Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/RVoStc5qy9Bc-ubNkLROknlr27o.roa
File: RVoStc5qy9Bc-ubNkLROknlr27o.roa (raw, json)
Hash identifier: wPcDd83ObXzvWTiW4uimFwfUPb6hU7x6C6hHN1K0+bw=
Subject key identifier: 45:5A:12:B5:CE:6A:CB:D0:5C:FA:E6:CD:90:B4:4E:92:79:6B:DB:BA
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14FC2DEE
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/RVoStc5qy9Bc-ubNkLROknlr27o.roa
Signing time: Sat 07 May 2022 11:19:28 +0000
ROA not before: Sat 07 May 2022 11:19:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207177
IP address blocks: 91.242.81.0/24 maxlen: 24
185.212.11.0/24 maxlen: 24
171.22.52.0/22 maxlen: 22
45.86.16.0/24 maxlen: 24
45.86.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 352071150 (0x14fc2dee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: May 7 11:19:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=455a12b5ce6acbd05cfae6cd90b44e92796bdbba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9d:9f:46:5b:e2:d5:c8:56:9b:3e:c6:cc:0e:
2c:cc:3d:66:1c:f8:a6:35:61:04:17:0f:4a:5c:92:
32:5e:ed:27:d6:52:9d:82:14:f4:bf:e2:b2:7b:d1:
85:54:7e:ad:f4:16:f8:4e:06:7b:1e:fc:2e:e0:7a:
61:7f:cb:15:31:95:f6:80:68:d9:7e:c5:10:fc:7f:
b1:39:57:db:4d:a8:a4:e2:24:6d:18:9f:1e:22:52:
30:26:c1:7a:43:f7:24:05:4e:cb:00:61:e5:51:19:
ae:54:a4:5a:3b:9d:5f:b4:8b:41:89:10:60:29:c5:
0c:1a:70:78:1d:bc:0c:62:eb:6f:d3:c7:b1:5b:f7:
7a:15:32:5e:86:5e:16:d9:37:c9:db:84:1b:ec:51:
17:e7:87:15:a1:80:f1:93:72:2c:df:f1:aa:3a:64:
65:13:55:61:3b:cc:95:71:9e:89:cc:ff:80:8f:9b:
41:4d:2c:e7:72:35:4a:c2:b4:e3:11:2b:ad:3d:45:
86:01:04:20:c4:1b:23:ab:fb:cc:50:96:e3:2f:c5:
82:2d:1b:87:e4:52:0c:78:6d:82:43:92:d3:ba:2b:
71:d1:d0:9a:63:53:03:7c:0c:97:ba:5d:e2:4f:74:
b8:dd:19:30:02:38:b6:17:ef:ad:b3:1e:bc:56:c4:
c6:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:5A:12:B5:CE:6A:CB:D0:5C:FA:E6:CD:90:B4:4E:92:79:6B:DB:BA
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/RVoStc5qy9Bc-ubNkLROknlr27o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.16.0/22
91.242.81.0/24
171.22.52.0/22
185.212.11.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:db:01:0c:d1:33:4c:d5:2d:3f:9e:69:80:b0:bb:6b:92:79:
28:8b:17:c7:7b:27:93:09:a8:bd:2e:1d:82:80:eb:be:22:29:
fb:09:e2:71:5f:bc:40:72:4c:9e:f5:70:88:71:8b:ba:5f:e3:
dc:28:34:a3:f3:2a:2b:9a:d6:8a:2d:9c:62:e0:09:d2:ce:2e:
af:3e:c8:8d:9a:2b:9b:32:19:54:ce:b9:56:98:99:8d:8a:2c:
65:dc:df:bc:2b:00:af:e7:bc:84:39:ff:da:7a:aa:1c:93:de:
16:26:89:33:33:9a:1d:8b:c1:e7:12:44:8d:f3:b8:7d:bf:f8:
aa:d2:95:df:dd:f6:a9:35:0b:04:ce:82:f6:b3:63:92:b2:36:
e0:22:e1:f4:4c:da:e2:6f:0c:85:23:47:b4:0c:bf:39:2a:49:
ce:13:ee:b0:40:e9:c7:c9:79:fd:a4:07:42:22:28:75:cf:41:
61:d2:52:98:a6:ed:a8:d0:30:37:f0:14:79:d4:3d:ca:d2:72:
27:d8:d6:42:e8:0d:68:a0:61:d9:f3:18:8b:5e:bf:f5:92:b8:
c3:da:24:83:4f:8f:ad:66:98:4e:6c:c6:e3:5c:87:8f:93:24:
0c:d5:1c:30:f5:4b:13:bd:57:5c:d6:aa:8e:1a:f8:a9:6a:74:
04:e2:e2:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:00:26 2024 by rpki-client on console-ams.rpki-client.org