Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/1fJYQ2rpD3txAexkJeIwrefRwIA.roa
File: 1fJYQ2rpD3txAexkJeIwrefRwIA.roa (raw, json)
Hash identifier: 6w94cfvqirG8XlaWd5dLqpcuQC40MDojSkDWjwv4wRI=
Subject key identifier: D5:F2:58:43:6A:E9:0F:7B:71:01:EC:64:25:E2:30:AD:E7:D1:C0:80
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: A7B50F
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/1fJYQ2rpD3txAexkJeIwrefRwIA.roa
Signing time: Thu 05 May 2022 08:25:53 +0000
ROA not before: Thu 05 May 2022 08:25:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 185.244.106.0/23 maxlen: 23
212.46.37.0/24 maxlen: 24
45.155.64.0/23 maxlen: 24
45.155.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 10990863 (0xa7b50f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: May 5 08:25:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d5f258436ae90f7b7101ec6425e230ade7d1c080
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:96:c1:a4:31:e7:78:f8:b5:b9:9a:1e:51:d4:
3a:d1:f2:dd:71:06:c6:6a:ae:4b:36:c5:f3:ea:01:
25:7e:7e:2a:bc:15:60:b1:22:32:24:d7:18:27:64:
e3:7d:90:3b:59:a0:8f:e7:39:c9:be:94:3c:98:70:
e5:93:fa:f3:bc:84:5c:fb:68:dc:41:bf:7a:8b:e8:
93:eb:06:46:5b:27:12:5a:50:a7:23:a6:3a:13:c6:
82:81:1f:82:05:6b:8c:67:71:e5:ac:91:6b:5f:8f:
d4:0d:b2:eb:3f:c2:56:59:8c:7c:74:e8:69:82:0b:
d6:c3:92:88:21:a3:73:de:86:d4:88:7c:64:6a:81:
b2:c2:db:0e:82:1c:30:cd:71:a2:d5:94:8d:f4:5c:
29:b8:3d:79:07:7e:f2:a1:d4:05:b6:18:1a:25:e9:
b2:4f:4f:5f:71:74:1e:be:35:df:ae:4b:67:3a:7a:
11:c3:26:6c:fb:2e:18:e1:7f:85:c2:00:fd:1a:20:
85:9d:3b:d6:ae:f5:b8:02:cd:74:99:08:71:6e:4a:
5a:58:78:85:67:07:44:d3:85:c1:7f:6b:84:a2:a5:
5c:ed:ff:d0:7c:00:76:e2:76:37:bc:2a:80:97:31:
c7:86:7e:a3:83:1e:24:ad:ca:52:c3:0e:3c:c4:a0:
72:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:F2:58:43:6A:E9:0F:7B:71:01:EC:64:25:E2:30:AD:E7:D1:C0:80
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/1fJYQ2rpD3txAexkJeIwrefRwIA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.64.0/22
185.244.106.0/23
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
36:d4:6b:08:17:f7:a2:d6:6c:65:21:c2:0f:d1:99:6d:dd:a0:
8d:33:29:5c:df:45:5e:24:db:0f:bc:0a:01:f8:d2:cb:9e:9d:
ea:f1:4e:ef:17:4a:ce:58:ea:22:72:2d:c5:2d:31:a3:c2:34:
fb:41:7b:14:49:44:be:e2:19:14:ff:26:78:34:45:e8:48:c1:
71:f5:fa:57:1d:9e:84:bb:c5:74:34:f0:32:13:ce:42:3c:9a:
89:f0:13:d0:e1:50:26:6b:ab:42:5f:1f:e7:0a:6f:98:25:ef:
6d:e8:2f:00:19:34:e9:e7:1f:d2:28:9d:95:40:0c:12:ac:27:
c8:85:ff:fa:8c:31:a1:63:66:17:32:5e:94:45:c4:7d:fe:5e:
aa:36:bb:23:65:76:e5:0c:57:d5:3a:62:75:ac:87:1d:9e:55:
0a:04:75:e5:ea:29:55:26:2a:05:de:3a:57:7d:da:6c:eb:a7:
e6:5a:a2:dd:b7:51:04:0b:65:1b:1c:d7:c3:d8:d8:9d:13:2d:
82:e4:4c:83:01:af:5d:fc:73:ec:56:91:4e:8a:26:01:91:4e:
8e:11:6b:65:55:7a:0e:d9:2c:c0:a2:f5:af:dc:f2:cc:98:e5:
7a:83:5f:e4:de:e8:19:9d:b1:12:87:00:32:52:7f:64:6f:cc:
d7:f5:d0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:33 2023 by rpki-client on console.sobornost.net