Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/gfTPP8rH0gpyE0WZKMqAUvSu_6I.roa
File: gfTPP8rH0gpyE0WZKMqAUvSu_6I.roa (raw, json)
Hash identifier: tEkkOlSZ5mDCdWx1g3/5oqkbG8Tv8Hl3TIgjUuGXWU8=
Subject key identifier: 81:F4:CF:3F:CA:C7:D2:0A:72:13:45:99:28:CA:80:52:F4:AE:FF:A2
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0185561039A18AEA4E827DF5BD7DF27FC17C
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/gfTPP8rH0gpyE0WZKMqAUvSu_6I.roa
Signing time: Wed 28 Dec 2022 00:09:41 +0000
ROA not before: Wed 28 Dec 2022 00:09:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.206.0/24 maxlen: 24
185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
194.116.191.0/24 maxlen: 24
194.116.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:56:10:39:a1:8a:ea:4e:82:7d:f5:bd:7d:f2:7f:c1:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Dec 28 00:09:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=81f4cf3fcac7d20a7213459928ca8052f4aeffa2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:8f:53:e4:41:6f:1f:ed:89:a2:7e:17:29:72:
17:d7:ef:93:b4:48:fc:ee:5e:e4:2f:46:ae:7f:f3:
85:e7:02:4c:9f:39:66:56:97:13:6d:17:18:ab:6f:
6d:b3:37:a2:58:95:4f:5d:b3:4c:04:cd:20:90:f8:
69:8d:95:ac:ab:78:a4:18:2c:51:1c:f8:c5:8a:9d:
c2:75:2b:e7:8a:be:50:6d:43:ef:96:18:9c:39:18:
dc:b6:bd:d3:b6:ec:00:0c:d8:b6:c4:24:42:96:4b:
e8:9f:3c:ff:36:9c:e4:9d:6e:54:bb:7f:c7:3d:70:
e4:7d:cd:f0:04:69:1c:e9:03:9f:ea:21:7d:f9:19:
a6:a9:f6:5f:b7:e5:31:50:e9:9c:9b:a6:f6:cf:30:
cc:d7:5c:35:0e:27:13:62:f4:5c:49:cf:db:5e:df:
14:dd:6a:7d:5e:2b:d8:92:01:fc:3f:57:5c:3a:11:
41:e7:2c:8a:80:24:fa:9f:a3:38:fb:dd:09:a7:d2:
33:d1:01:a9:17:70:45:8c:ac:55:0b:b5:b3:1a:b0:
66:94:8c:b1:0b:45:dc:ce:fd:00:f3:94:86:87:ff:
89:ab:10:fd:8b:91:54:22:dc:9c:58:06:08:64:21:
a1:ca:2e:17:da:9d:6d:47:fe:7d:7a:35:6c:37:ba:
b9:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:F4:CF:3F:CA:C7:D2:0A:72:13:45:99:28:CA:80:52:F4:AE:FF:A2
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/gfTPP8rH0gpyE0WZKMqAUvSu_6I.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.154.0/24
45.89.52.0/24
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
193.46.56.0/24
193.57.136.0/24
193.57.138.0/24
194.4.48.0/22
194.116.190.0/23
Signature Algorithm: sha256WithRSAEncryption
9f:4d:72:9b:50:e9:8f:fa:f9:e6:a0:4b:e4:a5:d2:e5:04:1b:
47:72:dd:66:8e:ab:eb:cf:11:8c:83:62:d4:56:45:02:9a:a0:
a9:68:03:3c:e1:b2:fc:5c:f4:4b:44:cf:f0:1a:5a:38:a2:c8:
8d:80:5f:c3:b6:7f:6c:3b:23:86:f2:42:4b:aa:e2:aa:6c:5d:
73:e9:82:f0:3f:95:13:bd:6c:44:eb:53:76:76:0f:88:b7:cb:
85:c2:ba:59:d8:08:dc:9a:01:fc:6e:c4:74:c0:79:aa:97:ac:
86:be:75:1d:55:d3:46:e8:69:ca:8b:fd:26:4d:fc:b7:ab:4d:
cd:f8:aa:08:ec:24:80:70:f5:6b:9d:77:09:b7:33:fe:e1:9f:
4e:4a:92:79:cc:cb:60:6b:6a:fc:cc:0b:57:fd:5a:4e:2a:11:
20:0b:a6:b0:e6:8c:54:15:d8:33:95:c6:87:92:24:80:5d:0b:
94:08:9c:f5:6d:d8:9d:ef:1c:f6:11:88:e1:27:a9:51:75:e5:
13:1d:e5:ae:4a:36:a5:de:c5:45:c1:5b:91:b1:b0:70:d5:7f:
25:bb:8a:92:46:b4:7a:61:a5:95:fe:b0:44:0c:a2:d8:ae:9c:
6c:13:01:b4:55:fb:a9:c9:c3:77:18:0b:6e:50:79:c2:99:bf:
da:ac:26:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:24 2023 by rpki-client on console-ams.rpki-client.org