Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/ae3bac-3da2-4e49-bdab-13ef1c455cc4/1/X_1o8ZNSYLy5KC-SgWGBj-j3XBM.roa
File: X_1o8ZNSYLy5KC-SgWGBj-j3XBM.roa (raw, json)
Hash identifier: JPjZP7RdzzYGKqo7hD1xOVRAnsRDGJCYcfF9yWTi78k=
Subject key identifier: 5F:FD:68:F1:93:52:60:BC:B9:28:2F:92:81:61:81:8F:E8:F7:5C:13
Certificate issuer: /CN=92660b23fe3b8642d6bf475f8eb7fcad9d13c413
Certificate serial: 04070BBE
Authority key identifier: 92:66:0B:23:FE:3B:86:42:D6:BF:47:5F:8E:B7:FC:AD:9D:13:C4:13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmYLI_47hkLWv0dfjrf8rZ0TxBM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/ae3bac-3da2-4e49-bdab-13ef1c455cc4/1/X_1o8ZNSYLy5KC-SgWGBj-j3XBM.roa
Signing time: Tue 11 Jan 2022 08:05:07 +0000
ROA not before: Tue 11 Jan 2022 08:05:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44076
IP address blocks: 45.141.72.0/22 maxlen: 24
45.83.160.0/22 maxlen: 24
192.214.160.0/19 maxlen: 24
45.129.40.0/21 maxlen: 24
45.135.244.0/22 maxlen: 24
45.137.172.0/22 maxlen: 24
193.148.160.0/19 maxlen: 24
45.142.4.0/22 maxlen: 24
193.19.130.0/24 maxlen: 24
213.17.0.0/18 maxlen: 24
188.34.64.0/18 maxlen: 24
2a05:b540::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 67570622 (0x4070bbe)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92660b23fe3b8642d6bf475f8eb7fcad9d13c413
Validity
Not Before: Jan 11 08:05:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ffd68f1935260bcb9282f928161818fe8f75c13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:e5:cf:26:7a:ff:b1:7d:15:79:97:ac:92:e5:
df:3a:8b:f6:00:60:8f:75:f1:58:73:5f:4f:32:88:
cf:88:16:08:1b:9a:d8:13:4c:be:e4:4e:ad:0c:b4:
4a:e7:a5:6b:c9:9f:59:0e:79:df:d5:a6:6b:60:39:
0b:0d:40:4e:31:68:af:8b:dc:57:52:72:f4:34:43:
78:12:bc:61:c6:4f:14:5d:87:f3:e8:99:e9:78:64:
0e:1f:54:e6:95:bc:fd:90:7d:4d:c6:7c:06:f0:dc:
d8:55:ab:a2:04:5b:74:88:1e:ab:d5:8a:50:4e:98:
f7:1d:89:99:a9:c5:fb:df:e6:92:59:ab:9f:c7:11:
e6:79:a4:81:03:ea:1b:64:f1:1c:f8:32:b0:8a:b3:
a6:3a:f9:1e:bf:c4:ed:45:d0:fd:3b:4c:55:87:e5:
be:be:92:6f:d2:07:a0:18:98:7d:ba:f8:0b:f9:83:
18:23:29:2f:88:42:12:d7:14:32:3a:69:70:c8:23:
92:66:7a:f3:2e:73:15:69:0a:a8:1e:8f:9c:c9:0d:
75:74:db:5f:5f:be:f0:2d:4c:68:f6:25:9a:15:15:
f0:dc:76:16:b5:94:13:5c:a9:f9:50:25:70:d3:bd:
1c:93:06:6a:c3:19:4d:4b:e6:1d:e9:43:1c:4d:67:
c0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:FD:68:F1:93:52:60:BC:B9:28:2F:92:81:61:81:8F:E8:F7:5C:13
X509v3 Authority Key Identifier:
keyid:92:66:0B:23:FE:3B:86:42:D6:BF:47:5F:8E:B7:FC:AD:9D:13:C4:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmYLI_47hkLWv0dfjrf8rZ0TxBM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ae3bac-3da2-4e49-bdab-13ef1c455cc4/1/X_1o8ZNSYLy5KC-SgWGBj-j3XBM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/ae3bac-3da2-4e49-bdab-13ef1c455cc4/1/kmYLI_47hkLWv0dfjrf8rZ0TxBM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.160.0/22
45.129.40.0/21
45.135.244.0/22
45.137.172.0/22
45.141.72.0/22
45.142.4.0/22
188.34.64.0/18
192.214.160.0/19
193.19.130.0/24
193.148.160.0/19
213.17.0.0/18
IPv6:
2a05:b540::/29
Signature Algorithm: sha256WithRSAEncryption
26:7a:03:52:4c:c9:00:09:68:9c:0b:66:96:6c:f6:cb:4d:5d:
80:16:12:a4:06:82:73:eb:89:91:0e:bb:35:18:71:07:38:21:
f0:fc:ad:6d:bf:d0:e7:32:64:e5:21:49:38:c5:9c:dd:7f:dc:
f3:a7:bf:79:bc:c9:16:97:aa:96:cb:f8:04:e5:63:39:0e:37:
4d:cd:ab:de:2a:08:e8:31:db:1f:76:2e:0c:fd:61:cc:01:5d:
7b:40:2c:cb:f8:a1:67:80:db:ed:6a:bf:8b:65:6b:d7:b3:79:
89:e3:8c:bf:45:50:c2:0d:ac:3b:5f:27:1f:dd:b5:1a:8e:49:
50:63:b4:56:4d:5c:26:be:57:eb:00:57:4a:68:ca:8a:6b:76:
68:7d:9f:d2:b4:10:50:ea:62:45:62:75:c5:06:bf:7d:3b:e4:
28:31:98:d3:da:b2:09:0a:c0:3c:8c:6c:5f:a7:f9:26:33:86:
54:22:34:58:98:b8:7d:ce:7f:bd:eb:01:c8:34:92:b7:07:22:
47:f8:c3:16:16:ba:0b:af:3a:6d:d1:bd:79:e6:64:f0:88:9c:
ec:d2:de:a6:ca:45:f3:10:65:c1:6d:5f:cf:2f:75:fb:84:7e:
d2:8a:ec:62:7a:7c:34:f0:c5:d8:58:6f:e4:07:54:f1:4a:f3:
4e:38:af:5f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:26:25 2024 by rpki-client on console-ams.rpki-client.org