Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/SIczBxx9rYDeITWEEVXuW-iTR70.roa
File: SIczBxx9rYDeITWEEVXuW-iTR70.roa (raw, json)
Hash identifier: ltmjJBkOYJdGawKb4epeXRbZx/dzX9M+iOLuS+UjHeg=
Subject key identifier: 48:87:33:07:1C:7D:AD:80:DE:21:35:84:11:55:EE:5B:E8:93:47:BD
Certificate issuer: /CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Certificate serial: 0D4E1797
Authority key identifier: EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/SIczBxx9rYDeITWEEVXuW-iTR70.roa
Signing time: Tue 08 Feb 2022 19:53:56 +0000
ROA not before: Tue 08 Feb 2022 19:53:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62068
IP address blocks: 185.244.36.0/22 maxlen: 24
45.87.40.0/22 maxlen: 24
185.224.128.0/22 maxlen: 24
5.182.208.0/22 maxlen: 24
45.14.224.0/22 maxlen: 24
2a0d:2400::/29 maxlen: 39
2a0e:2000::/29 maxlen: 29
2a0d:2780::/29 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 223221655 (0xd4e1797)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ec4fb061a9426e4fb2885d822867572a1b58a4c0
Validity
Not Before: Feb 8 19:53:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=488733071c7dad80de2135841155ee5be89347bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:c5:12:cd:92:68:5c:24:0b:40:6a:de:35:06:
ae:c4:a1:36:55:2a:98:77:72:51:70:8c:74:73:7b:
c7:cf:c6:b3:09:66:42:23:f3:4c:a9:1e:db:1c:88:
b3:c2:c4:22:df:3f:a7:da:4a:53:a1:72:07:4d:55:
4e:93:24:d1:45:c0:ae:07:17:e6:bb:36:89:be:0b:
c6:12:79:cb:76:bf:5e:b1:61:28:3a:ad:a1:68:a1:
63:88:d2:6f:e5:e6:cb:1c:52:89:b6:d6:f5:40:76:
c1:81:4e:3b:da:b2:e6:45:3f:76:c5:d8:79:f5:0a:
30:93:eb:d2:58:4d:29:3a:3e:df:b3:0a:ac:58:0c:
91:54:63:4e:c5:76:74:ac:4a:3c:78:88:d4:42:1c:
d3:8d:a3:12:5d:bf:33:e7:4d:e8:85:80:96:09:fa:
00:68:26:12:bf:05:40:30:57:d0:ca:9e:24:c8:7a:
d6:ba:5e:62:c2:71:4f:af:72:2f:6a:37:2a:31:e6:
4b:d7:a4:2c:74:f4:a4:19:0a:4f:3a:44:1b:f9:99:
38:d6:28:1b:1d:a7:ce:cf:97:19:b7:1e:61:9c:b5:
fa:23:cf:53:c4:5b:6c:f1:38:9e:3b:f3:73:e0:cd:
5a:c4:c4:e2:57:57:7d:8b:a0:68:e4:e7:36:42:dd:
e7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:87:33:07:1C:7D:AD:80:DE:21:35:84:11:55:EE:5B:E8:93:47:BD
X509v3 Authority Key Identifier:
keyid:EC:4F:B0:61:A9:42:6E:4F:B2:88:5D:82:28:67:57:2A:1B:58:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7E-wYalCbk-yiF2CKGdXKhtYpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/SIczBxx9rYDeITWEEVXuW-iTR70.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/7bc3ab-d9b6-4ae4-bcd1-ce57150695a9/1/7E-wYalCbk-yiF2CKGdXKhtYpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.208.0/22
45.14.224.0/22
45.87.40.0/22
185.224.128.0/22
185.244.36.0/22
IPv6:
2a0d:2400::/29
2a0d:2780::/29
2a0e:2000::/29
Signature Algorithm: sha256WithRSAEncryption
5b:f4:03:a0:12:1c:be:d9:5f:34:09:b2:bb:8f:8b:80:99:67:
e5:f1:0f:67:60:eb:f9:8d:1f:17:5c:e9:5c:d2:87:6c:01:40:
b4:53:cf:46:7c:b8:a3:c0:4f:08:4d:d0:b0:2a:93:70:16:1c:
35:3a:07:3b:2b:da:a9:51:35:20:63:b5:3e:86:38:19:48:bb:
85:28:74:68:fb:ff:d0:f1:72:c5:a9:b0:a3:85:38:7f:2c:63:
b5:a1:7b:93:d4:82:e2:91:85:c1:0b:e6:70:1f:77:37:16:38:
b0:3e:c8:76:61:a6:4c:9c:23:ca:c3:67:f8:a6:c7:df:3e:44:
81:41:7f:7a:08:13:8d:d4:5c:11:6d:c9:a9:71:0e:bb:6e:86:
56:f9:fb:33:47:4a:89:31:f2:d2:19:fb:c8:ba:2b:1d:0e:ac:
f7:cf:86:87:dc:9d:17:bd:8c:8a:3a:aa:36:38:5d:b3:d7:ec:
dd:65:a1:57:5f:59:58:2d:84:ea:1e:90:8b:4a:7f:df:cf:38:
eb:68:47:66:47:99:39:fd:2c:3d:8a:66:a1:23:ad:22:5e:be:
c5:ea:c6:03:20:86:e9:07:ce:4c:d0:a0:df:36:29:a5:6f:32:
e1:53:e0:33:58:34:d9:fe:2f:3b:79:d9:08:bb:24:d7:2c:4e:
4b:d8:b8:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:58:00 2024 by rpki-client on console-ams.rpki-client.org