Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1a5egbjm84nIUT94AnQAwyegYVI.roa
File: 1a5egbjm84nIUT94AnQAwyegYVI.roa (raw, json)
Hash identifier: x5cPBARwxbofOfjS4Nlc9ZMuWHAIILC+FB/TtA5RnoM=
Subject key identifier: D5:AE:5E:81:B8:E6:F3:89:C8:51:3F:78:02:74:00:C3:27:A0:61:52
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 04BAEC7F
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1a5egbjm84nIUT94AnQAwyegYVI.roa
Signing time: Tue 26 Apr 2022 10:57:07 +0000
ROA not before: Tue 26 Apr 2022 10:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 185.174.136.0/24 maxlen: 24
185.229.66.0/24 maxlen: 24
185.106.94.0/24 maxlen: 24
185.112.83.0/24 maxlen: 24
45.142.122.0/24 maxlen: 24
185.17.0.0/24 maxlen: 24
2a0e:d606::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79359103 (0x4baec7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Apr 26 10:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5ae5e81b8e6f389c8513f78027400c327a06152
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:f8:cf:0e:de:98:e1:1e:33:a6:d4:7a:f7:52:
be:56:63:7a:fc:1f:0b:74:14:d6:23:81:65:05:23:
6c:d2:2e:ae:ee:11:4d:02:c2:94:b4:ec:86:53:3f:
ac:58:51:8d:dc:86:79:2e:07:fd:ec:1f:ee:71:1e:
c7:50:a4:97:11:16:33:0e:d5:36:f1:0d:8c:71:b1:
41:8f:e4:78:d1:01:18:a2:c2:ef:72:dc:b9:16:e5:
b6:3b:c8:4c:9c:10:ed:d6:0d:5a:33:4d:dd:a7:b8:
d4:fe:f0:9d:cb:37:fb:38:db:fb:5d:95:88:2c:35:
f1:f7:0b:c9:d7:34:83:45:d7:52:ae:08:4c:4d:e0:
ff:8a:fd:eb:68:d1:df:82:7d:d9:23:a4:26:ce:60:
4b:14:a7:3c:98:12:d5:52:9f:fe:e5:15:0c:7f:fd:
a4:53:87:65:08:f5:bf:68:1f:58:c0:f0:73:0a:80:
99:0f:22:22:91:e8:6a:ce:d3:dd:49:20:db:12:10:
c4:24:c0:d1:13:65:00:b9:26:fc:4d:05:ec:05:dc:
58:b8:30:89:47:87:0a:8a:77:2f:c8:f0:e2:c8:3f:
25:fd:22:d0:8d:30:1e:19:cd:f2:51:f6:ae:f7:41:
ec:b6:50:79:a7:c0:91:ef:84:2a:54:ab:8d:9d:08:
6b:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:AE:5E:81:B8:E6:F3:89:C8:51:3F:78:02:74:00:C3:27:A0:61:52
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/1a5egbjm84nIUT94AnQAwyegYVI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.122.0/24
185.17.0.0/24
185.106.94.0/24
185.112.83.0/24
185.174.136.0/24
185.229.66.0/24
IPv6:
2a0e:d606::/48
Signature Algorithm: sha256WithRSAEncryption
1c:76:11:66:6f:bd:a0:94:c7:d3:06:80:19:7c:f8:81:74:62:
ae:97:2f:80:49:29:99:d2:0c:91:25:75:cf:0e:e0:04:97:c7:
a6:f2:d3:4b:68:45:45:c7:b7:6e:43:b2:c0:67:8d:73:ff:5b:
8b:2f:d4:ed:b7:53:0f:f8:9a:4a:90:46:d7:2a:4c:33:eb:50:
94:47:b4:e5:69:ed:e0:5d:a2:70:33:ea:b3:62:65:9c:2f:cb:
cc:fe:28:cc:d7:ed:97:2d:86:aa:f6:21:f5:13:f1:d9:cb:b8:
58:0a:4d:cc:55:c3:f0:82:ca:a9:eb:0d:92:c0:65:6c:d2:e5:
6b:af:67:0e:dd:92:ba:05:7a:1c:5b:96:97:af:33:6a:c9:e3:
37:05:70:20:53:e8:33:02:7f:b9:a2:ed:38:5f:eb:59:eb:cd:
d8:b7:61:81:83:04:a4:db:78:d8:a7:ff:3d:f9:f4:33:cd:d2:
68:cb:92:62:51:b2:b2:d6:2f:70:21:d7:47:77:0d:e4:c4:29:
cd:b7:a9:ad:7b:9d:02:37:3c:0d:ca:c2:99:cc:38:e0:8e:75:
ab:7c:61:28:2a:ae:8d:fe:54:d2:4d:f9:00:a8:06:a3:a7:08:
97:02:d0:27:a6:93:bb:cc:42:68:74:e7:57:1f:ad:1b:0a:f0:
e2:1b:9d:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org