Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/vP618wTW1gJ8lMTRoCokEcfdYwc.roa
File: vP618wTW1gJ8lMTRoCokEcfdYwc.roa (raw, json)
Hash identifier: ArZoMf2vAIQXoD/Mu/1o55LZuTqTifwynDPFTbMd7jQ=
Subject key identifier: BC:FE:B5:F3:04:D6:D6:02:7C:94:C4:D1:A0:2A:24:11:C7:DD:63:07
Certificate issuer: /CN=a634878281144a46a856003d622f6141ea4e006f
Certificate serial: 1161C3A6
Authority key identifier: A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/vP618wTW1gJ8lMTRoCokEcfdYwc.roa
Signing time: Sat 01 Jan 2022 01:59:52 +0000
ROA not before: Sat 01 Jan 2022 01:59:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44381
IP address blocks: 217.144.64.0/20 maxlen: 20
92.62.32.0/20 maxlen: 20
45.154.232.0/22 maxlen: 22
95.141.64.0/20 maxlen: 20
2a02:2c8::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 291619750 (0x1161c3a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a634878281144a46a856003d622f6141ea4e006f
Validity
Not Before: Jan 1 01:59:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bcfeb5f304d6d6027c94c4d1a02a2411c7dd6307
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:86:1a:b3:0d:39:c3:ab:8d:46:7c:5f:9f:d0:
57:ab:b7:6e:72:6d:4c:45:87:be:32:3f:f2:69:7e:
16:d2:28:33:78:81:fb:41:91:fd:ca:4f:45:3f:19:
2a:f6:bf:05:6e:9c:82:38:ec:ec:50:3b:b8:de:22:
81:3f:9c:46:a7:19:64:57:a5:9e:c9:41:98:46:ff:
51:13:d7:a5:a9:9e:6b:8a:7b:8e:d6:8d:de:61:6c:
ca:3b:81:74:42:0f:1f:bd:fa:35:83:43:06:e8:5e:
c1:92:e0:b7:51:05:53:ab:3d:e2:c5:c6:f0:60:b2:
7c:84:03:48:c6:0a:0f:d0:62:53:96:09:89:a3:2a:
31:80:1d:b7:a3:ea:40:97:18:e1:23:fb:d9:92:ac:
00:bd:8e:f6:6b:44:f2:3f:ed:e7:f3:84:5d:c7:2a:
fe:61:e0:ec:64:fd:36:97:4e:dd:c2:2a:0d:2b:e7:
d5:13:88:9a:1d:ca:3c:01:99:cd:27:d2:65:e4:f2:
71:d4:1a:b8:b8:2f:e9:f8:4d:8c:3d:89:9f:4e:1c:
f1:a8:f2:78:f6:e5:e0:77:30:29:00:ca:a9:71:78:
74:e2:f2:5e:9c:88:1a:dd:d4:49:97:35:16:79:84:
88:d0:ac:03:ae:f7:37:7f:f0:5b:36:f2:9f:a1:f2:
c0:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:FE:B5:F3:04:D6:D6:02:7C:94:C4:D1:A0:2A:24:11:C7:DD:63:07
X509v3 Authority Key Identifier:
keyid:A6:34:87:82:81:14:4A:46:A8:56:00:3D:62:2F:61:41:EA:4E:00:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pjSHgoEUSkaoVgA9Yi9hQepOAG8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/vP618wTW1gJ8lMTRoCokEcfdYwc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/c345f3-b53a-41bf-996b-34b8d9de96ca/1/pjSHgoEUSkaoVgA9Yi9hQepOAG8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.232.0/22
92.62.32.0/20
95.141.64.0/20
217.144.64.0/20
IPv6:
2a02:2c8::/32
Signature Algorithm: sha256WithRSAEncryption
32:92:f7:5f:3a:39:0b:1c:16:5b:dc:b7:98:ab:69:fb:5c:44:
21:7e:67:94:80:e0:e5:f9:4d:39:e8:7a:04:6b:1f:78:72:01:
8b:62:6f:90:3e:55:6e:45:5a:78:52:f3:6a:c1:3f:b3:fa:d9:
ca:ed:da:a8:6e:84:a2:8b:e9:22:59:20:7d:78:35:0c:47:7a:
cf:3f:51:e4:a6:cd:c9:8e:0d:e2:99:2d:90:69:20:cf:d8:b9:
00:9d:2b:6d:77:73:77:65:9b:76:79:f3:76:60:a1:94:a7:71:
67:ea:15:52:19:12:6d:ee:09:06:0f:7d:a2:f8:b2:2f:8d:65:
26:d8:e4:b7:6c:9b:16:e9:b5:bd:b1:36:70:b9:e5:57:ea:ad:
22:51:2e:9c:70:af:63:fc:ad:26:46:0b:4c:3c:12:39:8a:8c:
2f:9c:2f:9e:67:95:05:2b:1e:ac:2b:86:01:24:07:90:1d:b6:
1d:8b:5b:63:32:f3:99:37:16:37:cf:52:5c:ef:58:c1:10:c7:
bd:f1:42:41:37:91:b3:a4:c1:20:cb:c0:f2:a0:51:09:7d:05:
6d:57:75:58:b0:59:65:e8:7c:25:d9:d8:90:76:c1:d8:12:34:
53:d4:29:ae:a7:11:be:4d:66:55:c5:b8:b7:eb:e7:2c:04:89:
98:9c:5e:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:56 2024 by rpki-client on console-fra.rpki-client.org