Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/a6e1b5-e781-4018-960b-88c951cee784/1/uMnLESsCDF7ZvE-_vX41rTXPr78.roa
File: uMnLESsCDF7ZvE-_vX41rTXPr78.roa (raw, json)
Hash identifier: rDA9NjPt5X6cJ4i+xvwGbWzL2Yury/b0p8cfcCdMVso=
Subject key identifier: B8:C9:CB:11:2B:02:0C:5E:D9:BC:4F:BF:BD:7E:35:AD:35:CF:AF:BF
Certificate issuer: /CN=1722e9678fb0d414d2ddfbd2420c4c748263f34b
Certificate serial: 7C9E16
Authority key identifier: 17:22:E9:67:8F:B0:D4:14:D2:DD:FB:D2:42:0C:4C:74:82:63:F3:4B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FyLpZ4-w1BTS3fvSQgxMdIJj80s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/a6e1b5-e781-4018-960b-88c951cee784/1/uMnLESsCDF7ZvE-_vX41rTXPr78.roa
Signing time: Fri 04 Feb 2022 21:26:47 +0000
ROA not before: Fri 04 Feb 2022 21:26:47 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210412
IP address blocks: 89.106.203.0/24 maxlen: 24
45.150.57.0/24 maxlen: 24
2a12:b380::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 8166934 (0x7c9e16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1722e9678fb0d414d2ddfbd2420c4c748263f34b
Validity
Not Before: Feb 4 21:26:47 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8c9cb112b020c5ed9bc4fbfbd7e35ad35cfafbf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:db:c9:30:5c:95:97:85:02:c0:e4:19:dd:51:
19:4c:32:66:75:42:6a:fe:5c:cc:40:00:16:b5:0f:
b0:90:58:aa:ae:6d:24:24:60:fc:d5:a2:cf:16:66:
47:7a:0c:d8:de:c7:3a:64:d2:1b:c9:80:7c:96:ab:
31:d9:95:5b:28:c2:93:40:7f:7b:d5:a1:6c:42:52:
d4:02:6d:1c:13:5e:5b:61:ca:19:08:c9:c0:6f:93:
21:a5:b1:a3:b1:ab:2d:bf:c6:c6:62:3a:ed:45:18:
d4:93:4e:dc:5b:38:33:47:c2:49:0e:28:e0:a3:19:
3b:b9:bb:a0:2c:53:d9:bd:10:d1:05:d0:fb:8c:79:
7e:c4:79:05:f1:2f:bb:03:d8:fd:7d:f0:34:81:dd:
f5:4e:3e:3a:bf:6a:c1:90:70:29:61:46:2d:0c:d0:
f2:11:09:32:b0:7a:f2:0e:a6:9e:c7:c8:3e:0e:78:
88:40:b8:8f:4a:79:ae:9e:b7:23:f3:c8:55:85:6a:
16:de:11:72:cc:18:78:4b:80:bc:19:8f:fe:dd:ca:
71:e0:5f:69:8b:a8:f6:ee:a8:f1:df:ca:a4:b6:62:
19:2a:1b:79:60:de:6c:04:00:54:e4:ab:c1:8c:3e:
c9:aa:0a:55:93:50:e1:40:93:15:55:c2:39:b8:53:
3a:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:C9:CB:11:2B:02:0C:5E:D9:BC:4F:BF:BD:7E:35:AD:35:CF:AF:BF
X509v3 Authority Key Identifier:
keyid:17:22:E9:67:8F:B0:D4:14:D2:DD:FB:D2:42:0C:4C:74:82:63:F3:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FyLpZ4-w1BTS3fvSQgxMdIJj80s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a6e1b5-e781-4018-960b-88c951cee784/1/uMnLESsCDF7ZvE-_vX41rTXPr78.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/a6e1b5-e781-4018-960b-88c951cee784/1/FyLpZ4-w1BTS3fvSQgxMdIJj80s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.57.0/24
89.106.203.0/24
IPv6:
2a12:b380::/29
Signature Algorithm: sha256WithRSAEncryption
6d:8e:6f:28:fd:08:b6:a7:c2:ae:28:50:f2:3c:30:26:84:64:
3c:fd:6e:da:d4:ab:fa:9e:c0:7c:7b:51:dd:4b:60:0a:ae:c1:
b4:38:ce:02:a4:0b:88:33:03:1b:6c:00:a0:0d:7d:20:15:16:
62:97:60:d3:af:94:af:66:0e:23:05:62:76:2b:85:2b:d9:01:
a4:4e:b3:c0:ca:2a:ce:51:74:bf:20:b8:99:46:de:c9:ae:2e:
59:fe:d7:93:d4:3d:70:78:1c:7c:5f:7a:9c:fb:fd:a9:cd:2d:
fc:9d:48:40:e3:6a:6f:1c:58:bd:5a:37:2b:19:ad:36:f5:ef:
79:e9:7e:3e:bb:63:f3:2b:f9:b7:23:37:03:0c:94:38:82:61:
8a:5f:f2:2d:12:8a:41:97:00:1f:18:95:ed:52:15:05:16:99:
ae:6f:99:2f:36:ef:1e:bc:c7:c3:3b:a6:d6:94:ce:64:2c:67:
8e:f6:9a:ba:87:b5:e5:ae:55:e7:6c:cf:a8:11:65:cd:97:22:
55:0a:18:54:50:a6:49:a1:12:40:95:fc:ab:8d:c8:64:01:7a:
dc:e2:c1:04:9d:fb:24:3a:d9:a0:a2:5d:09:46:82:58:db:0e:
4d:81:fb:57:37:52:03:88:d3:2a:fc:66:3e:99:74:32:4a:96:
90:d0:ac:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:03 2023 by rpki-client on console-fra.rpki-client.org