Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/CRgmJL22Wvj0S4QzJS_pkPLWRxE.roa
File: CRgmJL22Wvj0S4QzJS_pkPLWRxE.roa (raw, json)
Hash identifier: TeVPVOM7DD8u+ynlqGSNvL1MVPRmMS38BDD10FngJa0=
Subject key identifier: 09:18:26:24:BD:B6:5A:F8:F4:4B:84:33:25:2F:E9:90:F2:D6:47:11
Certificate issuer: /CN=3dfa29368c8be69c8edd5aa193557fcba2a57ec8
Certificate serial: 0181CB34
Authority key identifier: 3D:FA:29:36:8C:8B:E6:9C:8E:DD:5A:A1:93:55:7F:CB:A2:A5:7E:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PfopNoyL5pyO3Vqhk1V_y6Klfsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/CRgmJL22Wvj0S4QzJS_pkPLWRxE.roa
Signing time: Sat 01 Jan 2022 10:02:19 +0000
ROA not before: Sat 01 Jan 2022 10:02:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206276
IP address blocks: 185.179.184.0/22 maxlen: 22
45.8.12.0/22 maxlen: 22
185.190.100.0/22 maxlen: 22
78.142.212.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25283380 (0x181cb34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3dfa29368c8be69c8edd5aa193557fcba2a57ec8
Validity
Not Before: Jan 1 10:02:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09182624bdb65af8f44b8433252fe990f2d64711
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bf:6c:18:e4:d4:75:3b:a0:42:76:ea:8f:3d:
6b:ae:f4:58:fa:35:c6:2b:ac:a8:e4:be:70:0e:14:
63:9b:35:ba:e2:f8:a2:01:3d:80:1a:50:47:5c:7d:
0d:de:27:3d:4d:0d:35:e8:de:61:6b:43:92:94:a6:
0f:3c:33:17:ef:38:50:7c:ee:19:90:0c:15:79:0c:
dd:c4:d1:d7:ca:42:ad:f4:4d:bb:9a:d7:8d:02:fd:
5e:96:bb:ce:df:94:51:9d:7e:da:0b:49:08:30:8f:
67:e2:dc:f4:c2:75:79:ac:13:d7:0a:e7:d0:85:4a:
72:9d:1b:8e:fd:fb:91:d8:89:3b:74:62:38:97:e0:
61:91:6e:fa:74:20:93:0a:47:f3:6a:97:83:03:7a:
74:d7:5c:9f:96:3c:9c:8a:b0:c6:68:79:1b:9b:65:
94:c1:0c:a8:55:6c:75:b7:5e:63:26:26:ea:16:01:
cb:61:1a:4a:0b:d3:87:ce:d0:8c:e5:e6:af:31:48:
1c:24:38:7a:ae:21:85:26:73:b7:7f:a9:d4:45:f4:
00:60:d2:0d:15:1f:45:02:e3:15:55:a5:0b:90:69:
ca:b8:18:56:c0:07:4d:f5:3f:4d:39:56:f5:f8:5c:
8b:fa:92:a0:bd:13:f2:7e:1c:aa:54:a3:52:b4:31:
d4:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:18:26:24:BD:B6:5A:F8:F4:4B:84:33:25:2F:E9:90:F2:D6:47:11
X509v3 Authority Key Identifier:
keyid:3D:FA:29:36:8C:8B:E6:9C:8E:DD:5A:A1:93:55:7F:CB:A2:A5:7E:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PfopNoyL5pyO3Vqhk1V_y6Klfsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/CRgmJL22Wvj0S4QzJS_pkPLWRxE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/2d4f7f-16e7-4fe6-a189-bd58d0021a09/1/PfopNoyL5pyO3Vqhk1V_y6Klfsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.12.0/22
78.142.212.0/22
185.179.184.0/22
185.190.100.0/22
Signature Algorithm: sha256WithRSAEncryption
40:15:b2:34:e2:9c:15:15:ae:30:07:b5:9d:6d:5e:61:19:09:
9f:58:ee:a5:e2:64:bd:d1:c2:ca:4f:f7:43:54:15:8a:c4:4b:
58:be:06:9e:b3:b9:ad:62:de:16:33:f5:60:33:9a:a8:74:7b:
5b:0e:f6:ea:01:e1:42:05:b7:5a:bc:b7:55:8b:60:48:04:98:
4c:f1:ef:db:b7:0e:c8:26:14:85:91:3a:95:89:08:f1:19:a6:
06:c8:c2:97:0f:31:53:16:fa:61:37:92:54:1f:d2:6d:6a:a9:
7b:55:5c:ce:68:38:53:35:de:9b:69:f6:ba:3f:4a:82:b2:01:
4b:47:2f:9c:ee:63:21:4a:3d:0d:15:fc:c5:96:ca:50:15:e8:
16:5d:72:cb:53:b1:db:4f:b5:d7:92:c6:7a:c0:c1:e1:5d:aa:
2d:18:26:45:28:9a:04:ce:46:db:db:e8:ec:ec:52:81:0e:8c:
58:60:95:16:df:1b:92:83:a7:e5:a9:6b:25:3e:e4:b9:d9:86:
e4:bc:e1:8b:bc:5a:55:44:c6:72:b4:92:91:95:cb:98:28:4b:
91:d2:d4:75:b8:74:47:ec:46:e3:59:7a:ba:a0:cf:ef:e0:97:
17:aa:3c:25:1f:3d:ac:6b:e5:b4:6d:34:d2:47:96:34:b0:f8:
15:a3:07:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:11 2024 by rpki-client on console-fra.rpki-client.org