Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ut4HVfXxTQnF75glA7IGYR5d8zw.roa
File: ut4HVfXxTQnF75glA7IGYR5d8zw.roa (raw, json)
Hash identifier: jdHKBE2omZ6DtG1Jlro/kG2bXSi17ZhHaxNGLG8XGN8=
Subject key identifier: BA:DE:07:55:F5:F1:4D:09:C5:EF:98:25:03:B2:06:61:1E:5D:F3:3C
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 14E65077
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ut4HVfXxTQnF75glA7IGYR5d8zw.roa
Signing time: Sun 01 May 2022 04:29:31 +0000
ROA not before: Sun 01 May 2022 04:29:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207177
IP address blocks: 91.242.81.0/24 maxlen: 24
171.22.52.0/22 maxlen: 22
45.86.16.0/24 maxlen: 24
45.86.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 350638199 (0x14e65077)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: May 1 04:29:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bade0755f5f14d09c5ef982503b206611e5df33c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:46:91:aa:d9:07:3b:11:6e:e6:82:d5:f8:dd:
9f:43:a8:80:0d:57:7f:75:c6:73:92:19:e7:a3:8a:
f8:6a:72:15:48:49:b0:10:a8:c8:bb:c8:79:22:d0:
5b:43:7f:da:f1:df:b6:29:7c:40:2e:81:00:27:bc:
70:d8:c6:71:a2:c4:2f:cc:2a:fb:f4:58:08:aa:22:
ed:a1:3f:fb:bd:ce:c8:b5:73:76:59:b5:59:8c:e8:
67:8a:57:12:77:96:53:70:2a:83:52:4f:5c:81:14:
39:1c:66:e8:56:e0:42:e8:9e:bb:ed:a9:e8:a5:72:
2e:8d:b8:bf:e6:b7:f1:1f:ae:e8:53:38:c4:f3:86:
36:5f:77:b5:a1:27:d4:61:79:aa:e2:cc:93:5d:a0:
76:b7:31:a5:3a:89:6e:4f:1f:f5:24:c4:55:4b:fe:
a4:ab:9d:63:96:fe:af:73:0d:9e:09:6b:cf:52:0e:
1a:8f:f6:1d:3b:5c:68:5b:77:b5:d6:27:d9:49:e7:
01:85:ab:46:e1:5e:2c:9e:6a:cc:1c:43:8c:dd:d8:
75:7e:9d:5e:77:8f:8f:16:a1:92:79:27:8d:a7:49:
39:db:2c:33:a2:80:18:53:95:55:59:2e:04:a3:d3:
f6:aa:0a:8f:a6:35:f1:de:c6:c7:ad:f7:9d:97:dc:
41:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:DE:07:55:F5:F1:4D:09:C5:EF:98:25:03:B2:06:61:1E:5D:F3:3C
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/ut4HVfXxTQnF75glA7IGYR5d8zw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.16.0/22
91.242.81.0/24
171.22.52.0/22
Signature Algorithm: sha256WithRSAEncryption
08:2b:90:3b:93:8f:70:81:5f:d6:dc:4b:46:84:cc:4a:45:53:
89:c2:7c:1f:22:36:12:ea:03:e1:1b:98:82:be:7f:4d:56:d9:
4f:0d:87:10:15:13:5e:b9:f6:f0:fa:7b:2a:9e:f9:97:b0:16:
ab:60:79:b0:34:c1:45:77:9d:ca:3e:ba:2a:c4:3b:9a:c5:37:
37:3c:45:eb:e7:07:49:51:90:60:a1:9e:7f:c7:00:28:38:1d:
0a:d5:63:02:f1:e2:d9:49:9b:eb:ad:5b:71:dc:a4:06:ab:3d:
69:6c:47:b3:ce:da:0b:07:73:c9:c2:3a:02:94:69:a0:15:dc:
a7:14:26:08:c7:ec:a1:a3:a5:e1:5d:63:cb:79:5b:fb:9a:b8:
9c:02:bf:44:18:d1:2d:12:b9:06:aa:30:bf:15:48:ed:96:45:
f9:51:9f:2d:cd:f1:e1:6b:3b:58:bf:35:6c:25:3b:02:42:3c:
09:17:b1:de:e3:05:96:6d:ed:6f:f5:82:09:9a:24:60:ec:df:
30:2c:52:e4:49:7e:22:a1:0f:c1:d4:8a:d2:93:e5:c6:ac:1f:
60:7f:a2:3f:e8:13:c9:ec:7e:30:9d:f7:24:e5:c8:83:12:81:
a9:18:53:f2:a7:8b:f2:32:40:c5:65:ca:77:ce:d3:72:c1:b5:
0f:93:e9:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:50 2023 by rpki-client on console-fra.rpki-client.org