Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/IRfEMpFLj8oEaAM_oN9fUfglmWI.roa
File: IRfEMpFLj8oEaAM_oN9fUfglmWI.roa (raw, json)
Hash identifier: 5fz4OkSXFcxFoB2SFrhe/3tnCFkXcBbKF4l6BkN0+AY=
Subject key identifier: 21:17:C4:32:91:4B:8F:CA:04:68:03:3F:A0:DF:5F:51:F8:25:99:62
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 05292488
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/IRfEMpFLj8oEaAM_oN9fUfglmWI.roa
Signing time: Fri 18 Feb 2022 15:30:10 +0000
ROA not before: Fri 18 Feb 2022 15:30:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.246.36.0/23 maxlen: 24
194.246.36.0/24 maxlen: 24
194.247.44.0/23 maxlen: 24
45.143.160.0/22 maxlen: 24
45.149.164.0/22 maxlen: 22
45.149.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86582408 (0x5292488)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Feb 18 15:30:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2117c432914b8fca0468033fa0df5f51f8259962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c3:39:54:aa:6e:45:04:00:9a:72:ce:99:36:
8c:91:cb:91:1e:31:d2:e1:ee:9b:25:15:54:4c:fe:
f4:dc:f4:61:0a:01:be:7c:a1:c8:02:f6:e4:56:d5:
d9:80:f5:b0:8b:d1:55:f5:0a:a5:93:60:25:6d:61:
03:e1:c4:59:c4:68:29:9d:58:5d:4c:8a:e7:55:d7:
6b:c5:98:ed:33:7a:ac:4e:b2:0d:ae:fd:b7:d9:58:
a0:da:66:28:ed:74:91:09:1c:7a:58:6d:2f:57:af:
02:0e:c6:82:8f:e3:6d:a8:0f:90:fe:f1:c8:da:78:
31:f0:c6:92:37:f1:e3:ad:c8:de:12:55:78:6b:62:
59:20:37:79:08:47:53:97:57:e9:6a:1f:b6:1c:81:
bc:6f:11:98:e5:ba:e1:37:20:83:be:9a:62:12:44:
08:a3:19:92:39:20:44:1d:f4:24:3f:78:a0:2a:6a:
e9:e1:17:e2:84:c0:6d:9b:8b:0f:9d:d4:91:b8:e6:
88:ca:2b:06:a7:4e:d8:c6:e8:64:06:3b:90:1b:3a:
7d:8c:6a:11:ea:f9:58:14:0e:7a:e8:fc:3c:cf:39:
6f:b6:e4:31:3b:87:91:4e:dd:9b:e1:56:2c:b3:c9:
ee:28:b6:ca:a8:2e:8c:ac:b1:12:97:a6:ec:97:13:
19:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:17:C4:32:91:4B:8F:CA:04:68:03:3F:A0:DF:5F:51:F8:25:99:62
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/IRfEMpFLj8oEaAM_oN9fUfglmWI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.160.0/22
45.149.164.0/22
194.246.36.0/23
194.247.44.0/23
Signature Algorithm: sha256WithRSAEncryption
8d:9f:8a:06:76:95:82:83:e6:3b:7e:06:84:b0:a6:ae:3c:dc:
f6:f7:73:e4:95:09:d9:45:19:10:11:88:1d:1e:26:a6:08:05:
14:c5:63:85:e5:8f:8c:f9:53:fe:0d:6c:df:22:ab:aa:b4:b9:
9e:65:2a:90:e2:1c:2a:7d:d1:89:c9:5e:d3:31:ad:b8:21:d7:
eb:36:ce:88:a6:6c:b1:b1:01:b1:3b:69:1e:96:ac:07:63:12:
11:95:28:cc:ce:ac:c9:9e:55:b4:bb:62:65:e6:51:7d:5b:ac:
fd:f2:17:3b:f2:bd:22:bf:c1:d4:2c:55:3c:7d:de:0d:3d:de:
17:31:29:2c:9f:0f:ca:f4:e7:a3:70:75:6d:66:48:58:0f:91:
9f:9b:a2:25:f2:53:06:66:c9:9f:c5:df:ac:5a:5a:00:65:0a:
d8:e5:46:e7:33:8e:70:5d:0b:b3:fb:06:97:c0:bf:d3:c5:17:
8e:1f:dc:15:13:a4:45:64:d8:9f:be:08:68:5c:2c:9b:81:07:
cc:39:c3:c9:20:9f:02:d3:30:5a:32:cf:5e:96:38:f8:02:5d:
f7:bc:c9:71:7a:de:4c:d7:be:f2:8e:c0:81:2c:78:3e:8a:b8:
62:eb:7c:07:1e:dc:f5:25:ff:00:1d:6c:59:e3:ab:af:8f:14:
1d:5a:37:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org