Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/1-uaVMvCjdg09v0hLa6WdWZsTw_0.roa
File: 1-uaVMvCjdg09v0hLa6WdWZsTw_0.roa (raw, json)
Hash identifier: RpPe6fs5wLYwwcML4ncTtDhPjwgwlhYfQf6UVrxn30Y=
Subject key identifier: FA:E6:95:32:F0:A3:76:0D:3D:BF:48:4B:6B:A5:9D:59:9B:13:C3:FD
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 065D8046
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/1-uaVMvCjdg09v0hLa6WdWZsTw_0.roa
Signing time: Mon 21 Feb 2022 20:04:45 +0000
ROA not before: Mon 21 Feb 2022 20:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 45.151.98.0/24 maxlen: 24
45.151.99.0/24 maxlen: 24
94.137.72.0/24 maxlen: 24
94.137.74.0/24 maxlen: 24
94.137.75.0/24 maxlen: 24
94.137.79.0/24 maxlen: 24
94.137.91.0/24 maxlen: 24
94.137.90.0/24 maxlen: 24
94.137.89.0/24 maxlen: 24
94.137.92.0/24 maxlen: 24
94.137.93.0/24 maxlen: 24
94.137.94.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106790982 (0x65d8046)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Feb 21 20:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fae69532f0a3760d3dbf484b6ba59d599b13c3fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:1f:48:42:7d:f3:f7:6a:e9:56:d9:f9:3e:b4:
8e:e2:3a:df:c6:96:91:46:a6:aa:d1:14:42:b7:21:
cd:15:5f:5a:a1:6d:13:aa:2c:de:45:6e:11:38:f1:
c7:0b:16:d8:45:97:81:0b:bf:16:20:33:57:8c:06:
3c:51:a6:f0:5d:76:36:cd:bf:fc:8b:19:cf:52:c8:
68:fc:1a:de:68:a0:25:30:5e:37:67:33:42:75:87:
f9:9c:37:91:e9:6d:a5:d6:c5:1b:70:3b:97:73:cc:
7c:47:05:f9:e0:6b:c5:ac:60:86:a6:aa:9f:fa:aa:
29:5f:4a:47:ba:32:b5:ef:82:93:68:f6:b7:dc:0c:
f0:ae:de:99:7e:a4:ec:2c:db:8d:da:74:b8:4b:36:
91:7d:88:9a:a4:c7:51:81:5a:02:91:4e:e9:2c:9c:
93:8a:68:7b:f0:3d:98:7b:72:5d:4c:67:c9:a4:69:
ed:5e:f8:6e:27:c5:f5:ec:9e:3e:a1:b3:14:e8:05:
01:48:19:86:d4:b4:a6:0c:0e:ca:4a:38:e5:d6:12:
c7:9d:2c:79:90:a5:06:b5:52:b0:eb:36:11:76:c2:
18:c3:7c:d3:a6:f1:94:ff:96:bf:67:75:23:dc:99:
44:f1:19:0c:16:23:0e:99:bc:48:5a:18:40:0d:dd:
bc:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:E6:95:32:F0:A3:76:0D:3D:BF:48:4B:6B:A5:9D:59:9B:13:C3:FD
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/1-uaVMvCjdg09v0hLa6WdWZsTw_0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.98.0/23
94.137.72.0/24
94.137.74.0/23
94.137.79.0/24
94.137.89.0-94.137.94.255
Signature Algorithm: sha256WithRSAEncryption
2f:23:e6:ff:d6:72:27:c4:a1:59:db:f4:0e:e2:b6:dc:85:4b:
e8:9e:6f:11:b8:35:10:31:c6:ea:33:70:25:99:0e:1c:eb:fa:
71:9e:8e:e5:c6:a6:f8:42:8a:59:b5:c1:89:15:91:6f:8f:d9:
b4:6e:71:f9:5c:0e:2a:8e:d5:6b:8a:68:c2:ae:d8:f5:91:be:
cf:0a:4b:b1:6f:f3:ae:8b:bc:6d:d5:57:aa:8a:af:44:86:70:
9a:3d:77:16:8a:9a:3d:96:01:55:d1:6e:4e:06:26:5c:39:03:
9f:9f:1c:86:30:23:89:7a:37:c4:e7:2e:e4:71:df:06:17:bc:
6d:c5:3f:b1:31:12:98:8b:76:6f:22:67:90:2b:2b:49:00:a9:
44:cf:e2:cb:2c:71:79:e7:59:d5:14:c6:3a:c0:6b:13:30:46:
f6:f7:cd:bb:1d:7f:67:ee:90:ff:9c:69:fd:e4:30:4a:00:18:
b7:57:dd:ca:c8:7c:8d:97:2b:15:4d:40:96:6f:d9:38:ea:72:
46:2c:a4:77:d1:a6:1e:c1:c4:3e:f4:94:65:90:f6:85:1e:53:
f4:de:06:b0:ff:79:39:5a:a6:49:27:b9:28:3c:56:ab:f7:4a:
0c:3f:a9:a0:e0:2f:44:67:02:43:87:1a:73:ae:c2:49:71:2e:
96:db:c6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:57 2023 by rpki-client on console-ams.rpki-client.org