Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/FaR2zfzR2Ny-gWsH-uV-d5St0p4.roa
File: FaR2zfzR2Ny-gWsH-uV-d5St0p4.roa (raw, json)
Hash identifier: s+alJwqOqlukz8edWvfPM+YFzW/Fj2BJp6CHk1RzkME=
Subject key identifier: 15:A4:76:CD:FC:D1:D8:DC:BE:81:6B:07:FA:E5:7E:77:94:AD:D2:9E
Certificate issuer: /CN=b466ac0a49255283cd53066971cd7b3dfe2a3ce8
Certificate serial: 01826E8DCDE167CA8208FA02835CF515E073
Authority key identifier: B4:66:AC:0A:49:25:52:83:CD:53:06:69:71:CD:7B:3D:FE:2A:3C:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tGasCkklUoPNUwZpcc17Pf4qPOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/FaR2zfzR2Ny-gWsH-uV-d5St0p4.roa
Signing time: Fri 05 Aug 2022 15:09:23 +0000
ROA not before: Fri 05 Aug 2022 15:09:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48101
IP address blocks: 134.19.192.0/22 maxlen: 22
134.19.196.0/22 maxlen: 23
185.122.192.0/22 maxlen: 22
185.16.160.0/22 maxlen: 24
98.96.160.0/20 maxlen: 23
134.65.128.0/21 maxlen: 21
134.65.136.0/22 maxlen: 22
91.228.232.0/23 maxlen: 24
134.65.144.0/22 maxlen: 22
134.65.140.0/22 maxlen: 22
91.228.234.0/24 maxlen: 24
134.65.148.0/22 maxlen: 22
199.15.232.0/22 maxlen: 22
134.65.152.0/22 maxlen: 22
37.25.44.0/24 maxlen: 24
199.15.237.0/24 maxlen: 24
199.15.236.0/24 maxlen: 24
134.65.156.0/22 maxlen: 22
199.15.239.0/24 maxlen: 24
199.15.238.0/24 maxlen: 24
37.25.45.0/24 maxlen: 24
37.25.46.0/23 maxlen: 23
2a04:200::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:6e:8d:cd:e1:67:ca:82:08:fa:02:83:5c:f5:15:e0:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b466ac0a49255283cd53066971cd7b3dfe2a3ce8
Validity
Not Before: Aug 5 15:09:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=15a476cdfcd1d8dcbe816b07fae57e7794add29e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a6:ca:9e:83:25:55:2c:69:ad:be:3a:2a:d3:
d1:2a:9c:2c:c8:e6:85:c9:7a:1e:dc:4f:ed:42:72:
d1:dd:ec:fa:01:58:f4:9e:75:e1:37:de:53:ec:84:
75:2a:f6:60:90:06:7e:ee:f0:67:87:17:df:e7:fc:
7a:73:bc:a4:75:93:43:4c:d1:4b:fd:4c:e8:ca:61:
d4:df:66:f3:2a:2f:09:85:2b:b8:96:80:87:9f:07:
1c:3e:4a:8c:a5:a8:8d:c3:55:99:ff:2e:a6:2a:3f:
53:8b:0d:2b:97:cd:14:46:68:34:6f:61:00:f6:dd:
f5:b8:5d:1c:c3:ef:88:b7:18:50:a9:c5:77:26:0d:
54:1c:c1:d8:6a:31:00:69:ca:25:46:e9:8f:d4:62:
3c:e9:92:19:31:50:43:cd:73:e4:d3:c9:31:ff:87:
c4:bd:c7:f4:bc:8b:4c:22:ed:e6:75:61:47:c0:be:
05:b7:d3:23:94:64:d9:a2:8a:f4:3f:56:a2:01:44:
c6:cb:ea:90:a8:0a:8b:21:b2:f3:f4:c2:98:9a:9d:
13:df:ca:c7:b1:36:a8:6c:e0:01:3f:3d:eb:ef:22:
9f:d0:2c:2d:bf:62:0b:89:27:ce:f1:dd:81:c1:53:
63:3f:cb:0a:55:37:21:91:72:d9:4a:2c:a1:ff:c7:
aa:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
15:A4:76:CD:FC:D1:D8:DC:BE:81:6B:07:FA:E5:7E:77:94:AD:D2:9E
X509v3 Authority Key Identifier:
keyid:B4:66:AC:0A:49:25:52:83:CD:53:06:69:71:CD:7B:3D:FE:2A:3C:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tGasCkklUoPNUwZpcc17Pf4qPOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/FaR2zfzR2Ny-gWsH-uV-d5St0p4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/133b52-7a66-41ab-aeee-c9b470dc240b/1/tGasCkklUoPNUwZpcc17Pf4qPOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.25.44.0/22
91.228.232.0-91.228.234.255
98.96.160.0/20
134.19.192.0/21
134.65.128.0/19
185.16.160.0/22
185.122.192.0/22
199.15.232.0/21
IPv6:
2a04:200::/29
Signature Algorithm: sha256WithRSAEncryption
1a:2b:a9:f0:35:a8:08:c5:0c:f0:a4:75:16:67:e2:d3:ed:d6:
e4:9e:3b:43:a5:45:ad:0d:1f:5b:de:ec:7c:36:7e:51:b9:30:
68:fa:fe:92:e6:c2:c9:52:c3:c2:bd:02:a1:eb:fa:87:f8:45:
9c:ac:5f:cd:75:f3:6a:f9:14:25:27:b7:f7:d0:c7:8b:91:ad:
b3:24:c5:d0:55:e2:4f:c3:62:9d:d0:a7:40:c6:a2:4a:61:48:
99:23:75:70:f1:16:72:5e:94:b8:03:09:f5:aa:26:88:2c:ef:
50:80:d2:87:28:26:d5:75:1c:c5:16:ce:9f:4e:d9:3b:88:be:
00:e1:c1:d3:8d:a6:ad:b3:c1:ca:cc:ab:d3:8a:47:6e:06:06:
f7:80:44:4a:e9:4d:dd:23:87:7c:34:0f:f8:80:f2:c1:04:65:
cb:30:56:b4:62:fd:38:ca:7b:cd:36:63:40:ea:58:9f:3b:29:
fd:b0:ee:a8:4d:2e:83:d6:90:14:22:b2:2d:3c:b8:2a:6e:4c:
a9:45:57:cf:4e:42:2b:b9:b0:2f:fd:57:ea:11:bf:eb:21:c0:
a8:20:42:02:a9:16:e6:05:c2:65:44:09:aa:39:52:52:cc:8c:
f6:81:be:56:14:6f:2c:fc:95:a6:37:1d:a6:bc:9c:a2:57:d5:
f8:47:43:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Dec 27 18:41:23 2023 by rpki-client on console.sobornost.net