Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/3v9WtS6u98V_Tes8vS2-ikZYMOk.roa
File: 3v9WtS6u98V_Tes8vS2-ikZYMOk.roa (raw, json)
Hash identifier: J5i0odtkBJ4urqRE8h7XSDkPwnfpOTkCLlgpO/sWCgE=
Subject key identifier: DE:FF:56:B5:2E:AE:F7:C5:7F:4D:EB:3C:BD:2D:BE:8A:46:58:30:E9
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 041CE854
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/3v9WtS6u98V_Tes8vS2-ikZYMOk.roa
Signing time: Mon 14 Mar 2022 16:47:50 +0000
ROA not before: Mon 14 Mar 2022 16:47:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 28753
IP address blocks: 185.172.130.0/24 maxlen: 24
185.172.131.0/24 maxlen: 24
185.94.166.0/24 maxlen: 24
45.138.72.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69003348 (0x41ce854)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Mar 14 16:47:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=deff56b52eaef7c57f4deb3cbd2dbe8a465830e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:37:27:85:35:4a:e9:bf:bf:24:71:bc:98:e7:
8e:6c:19:ab:31:4c:bd:31:c1:3a:6f:d1:6a:34:20:
38:a8:ed:f6:41:cf:c6:a1:a6:b2:83:6d:00:d5:2b:
c7:8b:61:f1:2c:95:b8:9f:ca:57:fa:ff:7f:a1:96:
21:4c:4e:f6:6c:cb:7f:ba:d8:e5:98:6e:75:e8:45:
ab:0f:de:4e:c3:79:24:38:c6:69:89:94:27:75:b5:
4b:e0:0e:54:c2:01:38:23:15:2d:10:b5:a5:76:17:
80:44:3d:20:ca:a3:60:36:1b:72:d9:e8:9a:61:f4:
b0:99:20:8b:80:58:50:69:68:cb:31:1a:ed:15:ed:
5d:9b:8d:79:c3:63:2b:09:b1:c1:c6:47:e5:af:62:
1e:7f:9a:cd:c3:e8:47:9d:f0:1b:9e:94:6d:7c:ff:
ea:1a:7c:66:d2:7e:eb:eb:05:a2:37:73:53:18:14:
2c:65:f1:8f:57:08:a2:08:22:eb:dc:60:ee:9b:f7:
2c:03:68:2d:fe:d3:58:2d:d9:05:78:cb:35:25:16:
0f:e7:b3:b1:52:ca:f7:4f:d9:66:f6:66:46:c5:01:
25:f1:06:3e:a8:cf:72:a4:71:cb:41:19:bc:ab:75:
8a:15:a1:8b:7f:df:4a:df:00:73:47:db:f7:32:13:
3b:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:FF:56:B5:2E:AE:F7:C5:7F:4D:EB:3C:BD:2D:BE:8A:46:58:30:E9
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/3v9WtS6u98V_Tes8vS2-ikZYMOk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.72.0/24
185.94.166.0/24
185.172.130.0/23
Signature Algorithm: sha256WithRSAEncryption
94:bc:38:53:a5:f6:59:0e:2d:42:8a:17:a5:15:ff:a7:b6:46:
20:83:76:7e:1e:e8:52:5c:8b:c4:05:da:f9:56:a1:f6:21:97:
35:80:0c:94:46:ac:24:8d:b1:2b:68:c3:4e:c8:9b:d4:53:f7:
aa:e9:82:e4:d7:2a:5b:b4:ab:48:cb:62:3a:3d:32:8d:5e:ae:
cc:41:f7:60:f2:25:47:da:74:3b:b3:85:3b:7b:cb:a6:b5:b5:
22:7f:ee:5b:51:82:18:57:26:18:ed:1a:db:a1:6d:2a:ae:09:
8e:63:84:99:64:7a:85:cb:08:62:94:07:58:08:7c:a4:4c:b1:
5a:5b:b9:7f:53:34:5a:2b:66:63:c7:7a:da:d8:48:44:b3:05:
13:7d:68:d8:b6:f8:95:bb:2c:1b:19:7b:e1:8c:5f:ee:de:00:
56:82:03:ac:70:23:d5:76:c9:48:30:38:aa:a6:18:04:e7:c6:
95:de:76:6e:98:b5:bd:1c:e9:43:fc:ac:42:bd:b4:4d:42:79:
94:f9:3c:02:b9:77:5c:4a:0e:be:4c:19:ae:4b:df:11:2b:c2:
5c:e2:69:e5:8c:0e:c2:d1:46:fd:b2:62:9f:82:78:80:c7:75:
df:61:14:12:ac:ff:32:96:33:a9:40:ec:94:49:cc:52:cf:28:
56:05:4e:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:07 2024 by rpki-client on console-fra.rpki-client.org