Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/sKegDIpEISP2VopZJgyp4YkqKoQ.roa
File: sKegDIpEISP2VopZJgyp4YkqKoQ.roa (raw, json)
Hash identifier: 571yij1F5Fav+FcQtCL6PzWB9PhHbQpRCadN8KFA+gU=
Subject key identifier: B0:A7:A0:0C:8A:44:21:23:F6:56:8A:59:26:0C:A9:E1:89:2A:2A:84
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 05459D6E
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/sKegDIpEISP2VopZJgyp4YkqKoQ.roa
Signing time: Fri 17 Jun 2022 13:48:45 +0000
ROA not before: Fri 17 Jun 2022 13:48:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206425
IP address blocks: 45.95.201.0/24 maxlen: 24
45.95.200.0/24 maxlen: 24
185.106.92.0/24 maxlen: 24
194.36.177.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88448366 (0x5459d6e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jun 17 13:48:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0a7a00c8a442123f6568a59260ca9e1892a2a84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:3e:c0:65:e4:9c:76:50:64:0d:33:63:e7:ec:
db:b4:d4:6e:7f:9f:cc:e7:42:2a:4c:7f:f9:97:90:
ea:eb:63:2e:86:7c:a0:4f:b0:c9:c5:ae:d8:86:43:
2b:73:b2:46:a0:55:99:b1:00:75:99:5f:d0:0b:69:
e2:72:14:33:95:a4:b9:5f:a4:1f:f2:1a:f8:29:e5:
2b:12:99:db:8c:62:0c:f8:a0:08:db:df:f3:84:ad:
fd:69:d4:66:d8:11:22:05:f4:6b:fc:43:fb:b7:51:
f9:36:97:d0:3c:aa:03:3f:a6:6e:8f:95:1e:ed:76:
65:8a:af:c1:55:28:c5:bc:a1:5b:3c:64:6f:8a:ef:
37:2b:a8:19:0a:a4:50:4c:28:23:3a:17:d6:39:11:
63:2e:ed:be:ac:b8:e0:a1:90:d7:e9:3f:99:24:fa:
54:71:df:26:3c:2d:ce:cb:45:1c:5a:66:a5:b8:2d:
23:f8:a9:cd:be:68:0f:70:9e:19:76:a7:12:5d:90:
64:db:f3:8b:04:49:cd:82:ba:f9:a0:bc:7a:a6:f5:
b7:f3:4b:ff:05:dd:61:fc:b5:07:21:d1:ba:1c:06:
46:87:66:52:ca:af:e9:08:61:6a:58:4c:b5:c8:10:
a1:5f:9c:8e:f5:3d:c0:3d:a8:5f:9f:aa:e6:65:57:
c3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:A7:A0:0C:8A:44:21:23:F6:56:8A:59:26:0C:A9:E1:89:2A:2A:84
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/sKegDIpEISP2VopZJgyp4YkqKoQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.200.0/23
185.106.92.0/24
194.36.177.0/24
Signature Algorithm: sha256WithRSAEncryption
08:3c:28:58:83:1d:8f:d2:e7:10:03:84:57:58:3f:df:f4:37:
3e:25:5e:44:2b:a4:ad:d0:15:d9:d7:dd:1c:30:94:60:26:09:
1e:25:99:d7:51:20:53:db:3d:ff:b2:ba:0a:88:3d:87:97:1a:
24:42:b3:e2:7e:9e:65:64:5f:95:db:d8:80:7b:27:ab:13:1a:
c8:f7:75:e7:03:3c:1d:a0:4b:73:36:8f:c6:bb:c4:6e:a4:99:
da:ea:bd:80:3a:8f:60:8f:43:1d:36:68:4a:6f:d4:39:d0:3e:
20:3a:bf:af:6e:cb:87:14:6e:26:9e:f2:7a:ea:79:7e:e2:a3:
c9:93:90:5e:d9:c6:22:85:6d:3c:be:d9:85:9e:49:55:ff:66:
13:39:e0:be:bc:90:dc:46:4b:a0:ab:ff:ea:ac:eb:c6:f4:72:
ab:06:49:7b:8b:ff:3a:c3:5b:cc:aa:9f:45:73:4a:83:40:4a:
93:76:45:5f:53:9c:19:41:1f:1a:e0:43:cc:60:c0:42:6d:07:
61:ac:cb:4c:c2:65:35:e4:05:90:37:04:29:8b:2e:0c:3c:ae:
af:0f:7b:66:8f:73:07:42:9f:21:e8:f0:3f:2c:48:88:b8:fd:
91:39:d6:2c:a0:66:2b:f4:7c:08:f7:44:19:1b:7b:47:27:64:
a6:90:cb:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org