Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/cXhg0rJyCltTisIqp_lyckaEH3Q.roa
File: cXhg0rJyCltTisIqp_lyckaEH3Q.roa (raw, json)
Hash identifier: CJ2QAeSk9gYFMNsZbrgwCq8SqRs8SqqMzX0AmW/qmWo=
Subject key identifier: 71:78:60:D2:B2:72:0A:5B:53:8A:C2:2A:A7:F9:72:72:46:84:1F:74
Certificate issuer: /CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Certificate serial: 02B87FDC
Authority key identifier: 5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/cXhg0rJyCltTisIqp_lyckaEH3Q.roa
Signing time: Sat 01 Jan 2022 13:56:13 +0000
ROA not before: Sat 01 Jan 2022 13:56:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43700
IP address blocks: 185.246.242.0/23 maxlen: 23
31.172.224.0/23 maxlen: 23
31.172.224.0/22 maxlen: 22
31.172.226.0/23 maxlen: 23
185.252.204.0/23 maxlen: 23
185.252.204.0/22 maxlen: 22
185.252.206.0/23 maxlen: 23
185.246.240.0/22 maxlen: 22
185.246.240.0/23 maxlen: 23
185.252.108.0/22 maxlen: 22
185.252.108.0/23 maxlen: 23
185.252.110.0/23 maxlen: 23
45.84.244.0/23 maxlen: 23
45.84.244.0/22 maxlen: 22
95.215.140.0/23 maxlen: 23
95.215.140.0/22 maxlen: 22
95.215.142.0/23 maxlen: 23
78.158.0.0/19 maxlen: 19
78.158.0.0/20 maxlen: 20
91.200.252.0/22 maxlen: 22
91.200.252.0/23 maxlen: 23
91.200.254.0/23 maxlen: 23
78.158.16.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45645788 (0x2b87fdc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5dd6f6d299bcdec73d13f2d842fc1df4bc1ee2d3
Validity
Not Before: Jan 1 13:56:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=717860d2b2720a5b538ac22aa7f9727246841f74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:db:91:ea:95:bb:52:57:1d:55:f7:e7:55:c1:
36:0e:2d:82:6e:25:8f:2c:8b:0f:c4:4a:5b:cc:bb:
cf:16:23:b6:e3:01:0c:9b:ef:ea:17:d7:3c:cf:e3:
dc:71:80:04:62:fc:13:a7:d3:4c:90:5b:a5:bb:28:
91:f5:cd:21:fe:4d:22:ea:18:f4:fa:f3:13:ef:e9:
75:00:38:8a:a9:c3:18:57:42:b8:60:3a:c9:a3:40:
cd:5f:17:61:2a:25:6b:49:fe:32:50:b2:fe:e9:d1:
e0:d1:87:4b:11:89:c3:8b:2c:9d:7f:b2:1e:f9:d5:
86:29:c4:39:a3:6e:6b:3e:86:87:2e:da:54:36:75:
a6:d5:a7:7c:5e:ec:84:c7:3b:46:5e:af:2f:c7:21:
81:8c:3c:16:bf:b2:07:04:8e:e9:1b:c2:36:53:b5:
e2:1e:b4:05:a2:36:f6:79:6f:63:62:1e:b6:5e:35:
82:13:39:63:e4:26:87:d5:7c:21:79:1a:6e:c9:ba:
9c:23:32:2b:e4:39:0c:b0:d9:d2:75:e9:51:32:76:
9e:b5:8d:7a:ec:27:ea:cf:34:0a:09:fa:94:96:0a:
cd:6e:0c:4c:51:29:ae:64:d2:ae:8e:4d:c5:8e:de:
6a:ba:d6:70:cd:5b:0a:73:9b:ff:79:f5:63:bb:2a:
73:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:78:60:D2:B2:72:0A:5B:53:8A:C2:2A:A7:F9:72:72:46:84:1F:74
X509v3 Authority Key Identifier:
keyid:5D:D6:F6:D2:99:BC:DE:C7:3D:13:F2:D8:42:FC:1D:F4:BC:1E:E2:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xdb20pm83sc9E_LYQvwd9Lwe4tM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/cXhg0rJyCltTisIqp_lyckaEH3Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a4b446-bb72-45be-bc46-51f5ff81c117/1/Xdb20pm83sc9E_LYQvwd9Lwe4tM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.172.224.0/22
45.84.244.0/22
78.158.0.0/19
91.200.252.0/22
95.215.140.0/22
185.246.240.0/22
185.252.108.0/22
185.252.204.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:c3:77:ac:c4:31:4b:29:17:33:0f:c0:66:5a:77:96:ad:5e:
c1:4d:9c:fc:ae:74:ce:b3:87:d8:1c:43:c6:10:58:ac:af:af:
62:6c:7d:e1:9a:44:1a:6a:90:25:71:28:61:e1:22:60:93:cb:
ea:26:02:68:8c:91:ae:5f:6e:00:15:12:06:e4:40:70:30:93:
f5:9b:ba:f3:6c:f9:68:20:e5:74:b5:29:12:67:ad:2f:b6:ef:
9b:11:65:44:7e:ca:05:0a:27:d7:e3:44:23:38:c1:6c:e9:65:
20:1c:8e:07:93:c3:35:b0:07:f9:d3:df:a5:ac:5f:63:1d:87:
1c:e6:1f:9b:ab:dd:85:b4:04:45:f2:f5:9f:f7:6e:d2:34:22:
ae:b8:dd:d9:3b:03:ec:78:6f:71:4a:b8:9a:34:ea:e8:6a:87:
52:ae:06:bd:ee:cc:8f:a3:32:07:a1:36:95:dc:f6:88:87:e2:
ee:4e:46:64:20:0a:fc:86:79:48:f2:49:0b:90:7e:f9:d5:b0:
5f:fa:9f:95:af:e1:9d:00:7b:b5:84:4b:2a:50:f8:f1:6b:e0:
c7:de:8a:d6:8f:07:92:4d:3f:4b:1f:37:4f:1f:2f:2c:b3:4a:
b9:d2:e0:37:74:08:93:23:14:80:e6:13:2a:1c:90:8c:c9:0d:
74:43:b5:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:49:29 2024 by rpki-client on console-ams.rpki-client.org