Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/cKyiKMwjuNKGIFhRLKoURjwccSw.roa
File: cKyiKMwjuNKGIFhRLKoURjwccSw.roa (raw, json)
Hash identifier: gD3UsOwczNnEvFP7OERncZDqxY4j52r4xPzM4GnbYa8=
Subject key identifier: 70:AC:A2:28:CC:23:B8:D2:86:20:58:51:2C:AA:14:46:3C:1C:71:2C
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0538815B
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/cKyiKMwjuNKGIFhRLKoURjwccSw.roa
Signing time: Sun 27 Feb 2022 07:35:01 +0000
ROA not before: Sun 27 Feb 2022 07:35:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 194.246.37.0/24 maxlen: 24
194.246.36.0/24 maxlen: 24
194.246.36.0/23 maxlen: 24
194.247.44.0/23 maxlen: 24
45.143.160.0/22 maxlen: 24
45.149.164.0/22 maxlen: 22
45.149.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87589211 (0x538815b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Feb 27 07:35:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=70aca228cc23b8d2862058512caa14463c1c712c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:30:a6:59:66:bd:32:d1:97:ad:ce:97:ee:25:
33:d5:a4:f9:91:5e:c8:98:16:6f:ea:00:f1:3b:36:
c4:ed:7c:6f:34:e8:74:ed:03:7a:19:95:fa:c9:81:
7e:31:f1:bd:54:2d:98:aa:eb:b2:70:81:8b:af:2d:
c1:ad:92:49:98:af:be:ea:f3:04:98:c5:aa:72:5c:
9b:58:76:5c:eb:8b:56:26:02:ab:eb:6e:82:d5:e6:
35:17:c9:b3:a5:9c:39:f3:11:b6:b0:37:99:50:64:
a4:d6:f6:96:51:af:8f:0c:9a:2e:dd:f0:57:64:25:
03:67:6f:59:2b:8e:a3:5b:95:c2:29:a0:f7:1f:4e:
68:d1:f2:60:a3:74:14:ea:9e:c2:4b:ae:95:20:aa:
6a:0c:37:5c:eb:a7:7f:8f:fb:1c:80:b8:eb:e5:ac:
9a:cc:e9:7b:ed:58:4e:31:73:0e:e6:f2:46:f2:1b:
a5:30:84:17:56:52:1e:87:00:5f:a4:b4:cb:46:e2:
12:2d:1d:a0:2c:66:ef:85:ea:e1:88:df:9e:bb:67:
1c:92:04:35:7d:b5:54:38:82:34:22:8f:55:2c:4b:
5f:55:5d:00:54:31:f4:35:ba:a6:50:2e:73:91:03:
5a:cc:a8:ba:2a:8a:1d:26:82:ab:d3:ea:94:e4:12:
83:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:AC:A2:28:CC:23:B8:D2:86:20:58:51:2C:AA:14:46:3C:1C:71:2C
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/cKyiKMwjuNKGIFhRLKoURjwccSw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.160.0/22
45.149.164.0/22
194.246.36.0/23
194.247.44.0/23
Signature Algorithm: sha256WithRSAEncryption
59:bc:b9:13:26:4f:fc:19:a8:74:87:19:40:4b:7d:44:42:ee:
ac:2d:54:2c:ec:61:4a:7d:6e:fc:64:ce:43:0f:66:97:90:9e:
2c:52:ca:4b:aa:7b:e9:21:15:2f:e7:ab:2d:43:92:56:ef:c8:
d2:09:c6:6d:9c:f1:ec:a8:90:64:f1:b5:e5:82:24:66:2b:74:
e8:47:a6:4f:80:f4:18:99:f7:a8:73:6f:b8:0f:20:51:9d:ce:
3b:4f:a6:9a:16:cc:c5:65:39:1c:3d:21:4c:95:db:4d:d5:84:
d9:c1:3b:9c:e0:bc:05:7c:88:1f:65:d2:29:6d:c3:2c:bf:b4:
78:4b:80:8b:b4:8f:09:44:2b:56:da:f9:1c:8f:39:9e:a0:90:
bd:b6:6e:3a:6d:5f:65:33:39:4a:06:9e:2a:11:fc:46:c1:5a:
b3:1b:bf:ec:32:5b:47:e2:db:cb:da:3d:5a:c2:52:fb:b6:ee:
17:f3:49:cf:55:77:ec:f9:19:8d:60:9e:a4:bf:ec:ff:88:5a:
ad:c6:88:bc:e1:54:5f:49:ab:73:13:a8:69:c8:ee:99:b1:13:
e2:d7:61:04:2a:f1:24:4a:9d:80:cc:17:26:2e:6b:47:76:58:
64:e9:bb:6d:dc:4f:e7:8b:d1:db:6f:7b:17:82:0f:cf:5a:22:
18:a1:a7:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:53 2023 by rpki-client on console-fra.rpki-client.org