55:c5:c6:d0:50:af:f7:d1:84:fc:61:2c:1d:65:cd:
4c:81:7e:c5:71:7f:db:ce:41:70:5a:74:18:03:ac:
92:3c:34:17:c7:0f:6f:67:d6:33:3c:38:c9:52:ce:
1c:63:8c:77:39:dc:e4:23:67:fb:1a:ad:19:02:c3:
db:7e:e0:8c:c3:0b:ce:c9:87:d8:6d:b0:c8:bb:fc:
50:4a:28:e5:42:37:9c:44:69:a9:c7:71:bc:ad:2e:
47:d3:70:e8:5f:31:ef:e0:91:aa:38:62:bf:16:7d:
ff:84:c8:94:ad:84:93:9f:f5:64:23:1a:f4:38:61:
dc:9e:46:39:f5:98:57:04:82:86:00:b6:a5:06:d8:
18:84:80:8b:df:e3:87:7d:91:6f:70:53:e4:e8:8f:
00:d1:d2:92:de:99:d6:ac:97:cb:55:61:40:cb:07:
b4:9b:d0:9b:07:7f:ab:62:11:f3:38:e5:43:86:a1:
90:6e:31:e9:d7:ec:e1:7f:4f:fe:13:26:0d:66:89:
47:ee:1b:f1:29:ee:99:7f:0c:a4:1c:8a:7d:14:35:
af:98:90:ec:c1:bc:5b:42:cf:51:e1:3e:1f:7e:30:
9c:26:20:8d:46:cd:96:5c:88:62:08:fc:fc:a0:7f:
b4:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:53:3D:E7:64:D3:EA:D2:A0:F3:BE:79:E1:FB:94:C2:1E:FC:33:BC
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/CFM952TT6tKg87554fuUwh78M7w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.145.0/24
185.227.71.0/24
Signature Algorithm: sha256WithRSAEncryption
4c:cf:29:65:2a:ec:4f:04:36:03:77:9c:54:68:18:eb:65:ad:
ab:3e:e0:d9:1d:81:2c:bb:74:6b:d4:73:be:5d:21:bd:ed:c1:
34:99:a4:f8:85:e8:35:c9:82:5b:1b:a7:8d:2c:94:9a:96:74:
62:8e:ae:7f:d9:34:37:4e:5a:16:92:e3:6f:8a:af:85:7d:59:
1e:dc:8a:f4:df:32:a2:71:90:de:75:77:1f:2e:db:1a:56:16:
d0:48:bd:a9:c8:35:cf:a3:d5:93:a1:01:50:fd:b5:97:f4:a6:
23:02:1d:80:4a:18:bd:d5:e8:79:75:67:d9:80:bb:3a:34:1e:
f4:3f:f5:dd:a5:40:96:7f:3c:10:db:0f:8f:0c:ad:fb:ca:d2:
7d:7f:44:e1:3a:72:86:b6:62:29:71:41:22:01:6c:0c:b6:48:
0f:61:91:bf:3f:20:48:e2:b4:3d:86:5a:63:e4:03:c0:07:a6:
c9:11:d2:d8:0a:a5:ea:c2:5a:d1:4b:0f:19:e7:3c:e6:2f:ed:
a4:f9:5b:5c:fa:18:11:7b:05:b2:ac:d3:d2:d7:23:08:71:31:
0d:9a:8a:fd:d3:90:b4:fa:ce:67:a5:d9:2a:f7:9e:5a:e7:52:
d1:e5:cc:49:05:61:58:ac:1c:f5:de:cb:f3:1b:a3:ed:bf:67:
e0:60:13:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:48 2024 by rpki-client on console-fra.rpki-client.org