Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RYuNJ4ec7dWdNCRKlJJPEz-winM.roa
File: RYuNJ4ec7dWdNCRKlJJPEz-winM.roa (raw, json)
Hash identifier: yLZQa2phEsc2es8DaUcyn7+jM4dNE2/E8fUlTrhTS8g=
Subject key identifier: 45:8B:8D:27:87:9C:ED:D5:9D:34:24:4A:94:92:4F:13:3F:B0:8A:73
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03B51992
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RYuNJ4ec7dWdNCRKlJJPEz-winM.roa
Signing time: Sat 14 May 2022 09:35:41 +0000
ROA not before: Sat 14 May 2022 09:35:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 197077
IP address blocks: 176.98.212.0/22 maxlen: 24
185.137.140.0/22 maxlen: 24
45.13.200.0/23 maxlen: 23
45.13.200.0/22 maxlen: 22
45.13.202.0/23 maxlen: 23
217.198.192.0/20 maxlen: 24
91.220.70.0/24 maxlen: 24
2a04:a450::/31 maxlen: 31
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62200210 (0x3b51992)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: May 14 09:35:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=458b8d27879cedd59d34244a94924f133fb08a73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:e1:6e:21:98:67:17:a3:74:fd:1f:5d:57:ff:
50:a2:8f:ba:14:69:fa:34:97:de:40:8b:15:f5:23:
df:e5:1a:be:c9:2a:ac:66:6a:95:31:4d:03:15:02:
28:d3:27:17:8f:47:ef:a7:3a:d8:f7:de:cf:49:d3:
74:f9:33:a8:22:4d:e2:9b:f2:4b:bd:2d:bb:b6:cd:
bb:5c:f8:97:0f:28:ca:7d:f1:fb:45:bf:dc:06:a0:
87:58:16:8b:d7:60:d6:06:b5:9c:63:58:11:58:58:
1a:2c:e4:60:09:c1:26:fc:6d:06:38:89:27:47:43:
da:6b:fa:5c:a4:0a:9e:95:76:df:4c:90:af:e2:5e:
7b:ae:43:5f:17:d4:be:a1:fb:45:30:d5:2c:27:11:
94:bd:58:cb:d9:f0:3c:07:ca:87:86:2a:b1:79:3f:
b9:38:c9:b4:77:a3:54:b9:37:9a:cb:85:6f:83:8e:
56:80:e6:18:2d:a1:8b:22:46:dd:97:da:8d:b5:b1:
59:00:63:1a:ff:dc:1b:a1:5f:98:0c:ec:9e:79:0d:
0a:6e:64:0f:3e:1f:3e:c1:42:15:d7:18:f7:6b:f1:
c1:23:01:1b:c3:f7:77:4c:bd:f4:59:f2:9d:5e:94:
f4:3c:82:4e:73:60:da:5b:d0:4d:e4:37:c4:45:79:
78:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:8B:8D:27:87:9C:ED:D5:9D:34:24:4A:94:92:4F:13:3F:B0:8A:73
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/RYuNJ4ec7dWdNCRKlJJPEz-winM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.200.0/22
91.220.70.0/24
176.98.212.0/22
185.137.140.0/22
217.198.192.0/20
IPv6:
2a04:a450::/31
Signature Algorithm: sha256WithRSAEncryption
06:66:19:34:32:6e:41:f5:7d:0a:ca:f6:0e:79:b4:67:5a:54:
b8:9d:62:08:30:21:d4:54:49:c4:99:e0:75:0c:b2:14:4c:f2:
aa:6f:a7:7a:9d:28:5c:22:ff:25:79:e1:b8:af:93:f6:69:5c:
24:65:5d:09:2d:9b:ae:75:13:f7:00:8d:92:7d:df:4d:68:dc:
9a:94:57:2b:1d:29:06:4f:02:84:2e:0e:89:27:ad:be:1f:2f:
c0:c9:74:c4:f9:15:d7:a5:90:01:da:a5:7e:b3:00:b9:1f:db:
7f:8c:ac:ef:d3:13:c5:be:00:cf:37:d0:02:d0:41:e3:12:50:
c7:b5:08:4a:ae:d3:87:fa:3e:00:06:ba:8c:e1:7c:78:04:c7:
de:3d:87:70:16:7e:92:66:93:15:47:89:b2:62:8d:56:d0:0d:
e3:97:f8:39:c6:e2:d7:8c:1b:ed:42:17:b5:ab:80:98:9d:50:
e1:39:60:85:26:43:c1:2e:b1:90:c8:a5:73:ba:65:15:d0:76:
e0:01:8d:3c:f1:b1:f5:1f:12:4c:c0:30:88:61:0f:d0:83:c6:
5c:7a:3d:01:bf:ef:a6:43:74:3a:36:0b:40:3c:a2:c7:4b:1e:
56:ce:6c:99:63:d1:3a:2f:43:f7:48:2c:2b:f8:b0:64:d5:b1:
ec:9d:50:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:50 2024 by rpki-client on console-ams.rpki-client.org