Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/cpnRr_iF8-_oD7cQYatSS60Wx88.roa
File: cpnRr_iF8-_oD7cQYatSS60Wx88.roa (raw, json)
Hash identifier: Ls4CIPRPgeFQtP/VNC/l+aF5CYAslBbpiT+ZdCtmdRY=
Subject key identifier: 72:99:D1:AF:F8:85:F3:EF:E8:0F:B7:10:61:AB:52:4B:AD:16:C7:CF
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 018463D4391D0C07D3404B06BDE35D38E17D
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/cpnRr_iF8-_oD7cQYatSS60Wx88.roa
Signing time: Thu 10 Nov 2022 23:16:03 +0000
ROA not before: Thu 10 Nov 2022 23:16:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44066
IP address blocks: 5.183.95.0/24 maxlen: 24
45.86.163.0/24 maxlen: 24
46.30.189.0/24 maxlen: 24
46.30.190.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:63:d4:39:1d:0c:07:d3:40:4b:06:bd:e3:5d:38:e1:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Nov 10 23:16:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7299d1aff885f3efe80fb71061ab524bad16c7cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:57:3f:d4:dc:65:48:cc:31:9f:36:35:01:54:
bb:75:d2:3a:20:af:bd:af:ea:dc:74:c6:ab:03:ca:
b8:7d:f0:7c:d3:96:36:1e:5a:1d:57:c3:c3:55:45:
b4:28:03:f6:2a:2b:5d:0e:fd:14:bd:22:7d:af:9d:
8e:9e:9a:08:ea:6d:e6:b8:fa:94:6d:15:ad:9c:77:
a3:5f:1c:f6:63:c9:77:f2:c7:27:66:1f:75:c9:33:
84:b2:db:d3:0b:3f:bc:33:28:32:71:7c:e2:c8:e1:
4b:e1:bd:11:70:27:70:d4:fa:7b:9f:64:56:ce:ae:
03:dd:0d:f9:9a:1e:66:c0:a9:c4:22:2d:fc:49:e0:
d4:66:05:eb:e1:28:88:a7:00:61:b8:34:0d:8a:5b:
a0:ee:a2:40:e1:84:bd:60:af:dd:7a:44:f5:2d:28:
4f:1e:b4:44:a4:5a:e1:48:5d:cb:60:fe:81:ff:3e:
db:91:f6:e6:a8:d6:7e:bb:0b:1f:f7:f6:37:d9:38:
c9:ec:41:fb:78:c8:de:ed:64:60:86:17:b4:0b:46:
bf:d2:a6:ee:ba:b2:a9:63:a0:10:2b:fd:54:8d:dc:
87:fc:14:f4:db:b5:c1:74:6e:41:a3:1b:dc:85:3d:
ff:b8:2c:35:de:f7:bb:22:91:36:c2:01:91:8d:2b:
d8:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:99:D1:AF:F8:85:F3:EF:E8:0F:B7:10:61:AB:52:4B:AD:16:C7:CF
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/cpnRr_iF8-_oD7cQYatSS60Wx88.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.183.95.0/24
45.86.163.0/24
46.30.189.0-46.30.190.255
Signature Algorithm: sha256WithRSAEncryption
51:2d:61:17:71:15:85:b7:01:e1:1f:d0:be:e6:19:1c:2f:25:
d6:29:c1:73:e1:da:27:12:cc:ff:ea:fe:48:1d:41:68:79:69:
30:cb:bd:fa:7c:12:37:00:d0:49:22:5d:01:15:2a:b1:d8:9c:
c0:e1:9b:2e:2a:37:6d:bf:64:a6:7f:da:75:bb:ed:6c:50:80:
d8:25:7f:6d:82:9c:79:51:d5:67:79:c0:e2:19:74:73:67:65:
36:16:24:41:3e:58:52:9e:97:01:da:5c:4d:86:3c:d2:b1:27:
10:b9:e7:c8:2d:08:2e:fb:41:53:44:48:fa:df:ec:1d:fe:11:
10:01:72:96:64:2d:82:38:57:b8:15:1b:38:14:ab:85:be:7e:
d7:f4:19:50:94:a2:f9:46:cf:b3:35:03:08:89:5e:fa:27:a0:
1e:be:57:36:41:a6:13:24:77:fd:a8:7a:38:28:6e:ad:2b:3b:
6c:55:1d:70:0e:13:90:21:77:58:2a:d4:31:78:49:67:18:34:
1c:4d:f1:f4:1f:05:95:22:aa:4a:fd:c7:7f:0e:ff:09:a2:d4:
42:1e:b7:01:47:c7:9b:b0:f3:b0:70:85:54:be:46:f9:f8:28:
1f:1e:1c:23:55:1f:45:66:38:75:69:67:de:a5:88:c2:10:70:
b8:80:d5:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:48 2024 by rpki-client on console-fra.rpki-client.org