Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/bf2ba5-f280-49e5-9a34-fec25d2e918d/1/TpwUxZkEmaSM1vBJ1CauC1dxpp8.roa
File: TpwUxZkEmaSM1vBJ1CauC1dxpp8.roa (raw, json)
Hash identifier: O2V9aRFf82uLygoBIF7b/efrFuK/weP9mJMLOebGSkg=
Subject key identifier: 4E:9C:14:C5:99:04:99:A4:8C:D6:F0:49:D4:26:AE:0B:57:71:A6:9F
Certificate issuer: /CN=59dda539feb8f8a3725342600670c0c154e4baaa
Certificate serial: 04B31BF2
Authority key identifier: 59:DD:A5:39:FE:B8:F8:A3:72:53:42:60:06:70:C0:C1:54:E4:BA:AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wd2lOf64-KNyU0JgBnDAwVTkuqo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/bf2ba5-f280-49e5-9a34-fec25d2e918d/1/TpwUxZkEmaSM1vBJ1CauC1dxpp8.roa
Signing time: Sat 01 Jan 2022 15:59:08 +0000
ROA not before: Sat 01 Jan 2022 15:59:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49847
IP address blocks: 185.42.225.0/24 maxlen: 24
185.42.224.0/24 maxlen: 24
185.42.226.0/24 maxlen: 24
185.42.227.0/24 maxlen: 24
45.132.172.0/24 maxlen: 24
45.132.175.0/24 maxlen: 24
45.132.174.0/24 maxlen: 24
45.132.173.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78846962 (0x4b31bf2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59dda539feb8f8a3725342600670c0c154e4baaa
Validity
Not Before: Jan 1 15:59:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e9c14c5990499a48cd6f049d426ae0b5771a69f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:13:0f:69:41:45:77:3c:99:3d:f5:0e:88:51:
7f:71:6f:dc:6d:43:da:a6:5b:cc:1d:ba:7e:41:60:
b2:73:6d:7e:29:53:99:b2:4b:22:0f:c7:b7:a5:74:
04:e1:fb:86:84:ae:f0:6c:cb:1c:e3:d4:a0:30:97:
1d:fc:25:2d:f0:82:dd:c4:b7:95:88:d8:d5:8d:18:
ff:e4:71:1c:df:db:3b:21:1a:69:d3:65:22:a4:00:
31:80:03:35:b5:ca:73:7f:3b:da:29:41:f7:2e:7f:
43:68:32:1d:c1:97:4d:0f:0d:f3:6b:1a:89:05:39:
f2:05:c6:e2:48:c9:4d:f2:41:6d:67:f7:67:30:65:
7d:10:d9:80:07:61:c1:de:cc:a2:a4:9b:06:be:02:
21:14:c3:e1:50:f9:2c:73:a4:fd:72:81:4b:ef:78:
01:6e:84:08:e3:d8:fe:5e:14:7a:7b:33:a0:d1:26:
6c:6a:b4:b9:cc:28:f6:11:d8:0b:9a:d2:54:36:e5:
c5:53:90:e1:52:d0:48:3c:f1:b0:8b:e9:78:8d:98:
f1:ec:1a:e7:dd:10:07:13:82:7c:07:42:90:bc:cf:
26:d2:75:ef:7e:fa:e8:4e:db:5e:7d:da:df:ba:a6:
27:98:20:2d:1e:0f:cf:d5:4b:17:45:8e:5c:92:62:
63:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:9C:14:C5:99:04:99:A4:8C:D6:F0:49:D4:26:AE:0B:57:71:A6:9F
X509v3 Authority Key Identifier:
keyid:59:DD:A5:39:FE:B8:F8:A3:72:53:42:60:06:70:C0:C1:54:E4:BA:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wd2lOf64-KNyU0JgBnDAwVTkuqo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/bf2ba5-f280-49e5-9a34-fec25d2e918d/1/TpwUxZkEmaSM1vBJ1CauC1dxpp8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/bf2ba5-f280-49e5-9a34-fec25d2e918d/1/Wd2lOf64-KNyU0JgBnDAwVTkuqo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.172.0/22
185.42.224.0/22
Signature Algorithm: sha256WithRSAEncryption
76:b8:fc:0b:66:9b:ba:10:37:19:bc:6e:af:b7:da:76:1c:80:
31:3d:cf:cb:65:e4:1c:a3:63:8d:d6:08:44:59:74:e0:f4:80:
5a:91:96:43:1c:17:61:c4:5d:6c:63:c3:fc:8a:fe:98:67:41:
9c:a7:69:03:e0:94:6d:90:82:f4:f3:23:a9:0f:b3:dd:9d:68:
fe:c6:b7:04:6b:2f:e9:6e:ae:0e:1d:31:a5:b5:a3:42:2c:fa:
26:4e:1b:66:17:4f:b7:d8:28:98:b3:fb:11:bf:ab:f7:42:ac:
82:eb:1a:29:b9:f3:1f:89:b7:b0:f6:58:26:bc:01:94:f2:46:
07:12:1e:b3:08:e0:01:bb:18:02:c6:55:70:89:6b:d9:55:97:
5b:72:c8:c6:c0:75:86:c1:51:03:51:04:fd:69:e6:a0:f0:3f:
53:2f:48:ed:b8:66:4c:51:05:1d:8c:21:f0:26:61:46:e5:64:
8f:da:b1:fc:d5:3f:e9:06:28:bc:83:06:07:d2:28:1f:ca:ac:
78:1e:08:c5:b0:fb:0a:be:6f:e9:cb:ac:12:b6:46:39:21:37:
4e:fa:59:54:aa:9e:4e:cc:fe:74:d7:a2:93:15:ba:d4:d8:f4:
72:a6:25:c4:2c:f0:57:11:0e:8b:5b:bf:9a:ea:17:04:10:6b:
6b:65:63:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:30:14 2024 by rpki-client on console-fra.rpki-client.org