Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/13a57c-cc4f-45bc-af9f-9367e42389d9/1/44-fw32Ux0HpLYJC3jneSgtExiQ.roa
File: 44-fw32Ux0HpLYJC3jneSgtExiQ.roa (raw, json)
Hash identifier: 0CYWGmmCEJdLbpmGS5UBYALpIdtkgJ7kqTYaMQYdwUY=
Subject key identifier: E3:8F:9F:C3:7D:94:C7:41:E9:2D:82:42:DE:39:DE:4A:0B:44:C6:24
Certificate issuer: /CN=53ef2884e4a13355db649a3493527c44228973b8
Certificate serial: 01856B6E9DFAA164AFBA1954311851E17270
Authority key identifier: 53:EF:28:84:E4:A1:33:55:DB:64:9A:34:93:52:7C:44:22:89:73:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U-8ohOShM1XbZJo0k1J8RCKJc7g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/13a57c-cc4f-45bc-af9f-9367e42389d9/1/44-fw32Ux0HpLYJC3jneSgtExiQ.roa
Signing time: Sun 01 Jan 2023 03:44:49 +0000
ROA not before: Sun 01 Jan 2023 03:44:49 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 202591
IP address blocks: 92.119.28.0/22 maxlen: 22
185.150.184.0/22 maxlen: 22
45.154.164.0/22 maxlen: 22
2a09:b340::/29 maxlen: 29
2a07:7280::/29 maxlen: 29
2a0f:bd00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6b:6e:9d:fa:a1:64:af:ba:19:54:31:18:51:e1:72:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=53ef2884e4a13355db649a3493527c44228973b8
Validity
Not Before: Jan 1 03:44:49 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e38f9fc37d94c741e92d8242de39de4a0b44c624
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:b8:c1:01:3a:65:37:8d:74:17:44:ea:92:94:
f1:25:38:ca:c2:ca:fd:8f:b9:1d:68:28:ec:80:c0:
89:e4:8f:0c:63:05:36:e8:97:9c:a2:70:d7:38:1e:
44:bb:5f:45:54:46:dc:da:d1:82:1b:f1:6d:80:fd:
d9:80:19:45:43:02:43:18:1e:07:a0:b8:f4:1b:d6:
33:e6:a9:8a:09:65:61:8d:b3:ba:9f:67:aa:da:0c:
2a:5a:68:36:a3:c5:d8:f0:b1:00:1b:f7:d9:6c:59:
a7:5b:76:ee:a5:be:cf:8e:87:df:98:5e:8f:89:4f:
f1:76:d8:23:f9:55:97:bd:b1:54:ba:82:94:29:03:
50:2f:fb:31:00:bd:e5:f3:94:ce:8d:9e:db:3a:36:
ec:96:ec:10:b8:bf:9e:ec:c5:59:c7:fe:9f:d0:19:
bf:e3:25:96:5d:1b:e6:6c:75:11:99:09:f2:c9:7e:
62:a4:6c:1e:57:1a:25:76:9a:e7:97:64:3e:43:f3:
9f:10:4f:23:65:55:c0:86:ea:ea:50:4c:69:0a:61:
a3:e3:e3:79:60:63:cb:b1:7f:0c:1c:9d:95:b0:0b:
f9:a5:1f:0e:76:41:a7:ff:b1:3e:43:e8:be:a0:d2:
70:1c:e1:5d:60:c1:35:9e:5d:45:87:c1:5a:42:4c:
06:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:8F:9F:C3:7D:94:C7:41:E9:2D:82:42:DE:39:DE:4A:0B:44:C6:24
X509v3 Authority Key Identifier:
keyid:53:EF:28:84:E4:A1:33:55:DB:64:9A:34:93:52:7C:44:22:89:73:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U-8ohOShM1XbZJo0k1J8RCKJc7g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/13a57c-cc4f-45bc-af9f-9367e42389d9/1/44-fw32Ux0HpLYJC3jneSgtExiQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/13a57c-cc4f-45bc-af9f-9367e42389d9/1/U-8ohOShM1XbZJo0k1J8RCKJc7g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.164.0/22
92.119.28.0/22
185.150.184.0/22
IPv6:
2a07:7280::/29
2a09:b340::/29
2a0f:bd00::/29
Signature Algorithm: sha256WithRSAEncryption
2e:1d:b9:ee:67:e6:b8:51:83:d4:59:7c:b4:3e:75:d2:8b:8c:
60:de:82:03:93:09:15:e4:c7:58:97:77:7f:b4:41:8c:10:c6:
84:52:86:be:24:37:32:ff:01:b2:1d:9a:57:72:78:4b:59:b1:
00:38:f3:71:f9:dd:74:10:2a:81:d8:dd:ea:02:e3:88:24:a0:
af:0f:21:c7:2e:f4:26:f0:0e:81:6e:9f:79:65:cd:cc:da:22:
de:bb:76:48:b0:eb:a3:e2:2b:c9:99:ba:63:5a:d3:cf:3d:cf:
82:8b:a9:1b:35:04:bf:38:02:ca:d8:38:55:8c:13:f3:20:b3:
b5:ad:1f:22:84:45:0c:0e:c6:b8:16:5f:02:58:be:09:86:00:
17:1f:2e:d6:38:fd:05:c4:33:4c:f7:2b:c9:c5:da:eb:55:5d:
4c:b4:94:32:df:f3:07:6c:e2:69:5f:79:7c:fa:9f:ab:70:07:
da:59:60:27:d6:2e:ba:9b:c8:0d:41:15:08:8b:34:d0:b6:f2:
c5:97:5d:5f:7e:b5:92:a0:f8:4f:51:c2:2c:5f:02:8c:29:22:
7f:1d:9c:49:92:4b:40:d2:81:4e:ba:71:1b:88:b2:8f:02:00:
00:54:8b:06:9d:16:27:32:32:14:5d:dd:01:9a:d3:f2:bd:1f:
b9:79:04:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:19:16 2025 by rpki-client