Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/E1mQcsIZAyfSSvaZo7jHTJnp2Ro.roa
File: E1mQcsIZAyfSSvaZo7jHTJnp2Ro.roa (raw, json)
Hash identifier: QY2mOEc/QNTyQz1xHpTCg7fVOeFyiMB3phJpj+J2d+E=
Subject key identifier: 13:59:90:72:C2:19:03:27:D2:4A:F6:99:A3:B8:C7:4C:99:E9:D9:1A
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19E036E4
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/E1mQcsIZAyfSSvaZo7jHTJnp2Ro.roa
Signing time: Sat 01 Jan 2022 15:56:46 +0000
ROA not before: Sat 01 Jan 2022 15:56:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 54103
IP address blocks: 45.87.23.0/24 maxlen: 24
45.87.21.0/24 maxlen: 24
45.88.121.0/24 maxlen: 24
45.88.123.0/24 maxlen: 24
45.133.253.0/24 maxlen: 24
45.133.255.0/24 maxlen: 24
185.243.245.0/24 maxlen: 24
185.243.247.0/24 maxlen: 24
45.143.193.0/24 maxlen: 24
45.143.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434124516 (0x19e036e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13599072c2190327d24af699a3b8c74c99e9d91a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:3c:a8:42:6b:80:a8:55:58:39:1d:94:f2:be:
5d:0e:27:80:95:0e:28:73:15:f7:2f:d5:e0:c5:79:
9b:7e:ac:07:22:b2:1d:22:18:1b:a9:c0:c7:b3:d3:
0c:3a:b8:56:fd:af:97:39:0f:8d:f3:af:28:2d:c6:
37:a3:b0:76:53:d6:81:d3:05:ce:a4:f2:4b:aa:02:
e0:4a:1b:41:f8:66:cd:c4:19:bf:11:36:35:88:0b:
7e:1d:60:82:1f:fa:f6:07:e5:67:04:1f:8f:7b:eb:
33:0f:2e:18:d3:e8:c6:4f:e9:50:27:ab:6e:91:40:
df:3d:48:ea:85:01:49:dc:fc:0f:4e:14:de:4d:8f:
85:04:51:c0:bc:d8:58:c0:58:19:9e:61:8c:18:5e:
1f:6e:86:0c:89:ba:b5:be:38:6e:0c:ac:55:c8:40:
a9:74:56:b8:13:db:32:55:dc:c7:eb:df:e6:44:02:
05:51:10:16:36:32:f5:84:d4:01:3a:81:2a:38:65:
f5:23:83:b5:de:28:d7:b7:5f:b0:71:50:25:ec:2b:
e4:07:f2:c6:46:9e:0b:39:17:ca:8a:26:d1:fc:d6:
7b:bd:32:a4:59:91:d0:8c:35:a2:ad:bb:65:e8:ed:
bb:2a:a1:f9:27:59:ce:75:08:12:aa:4a:51:00:bc:
c2:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:59:90:72:C2:19:03:27:D2:4A:F6:99:A3:B8:C7:4C:99:E9:D9:1A
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/E1mQcsIZAyfSSvaZo7jHTJnp2Ro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.21.0/24
45.87.23.0/24
45.88.121.0/24
45.88.123.0/24
45.133.253.0/24
45.133.255.0/24
45.143.193.0/24
45.143.195.0/24
185.243.245.0/24
185.243.247.0/24
Signature Algorithm: sha256WithRSAEncryption
14:90:a1:fd:e0:aa:67:68:86:6d:23:3a:e0:c5:92:83:67:83:
73:f4:67:71:7f:e0:11:44:35:09:26:cb:f9:26:37:e4:da:ae:
6b:f9:df:45:51:99:53:d6:92:26:53:59:6d:26:2a:1a:e6:d8:
74:fe:ab:fc:d7:42:1e:c6:a3:2f:3c:bf:4d:ff:6f:9b:3a:c1:
d9:48:40:ad:80:55:d3:7f:99:33:c5:51:0c:e6:07:5b:92:d8:
3e:fe:1b:40:9b:c5:88:8e:a2:65:ef:e1:da:be:0c:df:6f:55:
5f:94:97:e9:be:17:9a:1a:82:7f:ad:10:eb:ec:f0:e8:e6:d7:
80:eb:dc:94:86:d9:c7:08:90:bb:2d:72:91:6a:62:be:ba:bc:
f6:65:11:a3:79:7d:66:bf:93:fd:dd:1e:bd:5a:ba:66:de:a5:
f5:03:7a:30:94:8a:ec:40:b9:fe:2c:32:0f:2b:d0:ed:0a:cb:
88:87:52:b3:32:61:e7:26:ae:ac:58:62:5d:8d:31:38:e4:8a:
13:c6:95:51:a9:74:a9:07:a6:48:62:e5:21:56:35:03:88:af:
af:fb:8c:3f:55:03:9d:28:f1:4a:80:8a:7a:17:1d:9d:2f:e0:
7f:6c:5e:dd:51:97:f2:ad:8c:5a:d3:82:35:be:b3:c2:b5:ab:
6e:ca:f3:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:51 2024 by rpki-client on console-fra.rpki-client.org