Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/N5g-hpM-yvkPe-0LVEUDCqIGzFc.roa
File: N5g-hpM-yvkPe-0LVEUDCqIGzFc.roa (raw, json)
Hash identifier: PKF50FQnh43UJW8H8+q9kJCA3/vNl9UBBldU2RTuW1c=
Subject key identifier: 37:98:3E:86:93:3E:CA:F9:0F:7B:ED:0B:54:45:03:0A:A2:06:CC:57
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0181CF76A886C3FF32699141092885378D72
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/N5g-hpM-yvkPe-0LVEUDCqIGzFc.roa
Signing time: Tue 05 Jul 2022 17:44:28 +0000
ROA not before: Tue 05 Jul 2022 17:44:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60945
IP address blocks: 185.133.73.0/24 maxlen: 24
45.85.194.0/24 maxlen: 24
194.156.159.0/24 maxlen: 24
185.137.181.0/24 maxlen: 32
2a06:7a03::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cf:76:a8:86:c3:ff:32:69:91:41:09:28:85:37:8d:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jul 5 17:44:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=37983e86933ecaf90f7bed0b5445030aa206cc57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:71:5b:72:1d:28:8a:ce:17:4a:d5:2e:5a:2d:
20:18:08:36:47:ae:b0:e1:bf:ef:06:82:f9:07:3a:
01:de:e2:73:89:22:40:1b:cc:17:12:e5:a1:b9:b0:
4a:7e:ec:24:a7:96:d5:f6:51:d9:18:55:7e:d0:86:
5a:f2:73:01:d4:a8:e4:1f:55:86:90:9b:5f:18:17:
79:f2:ee:40:64:84:2c:60:f5:7c:96:1f:82:f1:bc:
44:99:92:4e:92:15:59:f1:a8:18:22:c6:94:e9:73:
3d:3a:6a:97:bd:dc:9d:8a:b3:a7:4c:fd:88:12:9f:
14:35:16:25:74:d4:d4:5d:f6:94:89:af:52:06:cc:
d8:7c:57:c2:d1:ee:3e:e4:26:28:47:8e:9c:40:ec:
f4:1c:e5:b4:2e:4d:48:62:c7:fe:68:bf:a2:35:f4:
3d:11:e5:7c:28:06:a0:1d:72:e7:38:a4:74:c0:e2:
18:6a:08:fe:ae:ee:05:af:6f:e8:f0:e6:c3:09:04:
a0:28:92:8e:50:10:75:98:03:05:9f:65:b3:49:6b:
e5:bd:74:cb:9d:70:4e:e8:3a:a5:06:be:19:8c:5a:
fb:d2:6d:69:20:88:d9:85:eb:88:65:44:96:fe:06:
e2:f9:75:13:61:73:f8:66:35:7a:9f:49:81:49:0f:
17:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:98:3E:86:93:3E:CA:F9:0F:7B:ED:0B:54:45:03:0A:A2:06:CC:57
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/N5g-hpM-yvkPe-0LVEUDCqIGzFc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.194.0/24
185.133.73.0/24
185.137.181.0/24
194.156.159.0/24
IPv6:
2a06:7a03::/48
Signature Algorithm: sha256WithRSAEncryption
b9:75:23:d1:4b:ee:10:62:6a:6d:2f:53:1e:a4:b4:cb:13:63:
5f:a9:1d:e1:c2:14:39:87:49:99:0b:64:e3:31:6f:0d:cf:1f:
88:98:79:79:b8:49:94:cd:2f:1f:f4:11:5d:06:41:8f:ea:17:
de:74:4f:31:54:80:56:de:9b:b7:aa:a5:af:2d:7b:83:88:26:
2d:e1:1c:c5:e1:73:2e:e7:0c:d9:1b:2f:09:5c:82:c3:5f:f0:
52:c1:0f:f6:84:47:ff:d8:42:98:df:7b:2f:17:a1:c9:f0:75:
ea:7e:28:87:1b:9b:6c:51:ba:f3:27:35:57:41:ed:97:02:dc:
da:70:a5:c3:b3:00:94:1a:6b:4b:ae:4f:30:7d:ce:ec:0b:cb:
2f:2f:a3:68:bf:1b:4a:45:76:76:99:c5:e1:b0:c1:a3:d6:c5:
aa:ae:9b:44:9f:d1:0d:93:9d:a5:7c:2d:6e:2d:8c:b5:83:c3:
07:3e:07:e3:d3:42:34:f0:5c:3f:8c:a1:f0:10:c6:9a:07:3a:
66:a2:46:06:3c:97:61:5e:95:a2:8c:90:3a:ea:ad:ed:8c:d8:
dd:e0:47:f2:59:94:00:b2:6d:b9:fb:3a:90:0a:50:26:9b:26:
a0:a7:34:25:07:cd:26:15:72:37:af:27:bc:4d:dd:ea:a5:24:
a4:23:8a:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org