Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/JopJKoav3Gh38IvMxq-CF384rus.roa
File: JopJKoav3Gh38IvMxq-CF384rus.roa (raw, json)
Hash identifier: jk9iUZ4ENDFTXJiL2730yxM5LWlfqxEkK5fBfQY/LdU=
Subject key identifier: 26:8A:49:2A:86:AF:DC:68:77:F0:8B:CC:C6:AF:82:17:7F:38:AE:EB
Certificate issuer: /CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Certificate serial: 05A9806A
Authority key identifier: E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/JopJKoav3Gh38IvMxq-CF384rus.roa
Signing time: Tue 28 Jun 2022 07:45:02 +0000
ROA not before: Tue 28 Jun 2022 07:45:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58224
IP address blocks: 89.43.88.0/21 maxlen: 21
89.34.168.0/23 maxlen: 23
89.39.186.0/23 maxlen: 23
89.34.176.0/23 maxlen: 23
89.44.202.0/23 maxlen: 23
89.45.68.0/23 maxlen: 23
89.35.58.0/23 maxlen: 23
89.38.242.0/23 maxlen: 23
89.33.234.0/23 maxlen: 23
89.35.156.0/23 maxlen: 23
89.35.176.0/23 maxlen: 23
45.140.28.0/22 maxlen: 22
89.43.204.0/23 maxlen: 23
89.40.110.0/23 maxlen: 23
89.42.32.0/23 maxlen: 23
89.37.30.0/23 maxlen: 23
89.40.128.0/23 maxlen: 23
89.33.204.0/23 maxlen: 23
89.37.42.0/23 maxlen: 23
89.44.112.0/23 maxlen: 23
89.44.118.0/23 maxlen: 23
89.34.88.0/23 maxlen: 23
89.46.44.0/23 maxlen: 23
89.34.94.0/23 maxlen: 23
89.44.146.0/23 maxlen: 23
89.45.230.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 94994538 (0x5a9806a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7fed4e778209c3cae93d4b76d350704462c3aab
Validity
Not Before: Jun 28 07:45:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=268a492a86afdc6877f08bccc6af82177f38aeeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ee:ab:96:90:b8:35:ba:53:b4:4c:1d:94:cd:
77:23:44:e2:c7:a3:5a:89:d8:6c:7e:5c:b6:da:b7:
0c:bd:18:17:cd:e7:9a:e5:56:13:7e:ba:65:ea:5c:
24:f4:34:90:a3:39:05:d2:af:01:59:fd:08:bc:e2:
e3:b6:ab:a0:d8:a4:08:05:08:74:da:c2:3b:99:c7:
0e:8b:c5:12:ca:45:7d:dd:20:5b:d1:b2:6f:5d:e7:
94:9f:f3:2a:a6:a2:9c:dc:98:ea:78:c6:c1:dc:59:
8e:f6:7f:e5:c0:27:09:13:46:af:bb:a1:a9:af:1a:
a2:c9:83:98:08:95:9e:e5:ad:38:96:6c:f2:41:83:
4e:d4:71:b1:7b:46:f4:70:63:9f:40:c7:42:d9:2b:
47:7e:b0:01:66:b3:26:80:62:f8:83:ad:91:b0:9b:
0c:c9:ca:c5:d7:2e:e3:d0:a1:38:0e:90:50:77:18:
39:fe:6c:83:50:37:16:5d:d2:2e:fb:20:39:ac:00:
86:77:45:fd:84:90:a1:84:dc:03:7c:c0:4e:f1:27:
02:d4:e8:01:60:90:0c:55:5a:c8:21:c4:d4:a9:d5:
90:d9:78:5c:79:ae:7b:1f:cc:42:c3:e9:5d:2b:38:
d0:e3:1e:f6:92:db:1a:51:7d:0b:c9:be:e1:fb:25:
f7:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:8A:49:2A:86:AF:DC:68:77:F0:8B:CC:C6:AF:82:17:7F:38:AE:EB
X509v3 Authority Key Identifier:
keyid:E7:FE:D4:E7:78:20:9C:3C:AE:93:D4:B7:6D:35:07:04:46:2C:3A:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_7U53ggnDyuk9S3bTUHBEYsOqs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/JopJKoav3Gh38IvMxq-CF384rus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/22a3c7-6fe5-49e1-935d-8bb80152ab34/1/5_7U53ggnDyuk9S3bTUHBEYsOqs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.28.0/22
89.33.204.0/23
89.33.234.0/23
89.34.88.0/23
89.34.94.0/23
89.34.168.0/23
89.34.176.0/23
89.35.58.0/23
89.35.156.0/23
89.35.176.0/23
89.37.30.0/23
89.37.42.0/23
89.38.242.0/23
89.39.186.0/23
89.40.110.0/23
89.40.128.0/23
89.42.32.0/23
89.43.88.0/21
89.43.204.0/23
89.44.112.0/23
89.44.118.0/23
89.44.146.0/23
89.44.202.0/23
89.45.68.0/23
89.45.230.0/23
89.46.44.0/23
Signature Algorithm: sha256WithRSAEncryption
72:0e:26:55:bb:de:3d:2c:06:37:4a:cc:a9:26:82:55:b1:16:
ee:20:e1:6e:39:ba:e9:d0:fc:77:89:b2:45:c6:5d:74:30:51:
fd:55:97:fd:e2:81:2b:b0:28:ad:ad:d0:42:a3:79:bc:9a:cf:
cd:0e:28:52:36:1e:d1:1f:60:c3:c7:16:fe:d9:03:e6:cc:fe:
5a:5e:3a:2d:1a:d8:64:5f:2a:ea:5e:8c:b8:2e:78:8a:a2:b4:
dd:d4:1e:f2:07:3b:2e:36:4b:c0:71:63:16:bd:7e:cb:b2:b6:
a5:89:20:7a:16:18:68:4b:d0:57:83:c8:19:ff:9e:cc:c5:13:
5c:67:67:9e:e1:96:f9:a6:7c:a1:4f:14:66:6b:b9:70:6a:2a:
94:b1:f8:c1:01:35:83:fe:76:f9:a1:4b:94:0e:c8:1f:f8:83:
66:e2:1b:a0:f5:c9:5c:f6:8f:76:4e:34:e4:c4:f9:f4:76:fc:
67:61:9e:90:ab:28:93:dc:49:2a:e3:a9:c6:2b:e7:72:2e:21:
23:51:ad:c8:26:2a:72:fb:65:22:09:78:97:ea:05:73:9c:7b:
b6:d0:c3:cd:3f:58:ed:5e:02:d3:03:ca:45:6d:eb:9e:fc:7c:
7c:bf:7d:ae:11:ad:e5:44:3c:0c:38:58:ab:c4:5b:10:23:d1:
ee:70:f9:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:12 2023 by rpki-client on console-ams.rpki-client.org