Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/41e287-50b4-46ef-82cc-ca3b7278dde2/1/sTULn7ndOLZJewTMVd98G3a3Cy8.roa
File: sTULn7ndOLZJewTMVd98G3a3Cy8.roa (raw, json)
Hash identifier: YIsy2larYlTI+V7WtkAnq49BKsbLbvCtDQtZBuQrTy4=
Subject key identifier: B1:35:0B:9F:B9:DD:38:B6:49:7B:04:CC:55:DF:7C:1B:76:B7:0B:2F
Certificate issuer: /CN=b69cb709934b99f689dd1e99d72c1b000fd872c5
Certificate serial: 0C9262DA
Authority key identifier: B6:9C:B7:09:93:4B:99:F6:89:DD:1E:99:D7:2C:1B:00:0F:D8:72:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tpy3CZNLmfaJ3R6Z1ywbAA_YcsU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/41e287-50b4-46ef-82cc-ca3b7278dde2/1/sTULn7ndOLZJewTMVd98G3a3Cy8.roa
Signing time: Sat 01 Jan 2022 06:54:49 +0000
ROA not before: Sat 01 Jan 2022 06:54:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 38926
IP address blocks: 195.114.114.0/23 maxlen: 24
193.169.64.0/23 maxlen: 24
5.44.160.0/21 maxlen: 24
185.105.68.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 210920154 (0xc9262da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69cb709934b99f689dd1e99d72c1b000fd872c5
Validity
Not Before: Jan 1 06:54:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b1350b9fb9dd38b6497b04cc55df7c1b76b70b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f9:17:9d:0a:b3:aa:5d:57:c1:eb:c9:05:42:
99:83:84:f5:03:3f:02:48:13:ef:53:f7:03:75:c0:
8f:b1:80:de:e5:90:95:a6:b0:7e:48:71:fe:a9:f8:
8a:89:1f:5c:ed:13:fc:3a:b0:4e:73:95:4b:a8:9d:
d4:07:d9:a1:02:04:7a:89:a3:86:f0:8b:a4:fe:a6:
24:e2:bb:66:4f:1e:92:23:22:a0:a4:b8:b0:a0:f6:
ef:22:6a:36:19:98:b3:07:85:ee:c3:37:ab:eb:da:
d7:2f:50:89:b3:a3:8b:83:ad:12:73:f9:3e:18:07:
65:a8:6e:93:0e:d6:77:e2:01:a1:5d:2c:e5:dc:ac:
88:37:94:67:1c:be:a1:d6:18:11:84:26:ad:e6:2c:
c2:a5:6a:7a:80:d7:93:f4:84:7c:30:c1:04:9a:59:
ad:48:cf:e9:c8:da:a6:3c:d1:54:11:b8:6b:15:50:
65:ca:9f:6c:bb:cd:ac:3c:a8:2b:78:5e:89:69:a9:
d5:92:f8:b3:cc:ec:85:c5:b2:59:68:7c:a7:93:86:
66:e1:81:d5:c9:9e:60:ae:65:c5:34:68:a9:0d:12:
18:12:ab:ba:06:91:ae:de:68:47:a6:ea:cf:a8:aa:
81:35:39:e0:6f:06:dd:92:53:75:81:9d:ad:4d:c6:
67:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:35:0B:9F:B9:DD:38:B6:49:7B:04:CC:55:DF:7C:1B:76:B7:0B:2F
X509v3 Authority Key Identifier:
keyid:B6:9C:B7:09:93:4B:99:F6:89:DD:1E:99:D7:2C:1B:00:0F:D8:72:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tpy3CZNLmfaJ3R6Z1ywbAA_YcsU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/41e287-50b4-46ef-82cc-ca3b7278dde2/1/sTULn7ndOLZJewTMVd98G3a3Cy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/41e287-50b4-46ef-82cc-ca3b7278dde2/1/tpy3CZNLmfaJ3R6Z1ywbAA_YcsU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.44.160.0/21
185.105.68.0/22
193.169.64.0/23
195.114.114.0/23
Signature Algorithm: sha256WithRSAEncryption
86:15:5f:6b:13:1f:d5:34:e6:2b:fe:2c:8b:9e:3d:dd:16:24:
bc:79:12:01:8c:67:9a:42:19:32:9f:4e:e5:ff:7f:ed:c5:57:
d2:80:aa:f7:57:65:70:1e:8a:cc:45:79:7a:71:64:c2:84:34:
de:9b:47:69:a1:50:7b:e8:39:ea:d4:e2:24:d3:3d:7b:01:8a:
b9:99:01:fd:54:9c:43:65:c6:24:47:2e:d1:64:41:91:4c:a9:
a8:57:dd:5b:7c:3a:ab:c1:2d:4c:d9:b2:2a:ae:7e:83:c3:4e:
e4:c2:56:3e:4e:4c:ce:c0:6a:0f:df:cc:9e:5a:17:fe:23:50:
31:24:33:53:37:3c:3b:a3:59:16:dc:72:15:82:96:dd:81:da:
f4:51:bc:59:a5:dd:ee:98:1e:99:4b:c9:6e:3e:6b:6d:04:ea:
d2:6f:81:8b:30:68:39:58:dd:71:00:a7:38:8a:fb:ec:b5:f4:
51:7e:2c:4c:25:e5:4f:e0:2e:f8:ff:ac:9d:0b:71:9c:83:a6:
ac:d2:03:e4:71:70:ac:37:20:f1:f5:57:15:d0:8a:5e:33:8d:
1a:10:61:9c:75:79:1c:cc:22:4e:a9:02:06:e9:a5:ca:f0:bd:
4a:00:fb:cd:19:df:b5:5b:84:7d:66:b1:60:79:4c:65:c0:7a:
15:ce:dc:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:23 2023 by rpki-client on console.sobornost.net