Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/EkV9Fu0fCFicgulmroc2YqUsx2k.roa
File: EkV9Fu0fCFicgulmroc2YqUsx2k.roa (raw, json)
Hash identifier: 7vpuNJcO6zmO5QbSY+OaWW5xvvqQkSBaBW8+TBm+R5I=
Subject key identifier: 12:45:7D:16:ED:1F:08:58:9C:82:E9:66:AE:87:36:62:A5:2C:C7:69
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 147F468B
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/EkV9Fu0fCFicgulmroc2YqUsx2k.roa
Signing time: Mon 28 Mar 2022 15:26:17 +0000
ROA not before: Mon 28 Mar 2022 15:26:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 193.31.104.0/22 maxlen: 22
194.50.206.0/23 maxlen: 23
194.50.200.0/23 maxlen: 23
195.138.96.0/19 maxlen: 24
45.150.44.0/22 maxlen: 22
85.159.117.0/24 maxlen: 24
212.90.116.0/22 maxlen: 22
45.91.84.0/22 maxlen: 22
45.143.44.0/22 maxlen: 22
45.86.16.0/22 maxlen: 22
45.95.88.0/22 maxlen: 22
195.216.156.0/22 maxlen: 22
45.151.196.0/22 maxlen: 22
91.242.105.0/24 maxlen: 24
91.242.100.0/23 maxlen: 23
91.242.108.0/22 maxlen: 22
193.37.200.0/22 maxlen: 22
91.242.120.0/21 maxlen: 21
45.143.252.0/22 maxlen: 22
185.173.244.0/22 maxlen: 24
185.145.80.0/22 maxlen: 22
62.182.100.0/23 maxlen: 23
45.83.12.0/22 maxlen: 22
91.242.64.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 343885451 (0x147f468b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Mar 28 15:26:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=12457d16ed1f08589c82e966ae873662a52cc769
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:5a:41:03:97:f8:86:1b:91:ea:1f:9a:40:c9:
fe:28:74:2d:50:f1:b6:6b:37:e8:05:d4:b2:f3:b2:
df:a5:c5:f7:fa:7c:87:90:18:fa:91:db:e6:3a:7d:
ce:ce:fb:a6:bd:9f:b7:1b:ea:74:e3:a8:ab:57:49:
d7:08:a5:a2:cd:28:fd:3c:7f:4f:ea:80:6a:36:15:
8c:0f:82:53:e3:7f:2d:3e:41:0f:9f:f2:5b:ff:23:
cd:86:49:7c:ca:99:97:11:04:0d:c6:63:15:46:5f:
56:1b:62:cf:b2:f0:4f:39:46:9b:9e:fc:c2:92:7c:
31:94:9f:5e:a4:b3:4e:8d:72:7c:d8:bc:6c:8b:7b:
4c:94:db:04:f0:3c:19:c6:0e:ff:7e:e0:37:3a:02:
51:90:10:43:ea:35:0b:06:f8:38:13:23:50:98:8b:
c7:4a:aa:6a:d0:c8:1f:77:7c:f4:e4:e9:be:fe:14:
c0:af:ac:32:19:ff:2a:49:2a:34:18:a7:e5:24:cb:
76:c5:f3:66:47:31:7d:f2:a2:59:87:17:10:01:92:
38:7c:39:65:45:f1:1c:2f:79:8d:48:9b:e0:68:12:
e3:80:53:8b:91:67:9c:8b:5e:e5:6c:4e:7f:0e:bb:
1f:7a:25:13:b4:8b:db:2f:2c:89:a4:5d:5e:40:17:
4e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:45:7D:16:ED:1F:08:58:9C:82:E9:66:AE:87:36:62:A5:2C:C7:69
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/EkV9Fu0fCFicgulmroc2YqUsx2k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.12.0/22
45.86.16.0/22
45.91.84.0/22
45.95.88.0/22
45.143.44.0/22
45.143.252.0/22
45.150.44.0/22
45.151.196.0/22
62.182.100.0/23
85.159.117.0/24
91.242.64.0/22
91.242.100.0/23
91.242.105.0/24
91.242.108.0/22
91.242.120.0/21
185.145.80.0/22
185.173.244.0/22
193.31.104.0/22
193.37.200.0/22
194.50.200.0/23
194.50.206.0/23
195.138.96.0/19
195.216.156.0/22
212.90.116.0/22
Signature Algorithm: sha256WithRSAEncryption
74:9f:e0:86:d1:b6:4d:12:ac:1d:8c:f7:f3:d7:45:03:b6:5d:
00:12:c2:01:4e:48:d6:f7:fd:c6:b3:b6:d3:4b:bf:48:db:20:
2e:57:d6:7f:10:d9:f5:72:23:66:7b:8a:7b:44:fa:a9:58:e4:
e6:42:46:81:93:0e:4d:82:4f:20:9c:87:2f:2f:5a:a1:c5:3f:
69:cf:5a:dd:44:89:b7:bc:55:f9:d7:9f:e3:58:b8:82:ad:bc:
65:c4:06:e3:ac:a0:7b:8b:7d:0c:47:6e:89:cc:1c:b1:22:96:
1c:f9:4a:dd:fe:90:f1:69:51:62:27:b3:4b:48:a4:36:45:ed:
db:ab:4a:75:52:7f:95:ab:d3:17:98:3a:4d:31:4c:13:6d:4a:
e6:02:c0:21:28:c7:4d:42:40:66:34:da:32:4f:04:8a:c9:b8:
8f:87:f5:a5:64:c4:60:b1:82:34:58:10:e9:3f:89:52:08:db:
01:47:ff:bf:9f:bb:07:03:fd:45:57:ac:4a:83:77:51:07:c5:
82:34:68:d3:86:d3:45:49:11:2a:a9:18:b9:83:22:91:51:4d:
fd:56:7b:c7:46:1d:e3:09:dd:ad:09:e6:a7:6d:14:5f:59:f4:
2d:33:df:d3:43:87:df:be:5b:9c:1e:d4:a3:29:71:ef:6b:56:
78:28:6c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:23:41 2024 by rpki-client on console-fra.rpki-client.org