Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/ah646x7ovFgxUdMxQMB6PjYFC7c.roa
File: ah646x7ovFgxUdMxQMB6PjYFC7c.roa (raw, json)
Hash identifier: rm4PjSlWzuZZE3vFodH0K9bopJ/34YVxSrzpy4pB8Wo=
Subject key identifier: 6A:1E:B8:EB:1E:E8:BC:58:31:51:D3:31:40:C0:7A:3E:36:05:0B:B7
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1A6A3EF7
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/ah646x7ovFgxUdMxQMB6PjYFC7c.roa
Signing time: Wed 16 Feb 2022 08:04:23 +0000
ROA not before: Wed 16 Feb 2022 08:04:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 45.86.202.0/24 maxlen: 24
45.86.200.0/24 maxlen: 24
136.144.17.0/24 maxlen: 24
193.37.32.0/24 maxlen: 24
136.144.19.0/24 maxlen: 24
194.5.48.0/24 maxlen: 24
194.5.49.0/24 maxlen: 24
194.34.172.0/24 maxlen: 24
194.5.52.0/24 maxlen: 24
194.5.53.0/24 maxlen: 24
136.144.42.0/24 maxlen: 24
194.34.173.0/24 maxlen: 24
45.84.219.0/24 maxlen: 24
45.84.217.0/24 maxlen: 24
45.84.218.0/24 maxlen: 24
45.84.216.0/24 maxlen: 24
193.36.224.0/24 maxlen: 24
193.36.225.0/24 maxlen: 24
45.95.243.0/24 maxlen: 24
193.176.211.0/24 maxlen: 24
45.154.138.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 443170551 (0x1a6a3ef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Feb 16 08:04:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6a1eb8eb1ee8bc583151d33140c07a3e36050bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a0:e1:7a:f8:3c:0f:80:93:68:84:e5:cd:1d:
45:07:38:da:3e:02:c4:8d:b5:f1:bd:0a:06:6c:8a:
72:2f:13:37:e2:b3:d8:71:6a:94:a0:c0:2d:b1:80:
5a:a1:98:4e:af:55:4f:62:23:e6:7c:bd:e3:d8:26:
84:b8:5e:9d:dc:55:5c:62:eb:3b:eb:d6:2e:28:b3:
7e:0e:8d:a7:54:e3:08:d7:d3:af:17:a7:32:f3:43:
24:ac:2b:aa:d3:ee:5f:d0:57:29:21:dc:b9:6d:19:
0b:6f:13:ca:e1:49:fc:03:c7:40:22:d9:2e:7e:13:
04:14:76:fd:40:b2:e6:89:ac:8c:ab:af:c0:7d:5f:
2f:e5:46:9c:94:f1:cb:3a:cc:9f:52:b3:c8:0d:95:
59:f0:b3:2d:3f:06:99:bc:d3:0f:57:63:50:33:5d:
2c:22:75:2f:18:13:4e:31:3a:f1:74:31:50:d9:43:
f2:ff:80:19:13:b1:0a:92:cb:61:23:f8:1f:c3:21:
eb:0d:51:ff:68:74:ee:d8:a2:e6:70:23:a7:01:5e:
dc:03:bb:ae:7a:3d:61:64:16:23:5c:14:76:aa:b4:
c9:1a:09:7e:8d:f7:24:8a:12:47:db:69:86:0d:77:
a3:3d:df:49:c6:90:c4:66:04:0a:b4:6b:f0:38:b9:
bd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:1E:B8:EB:1E:E8:BC:58:31:51:D3:31:40:C0:7A:3E:36:05:0B:B7
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/ah646x7ovFgxUdMxQMB6PjYFC7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.216.0/22
45.86.200.0/24
45.86.202.0/24
45.95.243.0/24
45.154.138.0/24
136.144.17.0/24
136.144.19.0/24
136.144.42.0/24
193.36.224.0/23
193.37.32.0/24
193.176.211.0/24
194.5.48.0/23
194.5.52.0/23
194.34.172.0/23
Signature Algorithm: sha256WithRSAEncryption
12:7a:98:fc:07:ba:ea:1c:a4:ae:4e:5a:95:65:ef:86:50:74:
09:bb:20:98:e4:85:59:27:f9:ae:ab:49:a7:4c:93:ad:12:a9:
dd:6c:14:cd:c9:c4:2e:90:33:17:d8:93:3e:be:fe:70:92:5f:
fd:00:35:d8:30:79:88:78:5a:86:a8:d7:e7:bf:74:0b:20:0d:
62:ee:c8:ae:c5:4c:b7:e1:f0:ae:ed:b4:24:f7:2e:f5:58:96:
92:e4:33:ff:06:01:48:54:14:15:77:b3:2d:4e:a3:95:56:8c:
4d:6c:a0:9f:6a:67:ae:fb:e3:b2:5d:06:84:21:44:99:19:7c:
db:c7:9c:99:e8:e8:97:87:43:c5:4e:20:24:3f:04:07:ba:a7:
57:1e:d5:29:15:95:06:0f:b8:ae:dc:7d:48:8f:3f:5e:4a:22:
ed:1f:cb:57:ad:df:60:94:44:b0:79:b0:a1:f5:7f:b1:77:46:
fd:b0:a4:e9:e3:b7:3f:73:66:bf:1d:9a:08:e8:8a:fe:7a:4d:
d6:56:5e:08:68:fc:f2:52:95:18:96:60:dc:43:8e:9b:70:cd:
82:7e:03:22:2d:c1:e5:87:44:b4:26:cf:2d:9f:8f:1e:b2:8e:
0e:c7:cb:c1:d4:1e:6a:64:d9:84:8b:77:0f:1f:36:a4:4c:9f:
54:c6:a3:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:52 2024 by rpki-client on console-fra.rpki-client.org