Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/rSu-JPqXu5Q3pMHkl6PhyUhm6i8.roa
File: rSu-JPqXu5Q3pMHkl6PhyUhm6i8.roa (raw, json)
Hash identifier: 93DeVyN6maVhc0oosnc1UwlncWI1jAbV4+s8V6VAHEA=
Subject key identifier: AD:2B:BE:24:FA:97:BB:94:37:A4:C1:E4:97:A3:E1:C9:48:66:EA:2F
Certificate issuer: /CN=c4fbe8422432727d3874b1564baeac8a80557b2d
Certificate serial: 0865CAD4
Authority key identifier: C4:FB:E8:42:24:32:72:7D:38:74:B1:56:4B:AE:AC:8A:80:55:7B:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xPvoQiQycn04dLFWS66sioBVey0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/rSu-JPqXu5Q3pMHkl6PhyUhm6i8.roa
Signing time: Wed 04 May 2022 06:08:03 +0000
ROA not before: Wed 04 May 2022 06:08:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 45.148.4.0/24 maxlen: 24
193.104.211.0/24 maxlen: 24
193.104.222.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140888788 (0x865cad4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4fbe8422432727d3874b1564baeac8a80557b2d
Validity
Not Before: May 4 06:08:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ad2bbe24fa97bb9437a4c1e497a3e1c94866ea2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e0:ab:1e:a7:6f:63:23:60:36:1c:e5:b2:0b:
89:d8:2a:67:d2:a7:28:ad:9d:e4:66:42:de:92:0c:
d8:9b:f4:f6:08:bc:45:68:d3:ea:eb:62:7c:76:3e:
e0:fb:80:c3:01:0d:da:d1:ec:4a:89:76:2f:85:30:
a5:fd:ed:9f:a3:8d:32:19:a8:06:93:80:36:d3:36:
f5:80:3d:3f:94:7b:5b:df:ca:66:17:a9:5f:81:09:
6a:aa:d0:36:35:5a:e2:1d:8d:69:81:3b:72:e2:90:
63:ca:4b:4a:ce:ad:03:bb:b7:ad:a1:32:af:8f:45:
8a:c4:e9:a6:b1:20:b4:a2:45:1b:9c:8f:60:5a:9f:
bb:13:ed:4c:15:a5:93:65:70:4f:69:da:4c:e4:01:
fe:79:ef:f4:11:01:f0:b2:5b:0c:31:67:46:b4:14:
71:13:bf:f6:7c:9f:62:e2:24:88:cd:61:36:ca:eb:
76:60:c0:54:a2:fe:59:81:00:e6:c9:75:c9:a3:65:
8e:42:30:ca:09:76:a3:1b:d0:29:98:29:92:d3:32:
5d:29:9e:a2:f9:77:bd:25:f8:8b:96:69:52:4b:55:
02:23:b3:e0:ed:05:6c:1a:eb:87:66:ae:20:7b:7a:
dc:99:53:f8:80:2e:40:13:03:4d:d9:99:e8:b0:45:
ee:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:2B:BE:24:FA:97:BB:94:37:A4:C1:E4:97:A3:E1:C9:48:66:EA:2F
X509v3 Authority Key Identifier:
keyid:C4:FB:E8:42:24:32:72:7D:38:74:B1:56:4B:AE:AC:8A:80:55:7B:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xPvoQiQycn04dLFWS66sioBVey0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/rSu-JPqXu5Q3pMHkl6PhyUhm6i8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/xPvoQiQycn04dLFWS66sioBVey0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.4.0/24
193.104.211.0/24
193.104.222.0/24
Signature Algorithm: sha256WithRSAEncryption
35:66:16:4d:cb:96:c1:74:0a:86:e1:6a:e9:e3:02:99:9c:e3:
8b:4d:c2:71:79:09:e4:a7:35:c0:81:5c:9f:1a:7d:73:4b:76:
4a:8b:2d:c4:e7:df:d3:bc:f6:0a:40:7f:7a:a7:85:58:6d:e2:
34:85:5c:94:b5:6b:76:f5:1e:51:27:0d:30:d5:f0:89:24:04:
da:6f:74:8f:1e:bd:d0:6f:a1:6c:e0:c2:b3:ec:f0:da:1e:d5:
16:7e:e7:56:c6:8e:24:eb:db:61:3b:76:6b:00:7b:10:c8:ee:
7e:58:5e:ff:c5:46:62:c6:66:40:bb:5f:7e:cf:05:b8:2a:fc:
a7:13:58:1a:ed:64:d7:34:7b:ab:5c:71:19:5f:c0:13:f4:56:
a3:e5:ca:a5:a3:80:50:0d:73:03:78:40:fe:e6:26:81:3b:99:
ec:61:11:88:55:91:c9:9e:f1:56:a0:d2:6a:76:20:03:a9:36:
ee:50:b1:f2:cf:53:98:2c:2f:1c:89:72:36:15:cd:60:c6:ac:
a7:85:6a:84:75:1c:5b:e8:d5:d4:2c:a4:3b:26:94:f1:9b:1f:
6d:a4:11:12:c0:63:61:35:39:6e:ae:57:14:1d:57:3b:65:26:
11:8d:dc:85:d8:3b:54:8e:6a:0e:c2:b8:f6:7b:4c:df:8d:07:
01:c8:6b:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:27:14 2024 by rpki-client on console-fra.rpki-client.org