Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f800f1-74ae-4c19-a7cf-31b36f579f06/1/6MoOyCjt0nBOD61w0T4mVVUCCt4.roa
File: 6MoOyCjt0nBOD61w0T4mVVUCCt4.roa (raw, json)
Hash identifier: tGLYyzaAtEX2BfDytkpw/53BDsbsrz6VEOLWEsbEWzw=
Subject key identifier: E8:CA:0E:C8:28:ED:D2:70:4E:0F:AD:70:D1:3E:26:55:55:02:0A:DE
Certificate issuer: /CN=07ea4e88466de4c896094028f1cf0db665360d32
Certificate serial: 01857015208E3C00B14EF2E5B6EC59B18E73
Authority key identifier: 07:EA:4E:88:46:6D:E4:C8:96:09:40:28:F1:CF:0D:B6:65:36:0D:32
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B-pOiEZt5MiWCUAo8c8NtmU2DTI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f800f1-74ae-4c19-a7cf-31b36f579f06/1/6MoOyCjt0nBOD61w0T4mVVUCCt4.roa
Signing time: Mon 02 Jan 2023 01:25:10 +0000
ROA not before: Mon 02 Jan 2023 01:25:10 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 29119
IP address blocks: 212.118.58.0/23 maxlen: 23
45.14.196.0/22 maxlen: 22
95.178.37.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:70:15:20:8e:3c:00:b1:4e:f2:e5:b6:ec:59:b1:8e:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07ea4e88466de4c896094028f1cf0db665360d32
Validity
Not Before: Jan 2 01:25:10 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e8ca0ec828edd2704e0fad70d13e265555020ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:3b:43:16:2e:2c:d2:2d:08:e0:e9:76:46:
35:64:d3:1f:d6:38:18:8a:62:95:08:04:72:25:e0:
51:7d:6a:ae:34:dd:b0:52:8c:ab:91:fa:c6:cf:1a:
01:db:c0:64:c2:89:13:8c:53:f4:f1:8b:e4:ab:dd:
e8:bf:93:2e:37:c3:d2:6b:37:d7:f5:e9:0b:c3:30:
c5:16:2d:31:5d:1c:75:f3:a1:62:62:51:58:94:cb:
81:d8:b2:4c:20:97:69:c9:84:e9:2b:fa:ea:25:a1:
58:81:61:22:02:21:e9:7b:38:fd:7f:49:9a:4f:ca:
4b:2a:ae:36:df:07:d7:ac:20:cc:35:29:51:9f:fa:
73:66:77:99:e4:9c:c9:c1:13:d1:54:3b:01:d2:d2:
b1:c8:83:1d:65:e1:40:b0:76:86:e3:f4:01:d0:f7:
cf:dc:8f:6d:1b:f4:b8:f6:9c:e3:b5:c5:bd:78:b2:
8f:5f:9d:54:1a:e4:a6:63:d8:be:91:bd:a9:6a:be:
ac:a5:73:aa:25:9f:4e:b0:9a:87:35:02:cb:05:5e:
91:70:70:2c:f3:00:6a:8c:1d:26:46:51:b2:c1:da:
71:94:89:96:59:a7:b5:00:3c:ee:57:b3:84:ee:80:
4a:e4:3d:d4:ca:a2:4c:84:b7:7d:8a:95:ea:77:82:
2b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:CA:0E:C8:28:ED:D2:70:4E:0F:AD:70:D1:3E:26:55:55:02:0A:DE
X509v3 Authority Key Identifier:
keyid:07:EA:4E:88:46:6D:E4:C8:96:09:40:28:F1:CF:0D:B6:65:36:0D:32
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B-pOiEZt5MiWCUAo8c8NtmU2DTI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f800f1-74ae-4c19-a7cf-31b36f579f06/1/6MoOyCjt0nBOD61w0T4mVVUCCt4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f800f1-74ae-4c19-a7cf-31b36f579f06/1/B-pOiEZt5MiWCUAo8c8NtmU2DTI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.14.196.0/22
95.178.37.0/24
212.118.58.0/23
Signature Algorithm: sha256WithRSAEncryption
53:16:57:a5:71:fd:6c:87:fe:8f:95:cd:24:ae:e0:04:fd:68:
c3:ab:84:c4:95:2b:1c:bf:da:93:00:14:5d:86:49:92:ec:7e:
ad:0c:89:c3:01:84:1f:4d:01:3e:5e:cb:c4:0b:7d:10:2d:2c:
99:72:c4:9d:cb:86:5f:74:68:f1:14:87:69:53:02:e9:45:ad:
be:92:be:17:94:3d:35:e5:9e:02:7e:96:b7:ce:34:84:d1:e8:
c7:7d:f9:d8:42:16:8a:35:59:5f:0e:7e:e2:53:03:0f:bc:ae:
60:c9:28:3f:c3:b5:18:4e:e7:c1:db:44:03:f3:81:a3:6a:e4:
74:69:5c:37:5e:d5:31:e0:03:be:58:3e:fe:d6:b7:1b:40:89:
27:94:cc:76:a1:8a:a3:89:1c:28:46:9e:18:55:4a:ac:29:45:
b0:68:f0:04:5a:91:eb:7f:99:2d:2a:3a:9d:4e:ef:f7:4c:63:
6b:5d:d0:4f:df:b2:1c:a1:a9:84:16:70:78:ed:69:57:b1:de:
53:60:92:a5:76:26:ce:0e:49:0c:50:c9:6d:8f:ba:70:83:4a:
56:e7:7f:61:44:7e:d3:d5:60:00:0a:9e:87:9d:40:8f:54:b8:
9b:1e:59:62:a5:53:81:0e:e9:e2:04:7b:35:66:ce:4d:3d:dc:
5d:98:cc:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:22:50 2025 by rpki-client