Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/1Utvr4hJ-fwAGPhSDMti5n2S1z0.roa
File: 1Utvr4hJ-fwAGPhSDMti5n2S1z0.roa (raw, json)
Hash identifier: 4f7ypVrRG/vuAaJ3iray3zz4ezQfPkz0xOZ5eQoCbTM=
Subject key identifier: D5:4B:6F:AF:88:49:F9:FC:00:18:F8:52:0C:CB:62:E6:7D:92:D7:3D
Certificate issuer: /CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Certificate serial: 0712A762
Authority key identifier: 2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/1Utvr4hJ-fwAGPhSDMti5n2S1z0.roa
Signing time: Mon 30 May 2022 17:07:14 +0000
ROA not before: Mon 30 May 2022 17:07:14 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 94.26.89.0/24 maxlen: 24
91.92.34.0/24 maxlen: 24
93.152.207.0/24 maxlen: 24
93.152.208.0/24 maxlen: 24
94.190.195.0/24 maxlen: 24
45.141.234.0/24 maxlen: 24
45.141.235.0/24 maxlen: 24
78.159.156.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118663010 (0x712a762)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2d1caa69358f8c98f7a719f2597d5daddbd0018c
Validity
Not Before: May 30 17:07:14 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d54b6faf8849f9fc0018f8520ccb62e67d92d73d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:dc:8e:90:9c:3a:2c:9b:03:76:79:6c:1a:02:
2a:5d:82:be:55:07:ff:8e:d2:40:84:22:f2:9d:21:
d7:8b:7c:69:34:e2:84:46:1a:10:eb:45:dc:2e:c9:
3e:64:50:fc:95:37:fb:77:c3:63:72:de:fa:e2:c3:
84:29:4b:1f:da:a9:57:d3:ec:bf:83:9f:d6:ca:b1:
2d:fd:f2:7d:b0:c3:6f:88:48:17:24:79:77:4b:c8:
88:e1:a6:5f:d7:63:78:fd:b6:39:cb:cd:95:97:77:
e1:c9:0e:49:1d:00:87:9e:e1:ac:0e:da:b9:12:34:
79:43:59:53:1b:78:ae:e3:0f:3b:3a:68:0a:a3:bf:
79:bb:10:0e:fb:7f:f5:d4:29:d1:40:47:f1:dd:d2:
89:27:c5:d2:68:dd:71:c7:d6:4d:1b:ae:45:37:7c:
b1:c9:d6:6a:16:ff:f6:c6:b1:f5:07:be:bb:7e:44:
29:e4:cc:1b:21:3e:5d:a4:24:ad:26:d0:c9:71:a8:
60:19:87:e8:bc:a0:f6:e4:7e:02:c8:49:97:a9:00:
07:41:09:01:f7:f1:a8:f7:c7:2d:b3:3d:d3:70:d6:
63:c4:6e:3e:31:c4:04:ac:48:7e:2b:89:ae:a5:4c:
e5:01:71:47:e4:73:d5:88:77:9d:66:df:a2:a2:47:
a2:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:4B:6F:AF:88:49:F9:FC:00:18:F8:52:0C:CB:62:E6:7D:92:D7:3D
X509v3 Authority Key Identifier:
keyid:2D:1C:AA:69:35:8F:8C:98:F7:A7:19:F2:59:7D:5D:AD:DB:D0:01:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LRyqaTWPjJj3pxnyWX1drdvQAYw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/1Utvr4hJ-fwAGPhSDMti5n2S1z0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/a93699-188b-470a-96b7-29b085dd23ad/1/LRyqaTWPjJj3pxnyWX1drdvQAYw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.234.0/23
78.159.156.0/24
91.92.34.0/24
93.152.207.0-93.152.208.255
94.26.89.0/24
94.190.195.0/24
Signature Algorithm: sha256WithRSAEncryption
47:83:b6:63:51:a5:91:db:57:bc:93:c7:d1:40:4d:c4:f4:31:
70:ec:99:10:da:8a:b1:23:ce:03:13:82:4c:7b:12:00:96:75:
46:f7:47:a3:6b:78:8b:4f:ec:ae:d8:93:a5:fa:77:08:7f:ca:
7e:b0:0c:ab:71:af:61:95:12:26:ed:45:0f:8a:77:57:8a:02:
7e:08:01:61:9c:ea:7e:27:ba:b2:a6:9c:9d:c1:0e:63:98:07:
d0:96:48:72:f5:a3:75:fe:1d:63:e4:39:f7:47:64:52:d3:2d:
39:93:85:16:7a:7c:ee:a5:f8:be:b8:91:77:2c:c5:f3:5e:41:
e3:cb:12:26:3a:68:10:b6:19:0b:34:15:7a:3e:d7:2c:0f:a8:
79:08:43:8c:18:29:31:53:e5:55:d8:7f:32:f0:32:ab:89:91:
23:fd:16:da:03:ca:1c:96:f3:72:c4:10:93:0c:0a:2b:f3:71:
aa:43:d7:19:00:23:49:00:fc:3d:11:65:86:4a:84:d8:19:2d:
e2:fa:94:95:0a:13:ff:c8:9d:49:cf:de:61:bc:9e:00:b3:5b:
bf:72:a2:dd:f9:3c:97:a7:11:ce:a3:c5:4a:4c:4e:04:27:c5:
ff:ec:39:12:5d:1f:7d:c6:27:fb:79:88:80:73:37:51:d8:53:
47:32:6a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:07 2023 by rpki-client on console-fra.rpki-client.org