Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/VJpUqSXtIwi5Jhosg6Uf2PxXPCQ.roa
File: VJpUqSXtIwi5Jhosg6Uf2PxXPCQ.roa (raw, json)
Hash identifier: DaQx0Ojzi08GzOSjsDpkHGXKPgR95C5pziDu+mB0dr8=
Subject key identifier: 54:9A:54:A9:25:ED:23:08:B9:26:1A:2C:83:A5:1F:D8:FC:57:3C:24
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 01821D6EE655BEED48CE6A3EB381DF9E2892
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/VJpUqSXtIwi5Jhosg6Uf2PxXPCQ.roa
Signing time: Wed 20 Jul 2022 21:06:23 +0000
ROA not before: Wed 20 Jul 2022 21:06:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203020
IP address blocks: 171.22.248.0/23 maxlen: 23
171.22.251.0/24 maxlen: 24
171.22.250.0/24 maxlen: 24
45.146.206.0/23 maxlen: 23
45.146.204.0/23 maxlen: 23
45.135.16.0/23 maxlen: 23
45.82.223.0/24 maxlen: 24
45.135.18.0/23 maxlen: 23
85.208.32.0/23 maxlen: 23
85.208.34.0/23 maxlen: 23
5.183.94.0/24 maxlen: 24
185.244.8.0/23 maxlen: 23
185.244.10.0/24 maxlen: 24
185.244.11.0/24 maxlen: 24
193.42.226.0/23 maxlen: 23
194.116.250.0/23 maxlen: 23
193.42.224.0/23 maxlen: 23
194.116.248.0/23 maxlen: 23
2.58.12.0/23 maxlen: 23
194.5.226.0/23 maxlen: 24
194.5.224.0/23 maxlen: 24
45.89.210.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1d:6e:e6:55:be:ed:48:ce:6a:3e:b3:81:df:9e:28:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jul 20 21:06:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=549a54a925ed2308b9261a2c83a51fd8fc573c24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b8:ae:e4:84:53:d5:00:ad:71:13:eb:50:96:
ac:44:cd:dc:7b:81:d9:e6:bd:2a:db:05:b7:01:5f:
77:36:40:21:52:b7:1c:cc:c5:b3:1f:c1:c1:04:3d:
db:13:bb:01:27:34:0c:f3:38:d0:fe:9a:20:48:16:
1a:06:24:88:b8:54:ab:fb:dc:c6:66:9d:ec:b2:4f:
fd:d3:53:ee:16:15:04:c9:c1:3d:d0:ae:46:c5:4b:
14:23:f8:ad:23:6d:d9:2d:e5:21:3a:cc:19:0d:b0:
b4:e5:e4:59:27:25:c4:07:83:4e:41:86:44:6e:bb:
2a:35:8f:a6:48:ac:e2:18:13:b2:97:db:d4:8c:ce:
b3:23:bd:4d:01:11:17:a7:21:38:42:12:a2:68:ac:
bc:d6:34:96:2c:b7:06:5d:9e:8a:30:7e:4f:50:ca:
17:14:60:c5:d3:f2:a8:0e:7f:be:fb:32:43:54:ad:
fd:08:69:77:ad:fb:fc:ba:f6:ff:2c:7a:63:5d:36:
66:79:4c:13:6a:5f:17:b1:c3:4c:4e:69:3f:4e:b8:
f1:6f:88:0d:66:8c:99:16:2d:17:31:e1:29:f9:5a:
4c:5b:29:19:c3:e3:5d:76:cf:de:f7:59:3e:90:60:
d4:83:a9:fa:92:96:ec:aa:a4:ca:4d:5d:13:e4:cd:
6b:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:9A:54:A9:25:ED:23:08:B9:26:1A:2C:83:A5:1F:D8:FC:57:3C:24
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/VJpUqSXtIwi5Jhosg6Uf2PxXPCQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.12.0/23
5.183.94.0/24
45.82.223.0/24
45.89.210.0/23
45.135.16.0/22
45.146.204.0/22
85.208.32.0/22
171.22.248.0/22
185.244.8.0/22
193.42.224.0/22
194.5.224.0/22
194.116.248.0/22
Signature Algorithm: sha256WithRSAEncryption
51:54:b7:29:3d:d1:3a:62:6c:f3:85:08:72:eb:53:c1:d6:49:
7f:f5:21:ab:39:9f:5c:3d:34:97:5e:c4:5a:83:77:8b:45:f7:
c9:05:76:0d:c0:67:d5:c6:cf:aa:f8:69:30:1b:25:ae:69:fc:
99:55:89:2d:8a:bc:0a:72:60:93:96:18:00:f2:57:f9:c0:3f:
68:79:c7:4e:5a:c9:80:64:af:cd:15:f6:47:ad:75:a1:80:5c:
26:f7:2f:c3:44:32:53:08:58:21:6b:34:a3:f4:5d:99:22:d4:
b8:6c:ec:70:64:0a:d1:79:f1:ee:0b:52:14:ed:ec:46:ff:c9:
9c:86:d2:b7:7a:7e:c1:a7:db:8a:29:fb:22:b0:66:32:58:1e:
dd:8a:88:f8:f2:87:8e:92:f4:b2:13:a0:4e:0d:48:36:5c:ed:
4a:0c:95:bd:0d:15:e1:49:a4:dc:11:63:af:9f:8f:a9:03:1e:
04:fe:c6:51:e4:00:aa:1f:22:d2:b2:ac:3f:9c:20:4e:f4:8d:
3c:3c:28:7e:6c:80:b5:15:9e:20:90:26:8c:0e:c8:50:16:d5:
12:f5:56:ad:18:8b:26:09:26:6d:4b:04:60:cc:a9:cd:89:e1:
75:ec:03:cf:d2:84:e1:29:33:65:2c:77:b8:49:b1:1a:40:8a:
df:dd:94:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:19 2023 by rpki-client on console-fra.rpki-client.org