Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/sjOHTuoRYob0Tbyj2-7n-fSRBLk.roa
File: sjOHTuoRYob0Tbyj2-7n-fSRBLk.roa (raw, json)
Hash identifier: k9BpHDP+Xvf05nVookWTjlvb+sA4wmOz2lM7sDLcASA=
Subject key identifier: B2:33:87:4E:EA:11:62:86:F4:4D:BC:A3:DB:EE:E7:F9:F4:91:04:B9
Certificate issuer: /CN=15fd3804e00b9e06a82ced9f07b34fe3fd80394e
Certificate serial: 01844CDAAB8D78ADCFE28825E9462AAC2255
Authority key identifier: 15:FD:38:04:E0:0B:9E:06:A8:2C:ED:9F:07:B3:4F:E3:FD:80:39:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ff04BOALngaoLO2fB7NP4_2AOU4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/sjOHTuoRYob0Tbyj2-7n-fSRBLk.roa
Signing time: Sun 06 Nov 2022 12:11:49 +0000
ROA not before: Sun 06 Nov 2022 12:11:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61173
IP address blocks: 45.159.112.0/24 maxlen: 24
45.159.115.0/24 maxlen: 24
45.159.114.0/24 maxlen: 24
45.159.113.0/24 maxlen: 24
185.255.88.0/24 maxlen: 24
185.255.89.0/24 maxlen: 24
185.255.91.0/24 maxlen: 24
185.255.90.0/24 maxlen: 24
193.141.65.0/24 maxlen: 24
185.50.38.0/24 maxlen: 24
185.50.37.0/24 maxlen: 24
185.50.39.0/24 maxlen: 24
185.213.165.0/24 maxlen: 24
185.213.164.0/24 maxlen: 24
185.213.166.0/24 maxlen: 24
193.141.64.0/24 maxlen: 24
185.213.167.0/24 maxlen: 24
193.141.127.0/24 maxlen: 24
193.141.126.0/24 maxlen: 24
185.4.31.0/24 maxlen: 24
185.4.28.0/24 maxlen: 24
185.4.30.0/24 maxlen: 24
185.4.29.0/24 maxlen: 24
185.116.163.0/24 maxlen: 24
185.116.160.0/24 maxlen: 24
185.116.162.0/24 maxlen: 24
185.116.161.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:4c:da:ab:8d:78:ad:cf:e2:88:25:e9:46:2a:ac:22:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15fd3804e00b9e06a82ced9f07b34fe3fd80394e
Validity
Not Before: Nov 6 12:11:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b233874eea116286f44dbca3dbeee7f9f49104b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b3:49:8c:b7:98:30:68:59:5f:8b:f2:17:88:
a6:04:1e:4d:a4:6c:ba:20:98:99:2a:c2:23:a1:1d:
b4:a6:33:da:10:48:30:a7:7b:02:e1:6a:28:a1:16:
43:23:99:c4:e5:4b:f7:b6:81:11:29:58:ee:9d:5f:
cb:5f:f3:c7:8c:ff:b1:0c:17:6d:3f:fe:dc:e6:cf:
8b:dc:c4:e6:aa:91:31:99:20:84:e2:ed:62:c9:ea:
34:c2:fb:a1:6b:16:aa:79:43:e5:85:13:15:e4:7d:
5b:c7:71:4c:e9:47:1d:5c:a4:71:ca:56:d8:d4:7e:
9f:fb:e5:1e:a6:ab:8c:20:8d:1e:f2:da:e1:90:79:
d1:1b:96:63:f9:0c:05:61:63:0c:2b:c5:cb:04:ef:
36:b6:a9:2c:4b:12:80:3d:d8:3f:6b:18:8a:1b:21:
37:79:4d:ee:2f:99:48:9c:b9:71:3b:4d:f7:15:7f:
de:df:b6:9e:af:89:cd:07:3c:45:bb:9b:1f:cc:ee:
a1:3c:52:85:e2:07:c6:b7:bf:68:80:8f:b3:d6:d3:
75:63:dc:cc:25:07:11:b9:0d:5a:93:ca:ba:64:a7:
82:21:c1:fc:ff:af:d4:12:54:0e:38:eb:85:de:c6:
8d:c1:fa:49:57:1c:3d:b9:77:97:4b:53:e6:40:87:
c3:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:33:87:4E:EA:11:62:86:F4:4D:BC:A3:DB:EE:E7:F9:F4:91:04:B9
X509v3 Authority Key Identifier:
keyid:15:FD:38:04:E0:0B:9E:06:A8:2C:ED:9F:07:B3:4F:E3:FD:80:39:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ff04BOALngaoLO2fB7NP4_2AOU4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/sjOHTuoRYob0Tbyj2-7n-fSRBLk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/be3c40-1210-4272-a5ea-7835d3208396/1/Ff04BOALngaoLO2fB7NP4_2AOU4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.112.0/22
185.4.28.0/22
185.50.37.0-185.50.39.255
185.116.160.0/22
185.213.164.0/22
185.255.88.0/22
193.141.64.0/23
193.141.126.0/23
Signature Algorithm: sha256WithRSAEncryption
23:20:67:8a:46:a5:a1:a6:b2:ad:ce:40:02:ca:36:9b:37:f3:
87:dc:45:eb:2a:1f:32:04:44:9d:87:a4:e1:67:a5:c6:16:82:
47:89:d7:a7:03:64:05:e0:8c:17:06:f4:c7:b4:0f:86:ec:37:
1a:1a:dc:bf:e1:43:7e:53:37:8d:ee:d6:e8:5d:09:6f:31:bd:
7c:21:5d:7b:85:ec:9f:0a:a6:35:12:48:fc:58:94:d5:41:4a:
11:ed:49:0e:57:e0:db:fd:ca:0c:38:d0:a9:95:99:2d:5d:04:
43:f3:19:ea:c3:78:19:4a:9b:7b:f3:f6:46:50:53:81:f2:66:
80:a8:7b:c8:62:47:39:64:31:1e:d9:1f:e7:f7:5c:99:ff:39:
47:f8:e0:d7:7d:2d:dc:33:23:2c:59:07:16:2c:61:bc:ff:77:
66:55:c5:85:aa:78:ad:a4:ec:e1:d7:75:23:45:ee:df:c4:06:
09:34:7f:1c:05:3f:f6:ad:3e:4e:27:52:15:c7:e4:1a:25:9b:
89:78:d4:98:84:50:b6:bf:d3:7e:e5:32:7a:58:a4:bc:69:8f:
27:c5:cc:c6:50:6c:fc:75:0f:79:ea:2d:99:6a:42:40:e6:51:
f1:9f:23:0b:55:a6:eb:d5:21:2a:91:2f:93:72:dd:c1:f5:07:
cc:46:95:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:44 2023 by rpki-client on console-fra.rpki-client.org