Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/2u4npMyxSH_A9MNx5C5St-1-2mw.roa
File: 2u4npMyxSH_A9MNx5C5St-1-2mw.roa (raw, json)
Hash identifier: CKt5bwRUOmYedOYTdeSRWuwW1Nlc8BQvXMNFtQpThYU=
Subject key identifier: DA:EE:27:A4:CC:B1:48:7F:C0:F4:C3:71:E4:2E:52:B7:ED:7E:DA:6C
Certificate issuer: /CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Certificate serial: 0184526128A91DA071A2F229CC375C1CA83A
Authority key identifier: D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/2u4npMyxSH_A9MNx5C5St-1-2mw.roa
Signing time: Mon 07 Nov 2022 13:56:49 +0000
ROA not before: Mon 07 Nov 2022 13:56:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 31.170.55.0/24 maxlen: 24
94.74.191.0/24 maxlen: 24
94.74.187.0/24 maxlen: 24
94.74.137.0/24 maxlen: 24
94.74.140.0/24 maxlen: 24
94.74.145.0/24 maxlen: 24
94.74.147.0/24 maxlen: 24
94.74.156.0/24 maxlen: 24
94.74.157.0/24 maxlen: 24
94.74.159.0/24 maxlen: 24
94.74.158.0/24 maxlen: 24
94.74.164.0/24 maxlen: 24
94.74.171.0/24 maxlen: 24
94.74.173.0/24 maxlen: 24
94.74.182.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:52:61:28:a9:1d:a0:71:a2:f2:29:cc:37:5c:1c:a8:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d60475ebe7f07d74153cb1cca338c16d801f45f7
Validity
Not Before: Nov 7 13:56:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daee27a4ccb1487fc0f4c371e42e52b7ed7eda6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:51:0c:2d:ff:17:24:34:c2:72:f6:fb:68:34:
0c:cb:74:29:7d:12:80:f3:02:6d:29:92:a2:61:a2:
70:85:e5:ad:2c:fd:46:87:92:df:fc:e6:23:c4:34:
b6:6f:af:29:c4:3e:e9:86:38:bd:1f:18:76:2d:de:
49:3b:33:a1:2c:79:e5:55:08:78:43:3d:a3:84:8e:
8d:b0:fe:e6:81:7f:c1:9d:26:18:00:dc:b9:91:c8:
9e:4a:10:c2:a7:b3:81:79:ab:ef:3c:64:54:27:01:
72:78:03:c1:83:34:0d:65:f5:11:4e:3b:64:01:99:
b5:00:11:fb:72:79:42:eb:56:79:80:ad:67:76:ac:
55:d6:81:58:5e:96:41:22:09:27:c1:01:02:e7:c7:
d7:e4:41:ed:2b:14:ff:04:b3:55:6d:49:e5:4f:8b:
28:f5:e8:5d:72:b1:fe:40:7f:48:1d:1e:d7:5f:d4:
7d:ef:30:46:a2:b9:ff:8a:da:2f:ae:2e:8b:fd:fb:
87:07:54:01:b5:db:88:f9:48:e7:0f:87:3b:18:5b:
a2:bc:97:ee:ca:7b:d3:4c:b6:96:da:ee:57:cc:f8:
7b:ce:ab:3d:c4:26:3a:4c:d0:eb:ee:f9:a0:36:9d:
dd:05:29:6d:5f:bf:50:c0:71:56:bd:84:b9:3d:99:
cd:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:EE:27:A4:CC:B1:48:7F:C0:F4:C3:71:E4:2E:52:B7:ED:7E:DA:6C
X509v3 Authority Key Identifier:
keyid:D6:04:75:EB:E7:F0:7D:74:15:3C:B1:CC:A3:38:C1:6D:80:1F:45:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gR16-fwfXQVPLHMozjBbYAfRfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/2u4npMyxSH_A9MNx5C5St-1-2mw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/52ebae-e006-4778-ac3c-496f8ebb2d61/1/1gR16-fwfXQVPLHMozjBbYAfRfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.170.55.0/24
94.74.137.0/24
94.74.140.0/24
94.74.145.0/24
94.74.147.0/24
94.74.156.0/22
94.74.164.0/24
94.74.171.0/24
94.74.173.0/24
94.74.182.0/24
94.74.187.0/24
94.74.191.0/24
Signature Algorithm: sha256WithRSAEncryption
4e:ae:31:7f:9f:ec:f5:50:de:fb:23:dd:21:f5:a6:01:47:4b:
d2:50:3c:d2:1a:be:46:33:55:22:00:e4:8e:9c:cb:db:a1:dc:
c8:3f:8c:e6:c8:6b:6e:dc:bf:6e:d1:43:8e:98:66:d1:fd:de:
43:9b:7e:22:8e:ca:8b:5d:e8:3e:2c:11:af:af:b1:0a:75:8a:
8d:e8:3c:96:27:8c:9e:26:e4:14:1e:8a:bd:18:3c:c8:79:45:
b6:80:3f:ac:dd:f5:be:7a:73:0a:30:a1:3d:2d:1d:cd:20:74:
46:8e:c8:7e:79:8b:24:93:da:70:51:95:2f:7a:a9:ec:eb:d6:
9d:b9:43:4e:a7:5a:e3:ed:8f:77:5e:2d:2c:e7:0f:29:1b:58:
59:69:94:b5:15:28:a9:1c:1e:3a:8b:7b:5d:04:0b:0d:58:ce:
4e:fb:49:82:70:71:4c:12:8a:0c:81:c2:17:c8:c3:a0:94:91:
1a:cf:27:89:f5:f7:04:d3:e3:c9:eb:ca:54:aa:cc:c7:31:97:
7f:f1:52:e3:6f:bc:62:60:5b:c8:68:96:0c:cb:86:da:2b:e9:
f5:9a:af:62:ab:e4:fa:c7:56:13:77:57:59:6b:ab:12:fa:59:
0a:ab:1a:da:5c:5b:bb:fb:37:8b:13:92:3c:91:af:aa:f3:1c:
0d:9f:fb:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:39 2023 by rpki-client on console.sobornost.net