Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Is0fJTRnh3M3vQgQqn5USd95Xig.roa
File: Is0fJTRnh3M3vQgQqn5USd95Xig.roa (raw, json)
Hash identifier: rXZNruGSZkirTRorm6p+JOcudtGhbDLJwRgiHY8BX4U=
Subject key identifier: 22:CD:1F:25:34:67:87:73:37:BD:08:10:AA:7E:54:49:DF:79:5E:28
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19EF53C2
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Is0fJTRnh3M3vQgQqn5USd95Xig.roa
Signing time: Sat 01 Jan 2022 15:56:54 +0000
ROA not before: Sat 01 Jan 2022 15:56:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210636
IP address blocks: 45.94.28.0/23 maxlen: 23
45.148.26.0/24 maxlen: 24
45.132.192.0/24 maxlen: 24
45.88.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 435114946 (0x19ef53c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=22cd1f253467877337bd0810aa7e5449df795e28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:d5:58:4b:9e:a2:d9:15:b2:29:52:cc:ff:1e:
ae:1f:9b:53:4c:3d:a1:d7:bd:76:6f:c5:2b:34:b6:
2a:3a:df:6f:01:e1:72:30:e0:8c:9e:71:e7:fd:35:
2d:39:e5:43:88:6a:32:93:ad:e9:93:0c:de:6b:77:
4e:e2:51:7a:df:25:9f:e3:76:32:3a:c9:64:5c:da:
4a:13:a3:7a:1a:b2:a6:d5:5e:cd:ed:f9:8d:ab:6a:
49:11:47:20:58:8c:b6:76:96:63:25:96:7b:01:f1:
9f:59:77:26:db:05:0d:ba:b3:cf:14:ad:a3:1a:eb:
b7:e6:0b:61:c2:d5:27:0f:89:0f:66:3b:7f:1a:ef:
ff:dc:19:6a:81:fe:24:71:61:ea:bf:41:56:ba:a8:
8e:b5:0a:73:94:2d:34:56:5e:f9:6d:6b:35:02:53:
25:7d:2f:0f:14:8f:c5:e4:ef:77:1a:97:83:bc:e7:
7b:09:fb:cf:9b:97:22:56:60:d4:96:75:62:c8:ef:
34:92:fe:9c:7e:59:6d:ec:84:2c:4d:f1:54:dd:6b:
73:7b:b2:3e:00:e4:c3:27:eb:a6:60:40:1c:3c:6b:
57:85:9f:d3:e8:ca:6d:55:ad:56:cb:08:5b:16:76:
70:ef:d9:28:11:80:bb:08:fe:14:a2:02:e6:ad:b2:
0d:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:CD:1F:25:34:67:87:73:37:BD:08:10:AA:7E:54:49:DF:79:5E:28
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/Is0fJTRnh3M3vQgQqn5USd95Xig.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.247.0/24
45.94.28.0/23
45.132.192.0/24
45.148.26.0/24
Signature Algorithm: sha256WithRSAEncryption
77:59:be:fb:7e:9a:18:2e:88:bb:31:b6:53:45:eb:38:8b:11:
74:d3:56:bd:db:66:8f:78:4b:29:05:f8:e8:8f:65:eb:93:a0:
13:b2:44:be:90:8d:02:5a:67:01:97:f2:fc:50:aa:4c:de:37:
4e:83:bb:fd:36:8d:bc:e1:5e:95:82:9f:41:91:86:c3:8c:64:
60:e7:98:c3:e9:08:09:d1:79:4b:d8:90:12:7c:9f:63:c2:e2:
7c:20:58:aa:50:e3:6b:08:6f:b4:03:59:93:8a:5b:94:43:29:
97:65:d8:bd:89:22:37:e1:99:1b:ad:4c:9e:76:9c:67:89:f1:
e2:07:04:7a:5b:e5:1e:b3:21:a6:ac:56:5f:52:ad:2f:aa:62:
2c:40:d0:8e:2d:b3:3a:d8:20:2f:72:ce:13:93:de:d0:f5:25:
b9:a8:03:ea:c7:fb:48:61:eb:c1:42:48:87:4c:05:69:f9:82:
62:f1:59:50:12:93:0d:9a:3b:16:a7:dd:d5:18:76:ce:f6:b1:
1c:1c:6c:fe:0e:31:cb:9b:6c:40:e2:39:a1:a1:2a:0a:2f:d5:
f9:20:8f:69:f4:79:0c:d5:24:27:25:67:86:c1:13:03:57:7b:
de:cc:90:83:9d:42:94:d2:e1:66:58:50:cf:aa:7b:98:a4:ff:
ce:98:fd:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org