Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/87aa3d-ca5e-4513-aa9e-e6ee5834c995/1/l2H-pGFAEUvxf6Dzh8OcREFM3DY.roa
File: l2H-pGFAEUvxf6Dzh8OcREFM3DY.roa (raw, json)
Hash identifier: s5moiC1d9g1TSYo/fhNK3PNM+9GZtkfaOcUlZ+fXbNs=
Subject key identifier: 97:61:FE:A4:61:40:11:4B:F1:7F:A0:F3:87:C3:9C:44:41:4C:DC:36
Certificate issuer: /CN=622276db9d9b34cdec2620c7257dc5ad4aeb832d
Certificate serial: 06AB8ADD
Authority key identifier: 62:22:76:DB:9D:9B:34:CD:EC:26:20:C7:25:7D:C5:AD:4A:EB:83:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YiJ2252bNM3sJiDHJX3FrUrrgy0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/87aa3d-ca5e-4513-aa9e-e6ee5834c995/1/l2H-pGFAEUvxf6Dzh8OcREFM3DY.roa
Signing time: Sat 01 Jan 2022 02:55:25 +0000
ROA not before: Sat 01 Jan 2022 02:55:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 397735
IP address blocks: 45.142.248.0/24 maxlen: 24
45.142.251.0/24 maxlen: 24
45.142.250.0/24 maxlen: 24
45.142.249.0/24 maxlen: 24
193.53.2.0/24 maxlen: 24
193.53.7.0/24 maxlen: 24
193.53.5.0/24 maxlen: 24
193.53.12.0/24 maxlen: 24
2a0e:dd40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111905501 (0x6ab8add)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=622276db9d9b34cdec2620c7257dc5ad4aeb832d
Validity
Not Before: Jan 1 02:55:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9761fea46140114bf17fa0f387c39c44414cdc36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:47:b2:09:26:22:92:00:c3:ef:93:6d:c7:12:
f9:bc:b0:b2:46:55:94:a7:2d:83:0a:1d:b1:94:90:
a4:0b:f1:9c:87:3c:25:26:cf:e4:d5:d7:bc:0f:c4:
ce:47:71:4e:e1:01:90:3c:93:7a:c6:63:e4:e9:86:
1f:f9:05:89:12:5a:e1:9d:60:44:3d:1c:e1:bc:a8:
af:cc:89:22:46:34:e6:8b:86:39:f7:b9:ae:fa:1c:
8d:bc:6f:29:4d:49:25:96:e9:19:37:f5:a8:3e:6e:
d4:9b:c5:3c:e5:1f:fd:d7:03:b9:04:9d:07:01:f9:
86:8f:72:65:a4:0a:1b:d0:2d:7d:d8:dc:71:d3:a9:
9a:92:ce:79:b2:24:5a:9b:32:0e:9a:de:ba:ae:93:
be:b2:10:94:10:16:16:24:72:8c:4b:68:01:7f:f1:
0e:ec:9e:4e:e8:df:9c:f9:b3:34:96:a7:24:43:e3:
c3:22:88:76:13:e1:4e:e2:d9:d0:ce:ed:b1:dd:ef:
d0:65:1d:bf:03:92:f1:56:87:ef:b6:c8:97:52:9b:
7a:22:39:1f:ea:f7:94:c5:ae:f0:b5:2f:87:78:e7:
73:90:69:66:69:1e:7f:23:ef:a1:3b:ce:69:cf:1d:
94:66:eb:cd:05:93:6c:b4:e3:8e:cf:5b:5e:7f:25:
d4:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:61:FE:A4:61:40:11:4B:F1:7F:A0:F3:87:C3:9C:44:41:4C:DC:36
X509v3 Authority Key Identifier:
keyid:62:22:76:DB:9D:9B:34:CD:EC:26:20:C7:25:7D:C5:AD:4A:EB:83:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YiJ2252bNM3sJiDHJX3FrUrrgy0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/87aa3d-ca5e-4513-aa9e-e6ee5834c995/1/l2H-pGFAEUvxf6Dzh8OcREFM3DY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/87aa3d-ca5e-4513-aa9e-e6ee5834c995/1/YiJ2252bNM3sJiDHJX3FrUrrgy0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.248.0/22
193.53.2.0/24
193.53.5.0/24
193.53.7.0/24
193.53.12.0/24
IPv6:
2a0e:dd40::/32
Signature Algorithm: sha256WithRSAEncryption
09:08:cc:e3:b5:6d:3e:8c:75:1e:8c:e4:c0:f3:24:3c:72:8c:
c4:02:02:f3:13:8e:0e:e5:84:e5:0f:ae:47:b2:3c:a8:bc:de:
b1:e3:d2:97:e4:d7:10:25:7e:d1:20:6a:bd:d1:1e:c3:4c:a2:
55:d1:36:2a:39:b2:76:1a:40:59:5c:c3:98:82:cd:d6:66:ab:
72:74:d4:40:5d:a5:61:fc:87:df:92:ea:72:30:90:87:52:61:
e0:56:d0:1f:ef:55:98:2f:80:68:2d:29:68:ce:66:96:17:13:
93:fd:cd:ab:09:ae:2e:e5:ed:cb:6f:56:28:aa:bb:64:52:a4:
6a:97:a2:70:72:f6:0d:d0:ac:02:25:4e:75:b5:cc:68:1d:c1:
cd:e0:35:8d:da:6b:72:63:94:a8:c1:2f:3e:33:cd:0b:69:d7:
85:02:1b:9a:7f:5f:9f:e3:9f:6f:e8:f7:9d:bc:29:bc:0b:f5:
0a:63:6e:c5:ef:92:a0:48:07:dc:7a:ce:8d:8e:14:65:0e:84:
04:0a:cc:93:c1:e2:07:b5:0a:3a:f1:3e:be:ed:0b:23:d9:d1:
47:b8:a5:b9:1f:64:20:31:7e:28:fe:a4:b2:ca:c9:a0:ca:16:
a0:8b:2d:ed:8c:dd:c3:34:9c:6c:60:1f:f2:24:43:ef:3b:8c:
4d:5b:5a:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:49 2023 by rpki-client on console-ams.rpki-client.org