Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/SiUyRswsPaQqlKoFyCEqEyhvcro.roa
File: SiUyRswsPaQqlKoFyCEqEyhvcro.roa (raw, json)
Hash identifier: iMVJjFd+gtASPyUYEddOpvWwvsXvOOZNdM3nEMs3pbs=
Subject key identifier: 4A:25:32:46:CC:2C:3D:A4:2A:94:AA:05:C8:21:2A:13:28:6F:72:BA
Certificate issuer: /CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Certificate serial: 06B8BF3C
Authority key identifier: 34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/SiUyRswsPaQqlKoFyCEqEyhvcro.roa
Signing time: Thu 06 Jan 2022 10:30:43 +0000
ROA not before: Thu 06 Jan 2022 10:30:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213122
IP address blocks: 45.130.152.0/24 maxlen: 24
45.130.153.0/24 maxlen: 24
45.87.62.0/24 maxlen: 24
45.87.63.0/24 maxlen: 24
45.87.60.0/24 maxlen: 24
45.87.61.0/24 maxlen: 24
185.162.74.0/24 maxlen: 24
2a0e:f380::/32 maxlen: 32
2a0e:f380:ffff::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112770876 (0x6b8bf3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3406d2c439ccbcb78a82d5cb2b4c3ff6e9934b96
Validity
Not Before: Jan 6 10:30:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4a253246cc2c3da42a94aa05c8212a13286f72ba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:61:94:23:10:9a:4b:c6:2e:9b:79:d4:ff:85:
27:1d:16:6c:2f:a0:03:02:4e:70:80:8f:a3:1c:46:
e0:68:9b:de:4f:a0:c4:22:cb:dc:d0:5a:6e:93:8b:
83:29:d5:df:c6:9b:fa:1d:2e:ed:f6:5b:26:67:40:
cf:51:b8:10:4a:f3:c6:8f:64:ac:b8:8b:db:1d:8f:
c6:4f:f8:0e:52:5c:a6:0f:45:2f:07:1b:02:1f:17:
15:55:f8:e5:33:26:b7:c8:ae:8b:68:be:46:3b:25:
54:78:4d:e7:15:88:23:15:e2:fa:c8:58:58:f1:0c:
af:04:d6:4e:af:c3:fd:5f:fc:72:f0:a0:f9:a9:70:
29:89:26:ab:1d:18:92:25:61:6a:e4:ea:6e:1e:a4:
56:e1:00:39:46:26:2a:66:25:a6:f0:b8:a0:dc:52:
74:ff:fa:a7:63:ef:13:8b:8a:b8:08:1b:55:0b:11:
d9:c5:a1:8e:da:16:85:98:5e:29:98:48:6d:dc:41:
dc:0c:44:48:33:75:53:02:ec:df:0a:74:89:f1:9a:
96:d6:f4:ce:0e:1b:80:4c:49:39:be:fc:f2:89:e3:
3d:1d:75:b6:f5:b3:42:d9:d7:2e:b8:a8:73:d4:47:
e9:81:af:a1:74:3b:8a:0b:cc:f3:2b:32:6f:52:86:
d1:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:25:32:46:CC:2C:3D:A4:2A:94:AA:05:C8:21:2A:13:28:6F:72:BA
X509v3 Authority Key Identifier:
keyid:34:06:D2:C4:39:CC:BC:B7:8A:82:D5:CB:2B:4C:3F:F6:E9:93:4B:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAbSxDnMvLeKgtXLK0w_9umTS5Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/SiUyRswsPaQqlKoFyCEqEyhvcro.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/0a3a0f-60f8-4a1c-bba0-7b880c063367/1/NAbSxDnMvLeKgtXLK0w_9umTS5Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.60.0/22
45.130.152.0/23
185.162.74.0/24
IPv6:
2a0e:f380::/32
Signature Algorithm: sha256WithRSAEncryption
40:4b:b3:bc:80:9f:f5:16:0a:c3:2b:ce:4c:1a:f9:41:4e:6a:
1e:36:71:7e:37:25:b3:86:8c:6b:6a:ed:61:31:a1:c2:86:64:
55:5e:92:32:3d:16:2b:d7:6e:5b:70:bb:94:97:93:8b:d9:a2:
e6:a1:01:05:c1:3e:48:c8:78:e3:14:90:2f:82:fa:a1:5d:4b:
2d:d0:d8:32:4d:71:46:75:5c:9b:4f:ed:4b:46:c8:4d:a6:55:
0c:61:c4:09:0d:b7:f2:e3:78:18:4d:d2:9b:9c:02:d8:01:00:
83:d9:30:a7:94:c1:31:c1:a3:ca:e8:5e:b0:9f:2c:4f:c7:8a:
19:94:3e:bb:51:52:75:b4:15:4f:cc:46:81:28:a7:82:a3:3a:
2a:ac:87:21:bf:eb:a0:99:a9:ae:0f:1b:c1:2b:74:e0:4e:f5:
5e:ab:57:18:7b:bb:33:28:fd:00:09:d9:7f:5f:40:bc:bf:91:
ae:8f:68:9a:fe:50:b7:e1:37:5a:53:96:7a:38:ee:8d:6b:04:
82:1f:40:bd:4f:1e:84:ea:fa:68:47:8e:ba:d2:3e:61:2d:c7:
08:e1:5f:f0:47:c2:b0:4a:6c:cb:f7:89:e0:fe:30:0f:03:96:
ef:34:8e:1e:9b:90:49:ba:62:96:03:b2:9c:0c:8a:a6:6b:da:
2c:23:3f:34
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:21 2023 by rpki-client on console.sobornost.net