Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4M92q8DuFSGY4yQUVmpui_uEY-M.roa
File: 4M92q8DuFSGY4yQUVmpui_uEY-M.roa (raw, json)
Hash identifier: UsfV5xJmVjHmIaaAybWVZ5AZPbePVPo+H4aavF4sWvg=
Subject key identifier: E0:CF:76:AB:C0:EE:15:21:98:E3:24:14:56:6A:6E:8B:FB:84:63:E3
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19537FDB
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4M92q8DuFSGY4yQUVmpui_uEY-M.roa
Signing time: Mon 28 Mar 2022 21:36:33 +0000
ROA not before: Mon 28 Mar 2022 21:36:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 46261
IP address blocks: 5.183.204.0/23 maxlen: 32
45.12.232.0/24 maxlen: 32
45.82.206.0/23 maxlen: 32
185.182.60.0/24 maxlen: 32
45.15.38.0/23 maxlen: 32
92.119.151.0/24 maxlen: 32
193.187.153.0/24 maxlen: 32
193.187.154.0/23 maxlen: 32
45.14.46.0/24 maxlen: 32
45.138.210.0/23 maxlen: 24
45.10.3.0/24 maxlen: 32
45.10.2.0/24 maxlen: 32
193.160.212.0/24 maxlen: 32
213.232.104.0/24 maxlen: 32
5.181.148.0/23 maxlen: 32
45.67.16.0/23 maxlen: 32
185.226.75.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 424902619 (0x19537fdb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 28 21:36:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0cf76abc0ee152198e32414566a6e8bfb8463e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5c:c0:4c:41:31:24:c0:b8:c2:96:a1:02:d4:
cc:33:fa:e6:c4:65:b9:b0:fb:84:35:45:07:ff:b5:
26:c1:e6:bc:4e:cd:4a:8e:ab:0c:69:ef:10:cb:04:
dc:2d:a5:b1:96:fe:8e:e6:b3:c3:a9:00:b8:9e:c8:
d5:13:d2:a9:99:6e:f8:f2:86:6e:b4:bc:e5:7e:11:
2d:10:06:f5:66:09:75:aa:19:d1:57:5a:3e:3e:80:
5f:fc:e9:cf:da:64:94:f7:82:98:c6:9a:b0:c7:c6:
51:68:45:5e:00:64:a4:08:9b:d6:61:e1:9f:89:7e:
9a:4a:01:05:07:3f:4d:d4:4a:b0:90:ae:cb:da:93:
b8:6c:5c:ea:71:41:6c:07:2b:be:95:ae:60:72:cb:
97:ae:99:25:15:75:aa:9e:df:42:ba:dc:20:d6:e7:
d0:2e:78:30:30:32:03:7f:89:6e:eb:a4:84:cc:06:
52:3d:a2:3b:be:6d:b8:48:0f:0f:f8:13:12:f7:d2:
25:c2:a1:b6:23:28:5b:5c:ed:32:05:2c:57:9a:78:
1c:8f:11:8c:d5:f2:bd:80:95:4a:3e:35:92:c9:2c:
71:0d:3f:20:42:b6:47:0e:8d:3b:49:04:cd:42:90:
61:2b:17:3d:db:fe:33:c0:1a:14:54:21:9a:b1:73:
e0:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:CF:76:AB:C0:EE:15:21:98:E3:24:14:56:6A:6E:8B:FB:84:63:E3
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/4M92q8DuFSGY4yQUVmpui_uEY-M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.181.148.0/23
5.183.204.0/23
45.10.2.0/23
45.12.232.0/24
45.14.46.0/24
45.15.38.0/23
45.67.16.0/23
45.82.206.0/23
45.138.210.0/23
92.119.151.0/24
185.182.60.0/24
185.226.75.0/24
193.160.212.0/24
193.187.153.0-193.187.155.255
213.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
61:8f:f8:f7:97:00:2e:24:37:21:31:3b:99:bf:cb:4e:75:1d:
f2:bc:b6:28:59:4a:7a:bf:e3:3a:a6:f9:3d:58:42:c0:2d:02:
a0:9d:35:49:14:d1:f9:a6:94:b6:e2:c8:43:89:6b:f1:b2:df:
54:ee:1a:32:89:52:66:aa:21:e7:c5:95:f7:71:61:51:ab:75:
f7:49:29:24:41:9d:45:86:bf:26:7e:98:db:6c:2f:0c:2c:9d:
92:64:f6:13:7c:2d:f0:d7:04:b3:72:c5:08:eb:5c:6f:eb:91:
89:f1:0b:a3:ae:d1:c7:5b:71:6e:c7:b5:07:25:f2:04:78:53:
ed:f9:e8:1f:9e:6b:3a:55:d5:e8:bf:a6:08:3c:7c:97:a5:51:
42:81:5c:57:bf:25:90:f1:29:73:b9:bb:54:97:c2:bc:b3:70:
03:21:b2:5a:61:5d:09:2d:e1:50:e0:d5:f0:82:11:44:be:ec:
5b:6a:75:29:dc:53:de:88:61:08:b0:63:1f:4b:ce:d7:ef:86:
d5:d0:c3:3d:2b:c6:a0:90:48:4f:86:b7:b0:a7:b9:11:8e:59:
5f:35:e8:90:5b:de:e3:d2:87:8c:a3:96:ed:c8:c9:18:12:82:
cf:77:e4:73:d3:70:81:12:d6:7f:6f:33:20:27:9c:17:c7:b5:
19:59:27:71
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:09 2023 by rpki-client on console-ams.rpki-client.org