Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/EGJfbrGYsv_r5RceHcQ-1iDK-18.roa
File: EGJfbrGYsv_r5RceHcQ-1iDK-18.roa (raw, json)
Hash identifier: IL3VVXtypEA4efgMmXezQ7sIa92Aa+NhY/xa/CI+pXY=
Subject key identifier: 10:62:5F:6E:B1:98:B2:FF:EB:E5:17:1E:1D:C4:3E:D6:20:CA:FB:5F
Certificate issuer: /CN=4ce37f71c933bf827118c63c07774de98645d019
Certificate serial: 05D8D151
Authority key identifier: 4C:E3:7F:71:C9:33:BF:82:71:18:C6:3C:07:77:4D:E9:86:45:D0:19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TON_cckzv4JxGMY8B3dN6YZF0Bk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/EGJfbrGYsv_r5RceHcQ-1iDK-18.roa
Signing time: Sat 01 Jan 2022 15:59:09 +0000
ROA not before: Sat 01 Jan 2022 15:59:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207143
IP address blocks: 45.131.254.0/24 maxlen: 24
185.142.212.0/22 maxlen: 22
185.142.212.0/24 maxlen: 24
185.142.213.0/24 maxlen: 24
185.142.215.0/24 maxlen: 24
185.142.214.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 98095441 (0x5d8d151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ce37f71c933bf827118c63c07774de98645d019
Validity
Not Before: Jan 1 15:59:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=10625f6eb198b2ffebe5171e1dc43ed620cafb5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:ae:ab:d5:10:65:15:79:ce:06:0b:87:bc:2b:
20:7a:2d:fe:9e:00:e0:61:4d:3b:80:9e:a1:1c:17:
ac:2f:35:75:c3:d7:18:2e:ea:48:3b:4c:cf:f3:42:
06:db:ee:f8:51:d8:e9:ea:2b:90:fe:65:2e:77:30:
a6:10:74:42:01:4a:8b:f7:18:a1:ef:75:c6:1f:b0:
0f:cc:16:5f:15:c0:e5:57:7d:a5:89:25:87:e2:2b:
22:f3:3f:97:31:fd:e8:80:f3:74:8a:0b:c2:55:55:
b9:fe:bb:8c:8c:e4:ad:08:d7:ef:fd:c7:a1:5b:28:
cd:1a:e8:ca:bd:48:24:00:6a:79:4f:71:e0:95:3c:
42:d5:e0:3c:36:9a:97:ca:75:f1:30:69:63:f4:ef:
e0:5f:dd:bf:78:23:8c:44:d8:30:18:32:85:d1:3b:
a5:bd:5e:e6:ea:4f:34:ec:77:9d:5e:06:81:ac:1e:
d3:bd:96:f3:35:24:5a:65:27:b2:7f:22:8a:b9:16:
43:e9:c7:46:6e:2e:6b:79:95:98:00:ca:5a:fa:d7:
ec:8e:5b:3f:88:87:3d:b4:ef:91:3e:5e:24:24:8a:
a7:02:6a:7a:86:80:5c:5e:f6:b0:28:76:23:f6:05:
0e:79:27:98:64:28:e6:a2:25:2d:a5:ab:ee:78:df:
1f:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:62:5F:6E:B1:98:B2:FF:EB:E5:17:1E:1D:C4:3E:D6:20:CA:FB:5F
X509v3 Authority Key Identifier:
keyid:4C:E3:7F:71:C9:33:BF:82:71:18:C6:3C:07:77:4D:E9:86:45:D0:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TON_cckzv4JxGMY8B3dN6YZF0Bk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/EGJfbrGYsv_r5RceHcQ-1iDK-18.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/efdfc9-da3a-46bd-8300-e1c8a4febdee/1/TON_cckzv4JxGMY8B3dN6YZF0Bk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.131.254.0/24
185.142.212.0/22
Signature Algorithm: sha256WithRSAEncryption
39:e2:66:42:96:1a:88:3b:33:0d:8f:c3:24:23:5c:26:d3:d1:
4d:b0:aa:b5:4f:65:ce:38:c4:eb:21:66:54:73:7a:67:20:88:
ee:fd:37:d9:b2:d8:66:0e:25:87:fb:1f:cc:a0:2e:e5:36:2f:
34:b0:4c:11:6e:56:ac:ca:34:af:8b:b3:1b:ef:2a:06:ad:27:
d3:77:da:fb:ad:24:95:a5:5e:08:cb:2d:66:5a:13:d0:35:be:
5d:5a:a7:0f:bd:78:79:fb:0e:62:c3:38:bf:f0:22:4d:05:70:
f2:7b:90:d6:40:28:f0:6d:5e:10:46:a0:60:5a:5c:ca:eb:4e:
be:6d:61:ce:4e:82:8d:37:01:8c:87:3d:e8:85:fa:cd:77:66:
fe:48:52:84:d2:38:2b:f4:1b:96:ac:71:f0:06:39:5f:03:f8:
53:dd:e3:72:d3:a3:c8:89:27:38:10:cb:37:16:a2:1a:f9:92:
1a:86:7e:bf:a7:06:e7:85:aa:fd:64:68:0e:ca:74:8d:ce:a9:
ec:6d:4d:3e:e3:26:9c:59:60:1f:3d:16:64:4b:12:56:8e:e6:
f4:e3:09:8a:09:45:a9:e3:f3:47:6c:6d:dc:32:eb:f2:89:79:
5d:40:b8:38:2b:e4:2e:b3:a5:e0:e5:23:28:34:2e:53:d1:17:
55:52:1e:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:47 2024 by rpki-client on console-ams.rpki-client.org