Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/TQniwQXAzrDZJM3wsE6Z5MKWerI.roa
File: TQniwQXAzrDZJM3wsE6Z5MKWerI.roa (raw, json)
Hash identifier: yFzb6GSgOFpQ7C/b57vkoTMyUz7CfZrBNbZ9txatorY=
Subject key identifier: 4D:09:E2:C1:05:C0:CE:B0:D9:24:CD:F0:B0:4E:99:E4:C2:96:7A:B2
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 3034EF
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/TQniwQXAzrDZJM3wsE6Z5MKWerI.roa
Signing time: Tue 22 Mar 2022 11:36:38 +0000
ROA not before: Tue 22 Mar 2022 11:36:38 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 212.46.37.0/24 maxlen: 24
45.155.64.0/23 maxlen: 24
45.155.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3159279 (0x3034ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Mar 22 11:36:38 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4d09e2c105c0ceb0d924cdf0b04e99e4c2967ab2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:39:8a:52:39:86:b3:ac:ea:29:71:06:d4:ec:
fd:1e:40:a3:11:88:b3:5d:12:c3:c1:78:b7:54:e8:
90:4c:8e:fe:b2:f2:68:41:02:fe:e4:82:42:0e:67:
5a:ea:fd:8e:3e:54:d7:42:7f:c1:b0:80:c8:7c:c6:
b3:a0:e2:ec:43:ad:9d:14:46:41:e9:9a:58:ae:ec:
48:6c:a3:ea:2d:e4:9f:73:83:33:8f:9c:4f:7c:46:
0e:15:fd:84:90:ad:63:d3:fe:9b:4c:22:06:ff:60:
b5:41:34:7a:fa:a2:d2:af:1b:19:ce:50:91:06:5a:
7d:fe:4d:9c:54:c7:94:c1:a5:da:c0:93:b2:69:75:
50:dd:3d:95:2e:fa:f0:75:b4:cc:68:69:b0:ef:88:
a2:8a:ee:72:35:ad:b8:aa:5b:12:b7:cd:f7:c7:7b:
8c:13:e8:c2:93:d8:d3:6a:70:e0:53:5b:d0:63:8f:
b9:41:86:dd:56:7b:df:09:3b:bf:0b:67:2f:69:0d:
03:c2:ba:3b:17:45:f3:78:c5:11:d3:76:55:21:f7:
18:4e:4d:7d:ba:0e:9b:7d:c8:ce:a6:80:f5:e6:ca:
b7:30:e5:2f:72:1a:54:52:69:5f:1b:15:e4:c5:45:
47:35:7b:63:63:b6:84:b9:5c:5b:75:6d:44:3b:23:
21:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:09:E2:C1:05:C0:CE:B0:D9:24:CD:F0:B0:4E:99:E4:C2:96:7A:B2
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/TQniwQXAzrDZJM3wsE6Z5MKWerI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.64.0/22
212.46.37.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:55:24:3d:18:13:eb:a6:31:98:43:45:4a:35:6f:61:e3:66:
7c:b6:8a:ff:4a:1e:c2:84:66:f0:35:9b:6e:73:b6:76:f2:5d:
19:35:4a:14:a4:d5:6b:e4:23:fd:59:3d:e6:01:0d:2f:13:b0:
a3:92:cc:01:5e:8e:aa:15:9e:14:e0:21:c7:21:da:96:ec:b2:
7e:85:9a:91:af:9b:ed:e5:d1:e5:7d:96:07:42:9b:5e:ad:9c:
9b:6d:e3:88:4a:16:9f:0b:50:47:b4:d1:1e:c7:7f:cd:c2:a4:
20:d8:a9:78:38:ec:ad:76:37:ad:01:40:a6:de:6e:94:6b:d0:
f5:d8:78:5a:5e:d5:04:62:de:5c:92:4c:7a:07:d8:d5:91:a3:
37:63:99:68:b5:b3:bc:b8:9e:e2:1c:5c:85:a6:b9:16:4c:fc:
d0:78:9a:42:d1:3b:8d:93:b7:75:a5:0f:b8:87:b6:63:6d:87:
d9:2d:20:b2:c9:83:a6:f9:3d:8f:a1:71:a9:d8:7b:2e:7e:6d:
dc:e6:0c:e7:ea:75:dd:8a:a3:ae:c0:4f:9f:e9:e4:5d:24:51:
95:c1:86:64:4d:40:66:07:17:e4:68:ff:7b:3b:97:6d:d8:a0:
f1:97:fa:ac:55:6b:5d:21:aa:4f:7d:ea:04:0e:e5:c6:db:b7:
ba:99:0a:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:33 2023 by rpki-client on console.sobornost.net