Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/q1j9ys946UyKRX8O_ffcPPUpCzA.roa
File: q1j9ys946UyKRX8O_ffcPPUpCzA.roa (raw, json)
Hash identifier: 7dyByEQg+BSXpdHXH0lFSgr2ozO8KfgdN3aAN6GU1Oo=
Subject key identifier: AB:58:FD:CA:CF:78:E9:4C:8A:45:7F:0E:FD:F7:DC:3C:F5:29:0B:30
Certificate issuer: /CN=adc8a9bbc2bc3a4c8bb876ccdd95fd865250b6db
Certificate serial: 02C94F5C
Authority key identifier: AD:C8:A9:BB:C2:BC:3A:4C:8B:B8:76:CC:DD:95:FD:86:52:50:B6:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rcipu8K8OkyLuHbM3ZX9hlJQtts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/q1j9ys946UyKRX8O_ffcPPUpCzA.roa
Signing time: Sat 01 Jan 2022 08:04:07 +0000
ROA not before: Sat 01 Jan 2022 08:04:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3352
IP address blocks: 45.148.220.0/24 maxlen: 24
81.90.111.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46747484 (0x2c94f5c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=adc8a9bbc2bc3a4c8bb876ccdd95fd865250b6db
Validity
Not Before: Jan 1 08:04:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ab58fdcacf78e94c8a457f0efdf7dc3cf5290b30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:48:db:c0:70:4b:bd:37:57:21:b2:13:a6:19:
b4:04:9c:5c:71:8c:bb:cb:cf:fa:82:a5:58:78:3e:
05:fa:a6:f2:21:d2:89:de:ad:9d:fa:99:b6:01:0a:
b9:d3:26:c9:25:95:64:cd:8b:e2:9f:2f:e1:1f:e3:
b1:35:1f:8f:75:36:c9:e9:47:e9:26:5b:3f:f1:34:
6d:95:3e:d2:b4:be:64:19:90:6c:ac:60:e6:c2:2c:
b3:9e:88:ae:06:a6:8c:12:47:ab:7e:69:24:27:f0:
c1:7e:af:f0:e8:5c:13:bd:b0:3e:a4:b8:c4:2a:45:
e7:64:bb:44:6f:14:b7:36:c8:dc:95:5e:af:f4:28:
b4:1b:97:e6:0b:32:ee:d4:6d:c3:6e:d2:af:6c:56:
13:76:dd:05:58:9f:62:5a:c5:ad:01:78:74:9e:3c:
12:65:7d:8c:10:53:4b:5c:5e:ed:c0:b7:4d:56:e1:
ec:87:3a:c3:48:d7:ac:e2:45:e9:74:05:fc:93:a1:
39:48:57:66:c9:c4:b9:5c:e9:14:85:9d:58:47:93:
64:61:98:15:6f:4c:21:80:ec:c3:b6:d1:a2:38:77:
0a:43:90:09:07:37:d5:05:79:f2:ff:27:e3:bd:a0:
5d:02:3f:68:a8:c9:98:a1:2e:b0:96:e5:f5:d2:a3:
32:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:58:FD:CA:CF:78:E9:4C:8A:45:7F:0E:FD:F7:DC:3C:F5:29:0B:30
X509v3 Authority Key Identifier:
keyid:AD:C8:A9:BB:C2:BC:3A:4C:8B:B8:76:CC:DD:95:FD:86:52:50:B6:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rcipu8K8OkyLuHbM3ZX9hlJQtts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/q1j9ys946UyKRX8O_ffcPPUpCzA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/86772e-5e6b-406c-8a9e-1654a80dbc36/1/rcipu8K8OkyLuHbM3ZX9hlJQtts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.220.0/24
81.90.111.0/24
Signature Algorithm: sha256WithRSAEncryption
30:67:b6:2b:58:e0:7e:89:f4:db:88:3f:14:2e:df:1a:fb:79:
02:e6:4e:70:23:aa:25:f1:cd:6d:14:ae:9a:d0:54:42:34:a1:
40:58:be:b8:32:cf:15:79:ab:f0:5c:a7:d9:f6:42:f4:89:06:
05:c3:ec:3a:2b:61:a3:8e:fd:d4:ab:71:5b:c5:de:0b:4e:15:
d9:b7:d9:a1:b4:e1:85:ea:b1:ee:77:c7:26:34:15:af:73:69:
c5:be:9b:5c:87:49:ed:cf:fa:40:8b:a8:aa:ab:dc:c8:f9:dc:
52:d4:6c:29:2c:50:c0:5d:a5:47:b1:2f:4b:af:b4:60:60:ef:
77:b0:c1:8a:d4:eb:f3:e3:7f:82:a0:bb:6d:f6:44:43:b7:f5:
75:78:10:c7:e3:1e:ea:40:a6:93:fd:d2:a9:16:bc:31:5f:27:
00:82:ab:ff:b6:8c:74:50:7b:e2:73:2f:b1:fc:fc:ac:2a:a7:
51:12:0a:94:bc:cb:f4:b7:0b:d8:12:01:97:00:b6:db:a3:0a:
bf:ed:cf:00:d2:8e:68:f4:f0:35:dd:16:92:1a:34:7f:71:14:
1a:e8:ab:15:8c:96:fa:f6:87:0f:e6:b6:07:b4:21:c4:dc:ac:
aa:d3:81:81:82:98:07:78:1e:86:a8:bf:dd:32:4e:c2:3e:06:
25:74:45:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:30 2024 by rpki-client on console-fra.rpki-client.org