Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/cb2151-05ca-4a76-859f-4f5ec0a7e006/1/eGnTOHgsNJnNYFVjFWr9SWSir-c.roa
File: eGnTOHgsNJnNYFVjFWr9SWSir-c.roa (raw, json)
Hash identifier: GFk50y09wIRBNUOP8mBHirrxpKYp/3CsZ/QsBUT5JtY=
Subject key identifier: 78:69:D3:38:78:2C:34:99:CD:60:55:63:15:6A:FD:49:64:A2:AF:E7
Certificate issuer: /CN=b287ff2a733e33beaf53494a90eec152bbc758bc
Certificate serial: 01830C515E666E28B122EB68066D94F002DA
Authority key identifier: B2:87:FF:2A:73:3E:33:BE:AF:53:49:4A:90:EE:C1:52:BB:C7:58:BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sof_KnM-M76vU0lKkO7BUrvHWLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/cb2151-05ca-4a76-859f-4f5ec0a7e006/1/eGnTOHgsNJnNYFVjFWr9SWSir-c.roa
Signing time: Mon 05 Sep 2022 06:23:22 +0000
ROA not before: Mon 05 Sep 2022 06:23:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47527
IP address blocks: 45.95.208.0/24 maxlen: 24
213.142.141.0/24 maxlen: 24
2a00:b920:200::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:0c:51:5e:66:6e:28:b1:22:eb:68:06:6d:94:f0:02:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b287ff2a733e33beaf53494a90eec152bbc758bc
Validity
Not Before: Sep 5 06:23:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7869d338782c3499cd605563156afd4964a2afe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:40:6c:92:26:fb:f2:65:41:92:e1:0a:11:b1:
3f:74:33:3f:67:86:4d:ac:78:af:1d:60:3d:09:e6:
59:06:48:e2:03:9a:89:40:cd:62:04:f1:5e:85:16:
f3:7f:cb:4a:29:14:12:74:06:72:57:af:66:50:75:
50:97:e2:47:28:ef:f6:7a:d4:79:52:8e:d1:19:eb:
03:cd:07:33:5a:ee:d4:94:bf:59:2b:3d:05:94:64:
78:d7:62:df:25:31:63:20:a7:06:33:3e:95:79:10:
a4:04:4b:2d:a6:f2:40:c1:02:47:e0:dd:d6:9d:b3:
32:24:56:2b:0c:0b:bb:c1:ea:d2:d1:11:63:a4:1e:
84:22:80:56:64:20:26:a6:db:b8:4f:c0:e2:95:ae:
fa:0f:14:aa:5b:ae:5a:70:43:e6:21:55:d2:de:91:
c8:bc:08:c0:69:b9:a1:06:a6:f2:34:0a:8f:2a:c4:
1e:3a:f3:f2:e5:b7:02:d9:3a:01:46:76:65:44:f5:
a4:ee:53:39:3a:e7:07:eb:b9:33:9a:aa:f2:69:ab:
89:18:3f:ab:f7:f8:a4:15:4d:02:fc:17:9c:81:21:
f4:32:c0:b8:dc:aa:da:a1:c1:28:09:cf:d0:ab:e1:
5d:77:43:69:12:2b:aa:51:c1:1f:5e:a2:4d:13:48:
5f:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:69:D3:38:78:2C:34:99:CD:60:55:63:15:6A:FD:49:64:A2:AF:E7
X509v3 Authority Key Identifier:
keyid:B2:87:FF:2A:73:3E:33:BE:AF:53:49:4A:90:EE:C1:52:BB:C7:58:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sof_KnM-M76vU0lKkO7BUrvHWLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cb2151-05ca-4a76-859f-4f5ec0a7e006/1/eGnTOHgsNJnNYFVjFWr9SWSir-c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/cb2151-05ca-4a76-859f-4f5ec0a7e006/1/sof_KnM-M76vU0lKkO7BUrvHWLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.208.0/24
213.142.141.0/24
IPv6:
2a00:b920:200::/40
Signature Algorithm: sha256WithRSAEncryption
4d:e1:7a:72:03:6f:08:ac:5c:62:fc:ed:18:49:0b:0c:23:d9:
a3:b5:cf:55:ad:20:6c:b7:27:8e:43:dc:5e:81:68:c9:95:46:
c7:e5:9b:d3:51:29:56:41:63:de:10:fd:4d:89:01:8b:7b:f3:
10:94:de:11:fb:a3:a5:8b:6b:45:38:b5:4b:90:66:a7:f8:65:
6b:a9:65:cc:dc:ea:09:cb:10:fd:80:9f:70:05:21:35:10:8f:
5f:eb:d0:7e:47:7e:5b:6a:99:15:dd:a2:ed:9d:4e:4c:92:34:
a7:73:5f:76:82:67:7e:6b:a8:f5:74:e0:3d:e1:fd:51:fd:09:
75:8d:de:e7:c4:2a:b9:3b:49:33:91:60:91:20:35:85:97:88:
16:a4:e3:97:3c:9b:8d:04:85:c9:18:20:8e:09:2c:f6:6a:27:
76:0c:df:52:19:dc:11:97:79:fa:2e:ab:08:1d:b8:98:28:16:
d3:db:e2:55:4d:6a:fb:e6:34:e4:2a:34:db:91:bb:b6:7e:23:
b3:f3:4c:59:09:ee:49:97:25:3e:c5:7d:f8:e8:a2:b6:d6:9c:
c5:7e:50:72:bb:19:85:73:9f:15:49:ea:ce:3d:92:16:0a:65:
7b:5a:93:7b:c9:3c:6a:66:72:e6:dc:25:5b:74:c5:28:76:60:
94:10:58:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:17 2024 by rpki-client on console-fra.rpki-client.org