Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/OsTTGW3TW9KMaSOXEGvkCWLupmY.roa
File: OsTTGW3TW9KMaSOXEGvkCWLupmY.roa (raw, json)
Hash identifier: nwK6gg9TrJBttgDNCW3V1+Jz//pPwWDMAiSdcM3yP/0=
Subject key identifier: 3A:C4:D3:19:6D:D3:5B:D2:8C:69:23:97:10:6B:E4:09:62:EE:A6:66
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 01825CF47E5AF638B6723102CDA31775FDE8
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/OsTTGW3TW9KMaSOXEGvkCWLupmY.roa
Signing time: Tue 02 Aug 2022 05:08:23 +0000
ROA not before: Tue 02 Aug 2022 05:08:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 171.22.248.0/23 maxlen: 23
171.22.251.0/24 maxlen: 24
171.22.250.0/24 maxlen: 24
45.146.206.0/23 maxlen: 23
45.146.204.0/23 maxlen: 23
45.135.16.0/23 maxlen: 23
45.82.223.0/24 maxlen: 24
45.135.18.0/23 maxlen: 24
85.208.32.0/23 maxlen: 23
85.208.34.0/23 maxlen: 23
5.183.94.0/24 maxlen: 24
185.244.8.0/23 maxlen: 23
185.244.10.0/24 maxlen: 24
185.244.11.0/24 maxlen: 24
193.42.226.0/23 maxlen: 23
194.116.250.0/23 maxlen: 23
193.42.224.0/23 maxlen: 23
194.116.248.0/23 maxlen: 23
2.58.12.0/23 maxlen: 24
194.5.226.0/23 maxlen: 24
194.5.224.0/23 maxlen: 24
45.89.210.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5c:f4:7e:5a:f6:38:b6:72:31:02:cd:a3:17:75:fd:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Aug 2 05:08:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3ac4d3196dd35bd28c692397106be40962eea666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:ce:8c:35:13:77:ca:b5:ca:e7:53:5e:9c:81:
db:0d:2a:ac:dc:db:2e:89:5c:59:ed:90:76:42:73:
45:db:5d:2b:1f:d8:39:ba:57:88:da:91:f5:57:74:
40:83:05:55:09:12:1c:2d:2a:3f:69:d6:6d:84:f4:
4c:62:ed:92:fb:c5:f6:23:5d:08:c4:ef:de:f1:56:
dc:6e:1c:d7:45:74:67:ba:ae:e1:62:3a:1a:63:c1:
13:5a:38:ef:5f:a6:68:eb:b7:1c:15:02:a5:30:4d:
9c:90:f6:7f:eb:f1:34:17:43:0b:ab:c4:b9:e6:67:
cd:bb:c6:fc:16:7a:67:55:4b:33:5a:24:2b:0b:17:
68:86:34:46:e4:7c:85:b3:95:6c:22:a8:4e:30:b4:
de:e1:0a:3c:4d:a0:da:43:da:8b:38:d0:13:d8:f3:
5b:20:a1:b8:9e:fb:40:1f:37:ea:34:cc:df:8e:ff:
12:f2:2b:59:97:c7:0f:7e:e3:a8:a6:56:37:0e:3b:
cf:8b:93:7e:df:53:58:05:2d:22:bd:78:f5:4e:72:
03:46:54:66:93:5b:b1:ca:be:05:5c:a1:0f:ae:30:
e5:f3:4b:e4:8d:2d:d7:ce:d9:27:a7:96:72:0e:fa:
92:1d:7a:bc:c9:c1:c7:62:8d:bc:e3:9d:e7:e8:c5:
21:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:C4:D3:19:6D:D3:5B:D2:8C:69:23:97:10:6B:E4:09:62:EE:A6:66
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/OsTTGW3TW9KMaSOXEGvkCWLupmY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.12.0/23
5.183.94.0/24
45.82.223.0/24
45.89.210.0/23
45.135.16.0/22
45.146.204.0/22
85.208.32.0/22
171.22.248.0/22
185.244.8.0/22
193.42.224.0/22
194.5.224.0/22
194.116.248.0/22
Signature Algorithm: sha256WithRSAEncryption
b0:f3:8d:8c:46:9c:ee:75:3d:d6:39:0c:20:b5:63:71:42:91:
d5:00:66:58:4f:a4:6e:b3:d4:a4:be:6b:0e:35:50:84:3a:2e:
c0:c0:4c:2a:66:c4:4e:2f:db:9a:f5:ad:f4:62:1b:f3:03:21:
0f:c0:80:3e:c6:99:38:e6:37:67:72:d3:c4:0d:7a:e6:24:3c:
b1:d3:f2:54:e2:13:cc:2b:66:c0:4c:4f:29:a6:ec:d4:d0:d0:
0f:22:76:03:e6:bd:63:c3:fb:48:7b:85:d2:92:d8:1e:3e:ab:
95:78:1d:f7:05:da:e7:8f:b8:eb:32:b1:f6:77:79:25:56:db:
76:cf:0e:5b:17:52:6f:dd:11:02:4c:cf:c8:d9:36:6f:75:ad:
37:0b:b8:83:ee:43:92:f2:18:ea:a6:4d:e7:9a:0f:1d:ca:00:
a1:d6:37:ff:f3:93:13:8c:f1:01:a9:e8:9f:5e:11:53:95:d5:
49:70:e3:60:db:d1:78:7f:a2:c4:95:8d:19:b0:9e:7e:fd:ac:
d2:45:95:23:80:64:85:14:29:cb:74:87:9b:1b:cf:ee:04:37:
94:e9:4a:fb:6c:09:6b:80:e8:c7:cd:99:71:02:0a:7a:7b:33:
8f:1c:36:a7:01:86:c4:21:15:e5:91:b4:f2:39:c8:a7:1c:21:
77:9b:0a:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:36 2024 by rpki-client on console-ams.rpki-client.org