Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1pu7amEi0J8Jj4ywPeEio2Ve_LU.roa
File: 1pu7amEi0J8Jj4ywPeEio2Ve_LU.roa (raw, json)
Hash identifier: t8uhk5u8V3TeDRqtbj2awANHiQ+k/9blPqGxiId2JMU=
Subject key identifier: D6:9B:BB:6A:61:22:D0:9F:09:8F:8C:B0:3D:E1:22:A3:65:5E:FC:B5
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A369EDE
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1pu7amEi0J8Jj4ywPeEio2Ve_LU.roa
Signing time: Sun 27 Mar 2022 06:04:48 +0000
ROA not before: Sun 27 Mar 2022 06:04:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398127
IP address blocks: 45.133.74.0/24 maxlen: 24
45.133.73.0/24 maxlen: 24
45.86.155.0/24 maxlen: 24
45.81.251.0/24 maxlen: 24
45.81.250.0/24 maxlen: 24
45.81.248.0/24 maxlen: 24
152.89.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 171351774 (0xa369ede)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Mar 27 06:04:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d69bbb6a6122d09f098f8cb03de122a3655efcb5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1a:ae:b1:8e:09:57:e0:ed:17:cd:1f:f1:56:
47:08:03:e7:0d:b2:ca:e4:77:fc:7d:e8:1a:1b:ef:
f5:c5:4c:aa:6f:3d:7d:21:1f:05:51:44:f1:82:d3:
d0:8d:55:1c:98:8c:70:00:d9:87:8d:3e:38:2c:d3:
e7:d6:de:ac:de:98:38:97:f1:c9:74:e3:91:3b:1e:
52:07:ea:db:3e:d2:0b:d6:6f:22:20:c5:27:83:9c:
60:21:7d:df:f7:a4:92:1e:4f:8f:d6:24:48:4d:b6:
b1:ba:97:7f:27:98:4a:44:c0:1e:1f:73:57:02:b1:
75:99:5d:23:ec:61:bc:3a:c4:0e:c1:e4:0b:69:c8:
d9:53:90:ee:be:19:ac:35:12:13:39:f5:2a:96:42:
d4:ed:7b:e1:1c:ae:27:12:74:44:76:34:a1:98:ae:
0e:33:a5:86:f6:85:52:be:27:39:fb:18:ed:7e:e2:
c7:bb:c9:88:a9:82:ce:f6:e9:db:ea:f0:28:5e:ff:
37:2e:67:10:0d:1a:b1:c5:43:37:10:f4:51:c8:eb:
21:33:fe:40:4b:b9:87:90:db:df:55:46:6f:12:ce:
76:32:34:35:81:fb:21:47:28:a8:12:ed:a6:d4:fe:
4a:74:33:01:db:08:63:a9:12:2b:12:fc:8d:5f:3b:
e0:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:9B:BB:6A:61:22:D0:9F:09:8F:8C:B0:3D:E1:22:A3:65:5E:FC:B5
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/1pu7amEi0J8Jj4ywPeEio2Ve_LU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.248.0/24
45.81.250.0/23
45.86.155.0/24
45.133.73.0-45.133.74.255
152.89.255.0/24
Signature Algorithm: sha256WithRSAEncryption
1f:f1:69:9b:05:0d:00:61:3a:45:63:fb:21:d4:cb:c5:d6:48:
3d:dd:88:0d:34:08:48:a6:18:55:d4:7d:a8:ee:75:76:9e:36:
59:19:5c:33:29:06:ce:6f:42:f2:05:86:a7:68:f2:a1:c8:f2:
e5:b5:1b:05:b3:5f:34:ca:46:0b:d7:10:31:ac:de:46:6c:72:
2b:9a:8f:7a:f2:f7:78:91:70:4f:cc:12:76:3d:19:5c:18:d4:
05:e1:1c:5a:cd:2b:44:3b:30:87:53:c4:05:59:07:ec:d1:a3:
75:2b:5f:ec:13:2d:8d:d3:d2:f9:5a:6d:f4:4a:03:9e:0f:2e:
9e:5c:82:22:7e:b1:be:38:c6:38:7b:a4:3f:71:bf:40:cc:5f:
b2:49:d1:fb:f4:aa:17:f4:40:34:50:35:26:e4:e6:a9:e6:62:
8d:90:93:8a:77:0b:d5:46:4f:3f:ba:b9:3b:29:d9:ff:91:a1:
7b:14:84:af:71:10:f7:f7:27:70:81:8d:2e:1e:22:c6:58:f6:
67:5d:05:ff:02:d2:4a:3d:96:d9:39:3c:f5:b1:d6:fe:22:3f:
dc:c3:94:aa:17:9a:35:1f:21:75:f4:f9:16:28:6d:d8:80:6d:
c3:43:48:07:e5:77:f8:41:74:f8:28:b9:e1:60:0d:dc:19:6f:
d9:a4:00:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:30 2023 by rpki-client on console-fra.rpki-client.org