Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/1v4AUPqAmMRZHX-L8BafBm0qmcQ.roa
File: 1v4AUPqAmMRZHX-L8BafBm0qmcQ.roa (raw, json)
Hash identifier: +mMR67pIvAExOq99K8GeZWv7PO4DqEB9+CYGKNng8Hc=
Subject key identifier: D6:FE:00:50:FA:80:98:C4:59:1D:7F:8B:F0:16:9F:06:6D:2A:99:C4
Certificate issuer: /CN=9aee15c33de358938d6900a1b3c14480a389e85b
Certificate serial: 05ACEAC0
Authority key identifier: 9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/1v4AUPqAmMRZHX-L8BafBm0qmcQ.roa
Signing time: Tue 22 Mar 2022 06:46:53 +0000
ROA not before: Tue 22 Mar 2022 06:46:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35830
IP address blocks: 45.148.126.0/24 maxlen: 24
45.66.211.0/24 maxlen: 24
45.138.103.0/24 maxlen: 24
185.61.216.0/24 maxlen: 24
185.61.220.0/24 maxlen: 24
5.183.253.0/24 maxlen: 24
213.232.121.0/24 maxlen: 24
213.232.123.0/24 maxlen: 24
141.98.85.0/24 maxlen: 24
141.98.86.0/24 maxlen: 24
185.88.102.0/24 maxlen: 24
5.183.254.0/24 maxlen: 24
185.102.112.0/24 maxlen: 24
45.132.187.0/24 maxlen: 24
185.102.113.0/24 maxlen: 24
185.88.37.0/24 maxlen: 24
5.181.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95218368 (0x5aceac0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9aee15c33de358938d6900a1b3c14480a389e85b
Validity
Not Before: Mar 22 06:46:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d6fe0050fa8098c4591d7f8bf0169f066d2a99c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:47:fd:b7:1d:6d:90:52:f4:20:05:d8:3b:6b:
b6:f9:77:6c:76:f6:c9:c8:fb:94:e5:0c:4e:07:01:
b7:e5:ee:61:40:31:26:9f:18:4d:cc:63:d6:e5:30:
85:8c:85:51:15:df:01:68:3e:f4:bf:68:34:01:b8:
64:28:66:c7:aa:a7:34:bb:f5:7a:4b:1d:78:78:78:
f0:58:9e:1c:ea:35:8a:22:9a:91:5a:7b:c3:96:6d:
07:81:a5:0d:c6:a0:ea:19:33:e2:ec:b4:6c:c2:1a:
21:2e:5f:63:b8:12:c7:49:1c:59:e0:f9:b4:17:4d:
89:89:3d:18:a4:9e:86:f7:a4:de:66:e1:c4:f7:05:
df:13:de:cd:9f:9b:79:a1:3b:87:79:eb:3a:44:cd:
56:1e:85:63:f2:2e:d7:89:03:bc:92:15:03:7d:7b:
31:8f:af:fd:8d:da:ba:cf:99:fb:18:1c:0b:44:fc:
ec:b9:5d:58:03:85:28:0c:2f:2c:c6:d8:a2:33:c0:
79:94:47:55:e2:dd:62:a8:bb:bb:9d:bc:5e:d6:8c:
0d:19:08:f7:2f:0f:19:1a:09:ad:0f:9e:4a:40:aa:
14:53:82:71:71:4d:36:f5:89:2a:6e:4f:d2:00:6d:
5b:6b:a9:aa:75:5d:a4:1b:c0:e6:1c:b7:e0:0f:00:
7b:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:FE:00:50:FA:80:98:C4:59:1D:7F:8B:F0:16:9F:06:6D:2A:99:C4
X509v3 Authority Key Identifier:
keyid:9A:EE:15:C3:3D:E3:58:93:8D:69:00:A1:B3:C1:44:80:A3:89:E8:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/1v4AUPqAmMRZHX-L8BafBm0qmcQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/72f77f-76ab-4e79-a062-6ee534d92e52/1/mu4Vwz3jWJONaQChs8FEgKOJ6Fs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.171.0/24
5.183.253.0-5.183.254.255
45.66.211.0/24
45.132.187.0/24
45.138.103.0/24
45.148.126.0/24
141.98.85.0-141.98.86.255
185.61.216.0/24
185.61.220.0/24
185.88.37.0/24
185.88.102.0/24
185.102.112.0/23
213.232.121.0/24
213.232.123.0/24
Signature Algorithm: sha256WithRSAEncryption
8a:5e:75:81:05:74:12:a1:98:8a:39:22:79:91:aa:5f:52:b4:
92:1b:42:de:63:d3:f9:4a:28:37:be:83:1d:e6:df:10:a6:ff:
da:68:2b:4f:73:66:dd:4b:84:fe:c6:19:a7:47:72:a2:83:70:
cc:94:87:4b:3d:e4:9a:29:48:94:d7:95:3f:43:a1:49:09:40:
79:a2:79:5c:ac:aa:d2:b5:5b:81:e5:88:77:ba:b4:98:a4:39:
db:75:e5:27:4b:c3:4e:fe:87:29:6c:ad:ab:3d:96:56:f1:18:
c6:22:4f:8a:da:4c:69:05:3b:b1:79:85:8b:23:37:2a:d0:81:
55:4d:43:04:7b:ae:39:d7:29:41:fe:f8:4f:94:dc:44:7f:34:
22:71:b9:aa:1c:28:ee:0b:7e:6d:9a:0a:96:ce:62:d2:fd:d1:
66:84:91:ce:0e:74:f2:da:d3:c4:ff:b8:8f:3e:91:7e:d6:e4:
f2:4f:db:b1:a1:9c:14:9a:57:32:ca:27:cd:31:ef:b5:bb:25:
84:26:ff:e9:05:d7:6b:ca:b9:90:f6:f5:82:a8:da:4a:e7:3f:
1f:49:97:75:c8:90:d7:a1:b5:e6:56:c6:ee:72:54:e2:ca:57:
cc:3b:e0:7f:e4:81:32:46:d6:51:bd:a0:fc:dd:b2:c3:93:c5:
e7:b3:9c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:17 2024 by rpki-client on console-ams.rpki-client.org