Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/jRKZ3pyvT0QOpAn91ZytpwbfKEc.roa
File: jRKZ3pyvT0QOpAn91ZytpwbfKEc.roa (raw, json)
Hash identifier: hQozU+vFRY5EglKBUFNqhemdAOcoudLpihe0E1vmXqE=
Subject key identifier: 8D:12:99:DE:9C:AF:4F:44:0E:A4:09:FD:D5:9C:AD:A7:06:DF:28:47
Certificate issuer: /CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Certificate serial: 0185513AC390D01E1418514EC81336BFF4C0
Authority key identifier: 11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/jRKZ3pyvT0QOpAn91ZytpwbfKEc.roa
Signing time: Tue 27 Dec 2022 01:38:03 +0000
ROA not before: Tue 27 Dec 2022 01:38:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44477
IP address blocks: 185.231.206.0/24 maxlen: 24
185.231.205.0/24 maxlen: 24
185.231.204.0/24 maxlen: 24
185.231.207.0/24 maxlen: 24
141.98.169.0/24 maxlen: 24
45.84.0.0/24 maxlen: 24
45.84.1.0/24 maxlen: 24
45.89.52.0/24 maxlen: 24
45.159.251.0/24 maxlen: 24
45.159.250.0/24 maxlen: 24
45.159.249.0/24 maxlen: 24
45.159.248.0/24 maxlen: 24
45.67.35.0/24 maxlen: 24
5.182.39.0/24 maxlen: 24
193.57.138.0/24 maxlen: 24
193.57.136.0/24 maxlen: 24
93.185.166.0/24 maxlen: 24
45.87.154.0/24 maxlen: 24
45.8.145.0/24 maxlen: 24
45.8.144.0/24 maxlen: 24
193.46.56.0/24 maxlen: 24
194.4.48.0/24 maxlen: 24
194.4.51.0/24 maxlen: 24
194.4.50.0/24 maxlen: 24
194.4.49.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:51:3a:c3:90:d0:1e:14:18:51:4e:c8:13:36:bf:f4:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=11a010f87a049b6e21abed9b40983b04f3f1c7e8
Validity
Not Before: Dec 27 01:38:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8d1299de9caf4f440ea409fdd59cada706df2847
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:05:47:2c:ee:e6:07:59:a5:bf:7d:fa:6d:c3:
c5:2f:fe:b0:8c:37:13:26:53:16:49:f7:54:23:13:
18:ab:16:a9:38:b2:08:ec:80:fe:c2:74:f1:2a:e8:
69:2d:8d:20:f6:fd:f5:ea:c4:2c:de:a8:93:f3:dc:
00:2d:5b:7b:fc:df:d6:26:ea:fd:01:c3:71:12:03:
e2:1c:c8:4e:97:22:b0:e0:d8:94:1f:22:fc:24:fd:
dc:70:c7:3e:5a:3f:00:28:2a:95:3b:89:f0:bd:2d:
47:f4:0d:9b:ab:71:9d:e6:f4:a8:10:d4:51:05:93:
ce:1d:dc:f8:e4:ac:cb:60:e8:55:ab:6d:94:61:32:
9c:ac:9c:55:ac:56:e4:ee:77:0b:21:c1:38:46:4c:
24:a4:d2:09:82:e5:d5:62:63:d2:cb:73:a4:f8:18:
97:51:db:fd:e1:28:2f:f4:0e:61:6e:49:9a:16:c4:
16:c0:cb:12:9e:de:55:84:48:57:ee:7f:2e:f9:ae:
b6:91:2f:ff:6a:ba:c8:86:e7:8e:4e:fe:4a:28:48:
c2:18:58:c4:58:58:3f:ea:fa:99:c3:e7:c2:f9:fd:
56:61:09:8e:70:bf:c8:a8:05:1f:74:2c:5c:1e:99:
e4:93:6c:65:e8:dd:d9:4f:b3:1f:0a:3c:9c:64:93:
a5:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:12:99:DE:9C:AF:4F:44:0E:A4:09:FD:D5:9C:AD:A7:06:DF:28:47
X509v3 Authority Key Identifier:
keyid:11:A0:10:F8:7A:04:9B:6E:21:AB:ED:9B:40:98:3B:04:F3:F1:C7:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/EaAQ-HoEm24hq-2bQJg7BPPxx-g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/jRKZ3pyvT0QOpAn91ZytpwbfKEc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/f25d7c-6677-4fdb-898e-ee7465754ff6/1/EaAQ-HoEm24hq-2bQJg7BPPxx-g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.182.39.0/24
45.8.144.0/23
45.67.35.0/24
45.84.0.0/23
45.87.154.0/24
45.89.52.0/24
45.159.248.0/22
93.185.166.0/24
141.98.169.0/24
185.231.204.0/22
193.46.56.0/24
193.57.136.0/24
193.57.138.0/24
194.4.48.0/22
Signature Algorithm: sha256WithRSAEncryption
ce:be:88:74:21:a4:af:e2:9f:08:f9:e5:2a:e9:4e:82:18:77:
ae:c4:53:04:55:3a:a4:9e:23:b7:62:f4:2c:5b:ed:df:ee:d5:
b5:eb:37:31:00:22:36:f8:94:ee:95:c2:fb:71:53:7d:13:60:
10:56:a0:bf:6c:d6:0a:a5:e1:d2:09:13:9a:98:f7:a8:49:fe:
72:0e:46:bb:9e:cc:ce:5e:47:b7:9d:bd:fb:27:f1:3c:70:d4:
9d:1e:d2:00:fe:17:bd:d5:d4:c2:e3:f9:b6:f3:5d:58:28:15:
0f:1f:b5:8d:0f:e5:0e:17:43:77:e0:89:47:35:7c:8b:85:86:
d1:94:f1:c3:c8:22:41:00:01:65:d3:18:2a:1f:42:08:16:83:
96:ff:d3:29:b7:d7:60:5f:b3:1e:ea:06:6a:c9:07:3e:7c:4c:
3f:bc:a6:5a:7a:48:11:5d:53:ef:b1:f5:57:be:ce:21:76:88:
f2:14:ca:7a:0d:a4:ea:a1:0e:39:c7:a5:6c:e7:4c:4e:6c:e3:
3c:89:66:e3:ec:e6:dc:e8:a5:ef:34:32:25:05:d5:77:a6:ff:
42:7f:b3:ae:ff:3d:62:4f:78:51:cf:ef:9c:be:46:9c:6d:ad:
97:60:a1:0f:17:86:59:1d:71:ee:ce:ea:b4:f9:8d:df:d7:b6:
72:2b:58:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:42 2023 by rpki-client on console-fra.rpki-client.org