Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/SWQU6GM6go6mD93iFSQ0IPEemoc.roa
File: SWQU6GM6go6mD93iFSQ0IPEemoc.roa (raw, json)
Hash identifier: 8Cve5H1J3jjCCqbhTmqeeMscXRP+miJpZCVFbCrlutM=
Subject key identifier: 49:64:14:E8:63:3A:82:8E:A6:0F:DD:E2:15:24:34:20:F1:1E:9A:87
Certificate issuer: /CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Certificate serial: C13E
Authority key identifier: 0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/SWQU6GM6go6mD93iFSQ0IPEemoc.roa
Signing time: Tue 15 Mar 2022 09:54:03 +0000
ROA not before: Tue 15 Mar 2022 09:54:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198401
IP address blocks: 185.96.52.0/22 maxlen: 22
91.234.12.0/22 maxlen: 22
185.146.244.0/22 maxlen: 22
45.82.144.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49470 (0xc13e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0d784bd96a44bc361d13344d54c8bc51ff67a802
Validity
Not Before: Mar 15 09:54:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=496414e8633a828ea60fdde215243420f11e9a87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:75:05:5e:77:39:49:a1:27:9f:41:b8:0a:75:
cc:9a:3d:0c:38:1c:8f:95:04:fc:30:bd:58:cd:dc:
05:35:d9:47:ff:fe:a0:5c:cd:ec:16:ed:f0:5a:e4:
77:d6:bd:8b:0f:f3:ef:08:48:1d:be:d7:92:7b:aa:
e6:b3:f3:d7:9d:6e:cd:9c:73:0c:20:dc:13:ab:11:
eb:b6:92:51:09:37:dd:6a:af:e2:a6:51:df:19:2f:
f1:24:28:cd:57:79:a9:23:f3:1c:70:6b:a1:b0:40:
7d:b1:d9:e8:2f:5b:ab:1d:7d:ae:8f:1d:d8:cd:5e:
a9:8e:f6:b0:dd:29:98:15:94:31:ae:34:b5:24:81:
f7:cd:9e:e9:3b:ec:bd:3f:62:92:5e:84:a9:79:9d:
6c:cf:39:ec:4f:7a:2c:03:ad:c9:c8:c6:79:4a:ec:
43:41:b2:1d:bc:94:b2:a4:0d:14:4d:8c:45:05:bf:
c0:73:3e:f1:75:00:8f:47:fe:ac:26:cd:90:aa:49:
22:6b:1c:24:4c:ef:19:31:14:5a:c3:a9:cd:eb:9e:
93:b7:6c:cc:23:3d:be:d3:5a:02:1f:c5:48:b1:eb:
77:7f:8d:e1:95:2d:bb:86:9f:79:5c:2e:35:e0:af:
30:33:ad:f9:26:7c:6a:23:40:c6:b4:3b:6e:15:47:
7c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:64:14:E8:63:3A:82:8E:A6:0F:DD:E2:15:24:34:20:F1:1E:9A:87
X509v3 Authority Key Identifier:
keyid:0D:78:4B:D9:6A:44:BC:36:1D:13:34:4D:54:C8:BC:51:FF:67:A8:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/SWQU6GM6go6mD93iFSQ0IPEemoc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/425c24-bfe0-4790-b250-d4c66f4f3b6e/1/DXhL2WpEvDYdEzRNVMi8Uf9nqAI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.144.0/22
91.234.12.0/22
185.96.52.0/22
185.146.244.0/22
Signature Algorithm: sha256WithRSAEncryption
9e:9f:26:ce:a2:ca:ce:be:7d:36:f1:ae:a6:19:88:6b:58:40:
ef:0b:97:46:c3:ba:01:d1:74:8a:43:63:cf:cd:66:2d:c5:03:
8d:f9:e0:df:6c:17:f4:d9:33:67:b5:34:cf:cf:d1:1d:8b:30:
4b:31:82:6a:e0:12:5e:9e:97:cc:52:c7:ed:59:8b:b4:7d:d3:
97:9e:5b:32:ef:15:ec:b9:f9:e7:b3:aa:62:d9:29:de:83:76:
36:36:55:8d:ff:7e:e8:9b:fe:16:3b:e2:0b:ec:75:eb:82:dd:
30:78:35:1a:a9:b1:01:33:36:4a:77:91:60:c4:7c:35:bc:eb:
cb:20:d0:16:39:dc:24:b6:07:d9:f3:f5:ec:04:d2:8c:37:34:
48:c0:d4:24:1c:ad:a1:28:88:c8:61:93:7c:d1:44:a2:68:40:
38:4f:42:57:a1:36:f7:e7:04:1b:28:a0:34:04:d1:82:eb:ff:
da:b7:42:df:99:60:03:f4:12:76:3a:a2:56:1e:ab:ee:fb:51:
0b:57:20:88:f4:63:9c:97:3c:93:73:fe:5a:84:48:90:06:63:
7e:26:69:2d:26:11:b9:a4:10:bd:7e:6d:d0:19:39:0a:27:dc:
32:76:f1:7e:2a:1b:14:8d:c8:db:28:c6:dd:57:e2:bd:54:ea:
98:2a:56:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:13 2023 by rpki-client on console-fra.rpki-client.org