Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/x7d3SuVMOXWp7WM312IGX346ftE.roa
File: x7d3SuVMOXWp7WM312IGX346ftE.roa (raw, json)
Hash identifier: TIdOIBPR9KVCQKnuL8sOd64N652uC8aH3PYNaO1Kib4=
Subject key identifier: C7:B7:77:4A:E5:4C:39:75:A9:ED:63:37:D7:62:06:5F:7E:3A:7E:D1
Certificate issuer: /CN=4d73d94019a3c235877df6bc1b29c76a0b64c9d0
Certificate serial: 041102
Authority key identifier: 4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/x7d3SuVMOXWp7WM312IGX346ftE.roa
Signing time: Wed 15 Jun 2022 05:28:44 +0000
ROA not before: Wed 15 Jun 2022 05:28:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200851
IP address blocks: 45.66.244.0/22 maxlen: 24
185.93.244.0/22 maxlen: 24
2a04:23c0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 266498 (0x41102)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4d73d94019a3c235877df6bc1b29c76a0b64c9d0
Validity
Not Before: Jun 15 05:28:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c7b7774ae54c3975a9ed6337d762065f7e3a7ed1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:7c:c2:23:87:a9:a8:0e:2c:81:da:d1:91:3f:
57:b9:02:05:f2:57:b5:35:7e:d8:bd:31:1d:f2:bc:
7a:9e:45:d5:3a:02:0b:40:4c:c0:e2:c9:b4:69:db:
43:04:cc:f7:44:d1:3b:40:6e:88:1d:da:93:39:7a:
06:2f:96:7f:cc:ff:6b:60:32:79:ad:64:e2:79:47:
34:f9:5f:ec:56:1a:37:bc:e4:33:45:a1:56:df:02:
96:40:86:d3:38:c0:91:ad:30:34:9a:3d:3c:80:db:
ca:2f:40:a5:4b:d9:79:90:2c:b4:30:b3:fb:12:87:
7b:1b:99:c5:1e:a7:b6:4f:a1:f7:c2:00:e4:43:59:
4a:cb:d4:cc:03:5a:35:26:d4:a5:a4:fa:e8:5a:d8:
61:37:ed:40:06:83:93:bd:f5:d5:98:df:d8:c3:c5:
0b:73:e4:18:d7:c6:2c:27:f0:01:ea:a8:79:4d:5c:
d5:e9:b7:77:71:4e:25:d9:fc:39:0c:cf:86:0f:61:
39:0d:32:5c:ce:d5:b9:7c:96:43:dd:af:94:f2:81:
07:6a:7c:3d:45:75:6e:79:42:61:20:55:8d:a7:f9:
4d:09:26:b2:c2:89:fb:f8:2a:6f:91:bd:0d:ef:50:
86:bf:f7:c1:d1:d7:d0:5c:e7:fc:a3:f5:ae:73:13:
61:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:B7:77:4A:E5:4C:39:75:A9:ED:63:37:D7:62:06:5F:7E:3A:7E:D1
X509v3 Authority Key Identifier:
keyid:4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/x7d3SuVMOXWp7WM312IGX346ftE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.244.0/22
185.93.244.0/22
IPv6:
2a04:23c0::/29
Signature Algorithm: sha256WithRSAEncryption
85:b7:0d:56:c1:c4:6b:d9:3c:8f:5c:09:d3:22:56:37:ef:b5:
c2:06:36:54:32:4e:01:59:0e:88:27:85:c3:1d:4c:4e:99:38:
89:4c:4f:d1:2c:8f:c1:c4:74:a8:dc:56:ff:d6:41:31:3e:a5:
3f:2c:de:5b:27:54:c4:63:46:9c:49:e6:7d:26:43:2b:18:26:
42:61:53:6a:a2:5c:69:55:b5:e1:e1:3b:ff:cc:bb:66:3f:47:
74:29:0a:a3:ff:7c:2c:b6:38:b3:da:e9:5c:b1:65:2e:ca:94:
ac:46:af:6f:42:00:5e:03:41:db:53:91:ec:81:e4:b5:c1:3c:
02:72:c3:14:6f:d0:ca:9a:b9:7d:46:81:c8:8c:79:ee:b7:2f:
59:6e:1c:e1:a7:3e:0d:5b:ca:9d:31:d8:e0:eb:12:27:13:a6:
13:de:9b:39:26:86:1d:1b:1b:aa:ed:56:2f:cc:61:79:d7:45:
f9:95:11:ea:f9:ea:83:92:72:9b:e8:54:ac:6a:d0:49:e5:38:
be:05:53:27:c9:b9:c1:4e:a8:fe:94:c7:2f:58:8a:18:29:78:
64:95:1d:0f:2b:a6:1a:ee:27:2c:83:b7:12:56:41:12:8c:31:
36:0e:13:cc:55:b0:a4:6a:56:d9:4a:bd:4a:c3:f3:b9:a2:0c:
f8:78:57:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:30:17 2025 by rpki-client