Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QVbeycLxQL8SJXMnf3F8emRhVj0.roa
File: QVbeycLxQL8SJXMnf3F8emRhVj0.roa (raw, json)
Hash identifier: wNpAwRsNat8KcSNnp9TfOV7ZhkeWMtazH3ZAQz6V/fs=
Subject key identifier: 41:56:DE:C9:C2:F1:40:BF:12:25:73:27:7F:71:7C:7A:64:61:56:3D
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 19067345
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QVbeycLxQL8SJXMnf3F8emRhVj0.roa
Signing time: Sat 05 Mar 2022 23:36:49 +0000
ROA not before: Sat 05 Mar 2022 23:36:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 26636
IP address blocks: 45.12.232.0/24 maxlen: 32
45.82.206.0/23 maxlen: 32
185.182.60.0/24 maxlen: 24
92.119.150.0/23 maxlen: 32
91.188.203.0/24 maxlen: 32
193.187.155.0/24 maxlen: 24
193.187.154.0/24 maxlen: 24
193.187.153.0/24 maxlen: 24
45.14.46.0/24 maxlen: 32
45.10.3.0/24 maxlen: 32
2.59.174.0/23 maxlen: 32
45.10.2.0/24 maxlen: 32
213.232.104.0/24 maxlen: 24
193.160.212.0/24 maxlen: 24
5.181.148.0/23 maxlen: 32
185.226.75.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 419853125 (0x19067345)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Mar 5 23:36:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4156dec9c2f140bf122573277f717c7a6461563d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:19:09:62:3a:0b:f5:6b:77:e7:f5:7c:c0:3b:
9f:5a:30:9c:41:02:31:ce:bd:21:54:15:ea:b0:7b:
fe:38:ce:4c:e9:b0:2c:ae:42:f7:d4:6c:1d:e9:76:
19:cb:72:03:8a:58:2d:b3:03:1d:8f:66:33:a7:99:
16:0d:34:d7:b1:38:72:fd:37:19:f8:0e:ba:5e:6f:
30:e1:f5:fe:cf:bd:ad:16:69:32:8c:75:bf:96:99:
da:af:90:a0:cb:14:29:1a:40:bc:81:1d:90:f7:42:
c3:20:ed:55:95:24:54:05:d3:4c:fa:c9:50:68:29:
b4:04:d4:99:5d:8e:ce:0d:f4:c1:b2:25:92:55:57:
4d:14:ae:f3:46:5c:31:12:34:48:c7:67:7d:82:39:
16:fb:09:0b:de:ca:f2:a1:2d:ee:36:ec:18:8e:6d:
9e:e3:af:60:3a:e4:5c:2b:76:d5:7b:51:e4:44:95:
7b:c7:44:16:82:a0:b7:29:07:e7:21:d7:38:97:21:
45:a1:68:b2:48:93:e3:bd:d8:44:ff:66:c3:bd:4f:
1c:1b:42:7e:37:bf:12:40:b7:57:11:41:f9:25:49:
ef:88:e1:3b:ac:05:bd:f9:76:b2:4a:f0:ee:a1:ee:
7d:7c:56:b3:33:c2:16:91:67:3b:d0:56:46:ff:29:
0d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:56:DE:C9:C2:F1:40:BF:12:25:73:27:7F:71:7C:7A:64:61:56:3D
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/QVbeycLxQL8SJXMnf3F8emRhVj0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.174.0/23
5.181.148.0/23
45.10.2.0/23
45.12.232.0/24
45.14.46.0/24
45.82.206.0/23
91.188.203.0/24
92.119.150.0/23
185.182.60.0/24
185.226.75.0/24
193.160.212.0/24
193.187.153.0-193.187.155.255
213.232.104.0/24
Signature Algorithm: sha256WithRSAEncryption
ce:b9:ae:06:25:d1:c0:28:f1:b4:6e:ce:30:a5:96:6c:e0:db:
a1:10:27:5c:c9:bb:d3:4c:d6:b1:96:1b:75:9f:58:8c:91:c6:
a0:59:26:47:6e:01:44:fc:3b:31:78:a2:3c:0c:87:f2:8b:cc:
b8:11:6a:59:33:7f:a4:63:30:6b:97:63:7c:05:13:f1:82:25:
59:90:45:07:3e:6e:ad:c6:50:e2:c8:77:d5:fd:36:ae:e2:69:
fd:46:84:36:53:f3:9f:28:83:09:8b:81:61:ed:de:9f:5b:64:
b9:77:12:45:f7:8e:e8:d6:c8:5a:e7:a7:94:8b:e7:2e:2d:5f:
89:1e:ca:10:29:97:c3:6a:48:cd:e4:67:91:5b:74:a2:32:7e:
62:59:04:e6:dd:82:48:79:f6:d3:81:5e:b8:ba:13:80:ff:1c:
8b:17:42:59:9e:ea:26:8a:f0:2b:8a:fb:ee:a4:6a:1d:25:34:
c3:c0:45:3f:2f:8a:db:53:d7:88:96:0a:96:bf:5a:a5:04:2a:
dc:61:09:af:81:43:be:08:d0:04:7c:e8:84:40:a4:22:ad:5a:
50:59:47:29:37:73:d4:04:45:39:96:19:2b:60:8b:8c:19:9c:
ce:25:53:4e:e7:5a:8c:9a:ac:1a:40:a6:9d:b4:a7:16:09:c5:
70:21:1c:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:45 2024 by rpki-client on console-fra.rpki-client.org