Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/A1BI6_jLBzUe-yhqZUHRaq4HB1o.roa
File: A1BI6_jLBzUe-yhqZUHRaq4HB1o.roa (raw, json)
Hash identifier: +eFwB06TQBG5YbJidswdC4n5UaIDWpgPVO51htG86HY=
Subject key identifier: 03:50:48:EB:F8:CB:07:35:1E:FB:28:6A:65:41:D1:6A:AE:07:07:5A
Certificate issuer: /CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Certificate serial: 05963022
Authority key identifier: 81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/A1BI6_jLBzUe-yhqZUHRaq4HB1o.roa
Signing time: Tue 04 Jan 2022 19:17:48 +0000
ROA not before: Tue 04 Jan 2022 19:17:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 185.199.227.0/24 maxlen: 24
45.81.149.0/24 maxlen: 24
45.92.30.0/23 maxlen: 24
45.81.151.0/24 maxlen: 24
45.92.28.0/24 maxlen: 24
45.92.28.0/23 maxlen: 23
45.92.29.0/24 maxlen: 24
45.11.90.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 93728802 (0x5963022)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81c8b73ab7bdeb76ff48b2ca099616edbe71c426
Validity
Not Before: Jan 4 19:17:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=035048ebf8cb07351efb286a6541d16aae07075a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:40:55:dd:48:6c:04:a1:f9:0b:75:1c:f4:ea:
71:8c:92:f9:06:b8:ca:7e:35:a9:45:1f:14:aa:1a:
4b:e4:63:2a:6d:89:15:e8:0a:6d:dc:ee:9d:c9:ae:
fe:e3:7a:7e:1f:f1:75:3a:35:a9:8c:55:61:cc:5b:
de:e6:aa:c9:af:0a:c5:6a:a2:b0:85:b8:21:f2:93:
62:9b:2c:51:aa:e4:80:5c:3e:b0:6e:ef:a1:6f:c7:
75:df:c5:f2:3c:ff:10:f1:b8:b1:87:87:55:d3:25:
38:16:74:c5:b9:15:f5:74:49:3a:77:ab:6d:66:3d:
fc:15:d8:dc:f7:45:64:aa:a2:e6:c8:31:48:bd:e4:
5d:49:5d:f8:e9:8c:b4:41:83:31:44:e7:98:94:b4:
97:59:29:a7:b2:be:b2:a6:40:e1:60:eb:ea:e2:4c:
27:d0:f2:31:e4:df:c8:4b:35:2d:ee:ae:ad:c0:3c:
23:e5:92:99:76:e0:ed:7d:ed:ee:34:f7:50:2b:7e:
0c:68:55:47:ea:47:68:a2:9a:b2:cc:18:6c:19:bc:
cc:da:9e:de:0b:73:f0:4e:f9:da:dd:d2:a0:03:23:
49:65:df:d1:b3:fe:72:d1:4f:5a:4b:a2:68:3e:5a:
41:91:f0:7e:93:03:a6:ad:af:de:72:78:a9:5f:58:
d1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:50:48:EB:F8:CB:07:35:1E:FB:28:6A:65:41:D1:6A:AE:07:07:5A
X509v3 Authority Key Identifier:
keyid:81:C8:B7:3A:B7:BD:EB:76:FF:48:B2:CA:09:96:16:ED:BE:71:C4:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gci3Ore963b_SLLKCZYW7b5xxCY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/A1BI6_jLBzUe-yhqZUHRaq4HB1o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/207934-9edc-4a89-820e-d8488b3ab42f/1/gci3Ore963b_SLLKCZYW7b5xxCY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.90.0/23
45.81.149.0/24
45.81.151.0/24
45.92.28.0/22
185.199.227.0/24
Signature Algorithm: sha256WithRSAEncryption
40:c9:1a:ef:43:3a:23:d1:49:2c:98:2c:27:d4:2b:86:70:78:
82:3c:75:e0:55:d4:8e:3c:c5:c7:55:7b:88:28:41:2e:d1:3b:
10:62:46:3a:f2:aa:d0:6e:45:3f:d1:63:e2:c7:63:0a:7a:ae:
0a:76:7d:92:22:47:4b:ee:33:85:c0:81:f9:fe:42:09:38:4b:
3e:0e:01:b1:bf:d2:4d:98:e4:3c:94:90:14:6f:55:31:c8:d6:
37:92:55:28:55:10:22:ca:f6:fa:44:9d:91:e0:4e:3d:eb:ee:
0c:39:08:02:2f:eb:fa:db:0e:35:43:d2:61:f6:47:48:a4:f1:
68:92:95:8c:46:0c:bd:6d:7c:46:0a:fa:4c:87:d5:d8:84:2a:
28:51:5d:fe:14:a3:7a:53:5e:13:bb:0d:a9:b7:33:e3:e6:24:
74:41:3c:2a:bc:23:eb:81:5c:a0:e4:e9:8c:83:b0:70:75:ab:
b1:d7:19:ff:f8:71:95:87:d7:a9:f5:3c:6d:23:b7:0d:fb:b1:
d1:6a:1a:2c:b3:f1:70:ba:f3:53:0f:6b:71:67:cc:3b:ad:75:
b6:91:9c:6f:12:f8:2e:17:f7:13:62:e4:06:25:62:d4:e9:50:
0c:b2:07:28:aa:09:d9:40:36:02:5f:61:ce:03:92:5a:c3:3b:
39:5a:de:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:08 2024 by rpki-client on console-fra.rpki-client.org