Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8HWYSpZFi4PxrnT0uJKgHZMy0IE.roa
File: 8HWYSpZFi4PxrnT0uJKgHZMy0IE.roa (raw, json)
Hash identifier: 0cBJID2PS4SzpL/rhib11IBYLCkC41ppYqwvd9ZLw9I=
Subject key identifier: F0:75:98:4A:96:45:8B:83:F1:AE:74:F4:B8:92:A0:1D:93:32:D0:81
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0182B650B58CF00BC4F58002809626EFB966
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8HWYSpZFi4PxrnT0uJKgHZMy0IE.roa
Signing time: Fri 19 Aug 2022 13:35:18 +0000
ROA not before: Fri 19 Aug 2022 13:35:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 398127
IP address blocks: 45.133.74.0/24 maxlen: 24
45.133.73.0/24 maxlen: 24
45.81.251.0/24 maxlen: 24
45.81.250.0/24 maxlen: 24
45.81.248.0/24 maxlen: 24
152.89.255.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b6:50:b5:8c:f0:0b:c4:f5:80:02:80:96:26:ef:b9:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Aug 19 13:35:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f075984a96458b83f1ae74f4b892a01d9332d081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:d7:39:12:fd:5f:91:c0:75:45:00:7c:dc:10:
4d:3a:7d:f2:62:65:a1:30:92:05:98:9a:b6:2e:1a:
0a:37:5d:11:fb:8a:7f:1f:7b:35:e8:c4:8e:12:2c:
52:0b:38:11:fd:02:8e:d1:c1:0e:a6:3a:d9:14:b1:
78:e6:b7:d6:14:3c:96:33:7d:fb:d9:18:53:eb:55:
30:c0:aa:59:a7:5b:82:61:11:7f:1c:86:84:2d:60:
a1:cc:f3:4c:d1:6f:32:b3:dc:99:c8:c7:b1:d7:b8:
4f:2f:75:08:64:bd:09:6d:9e:5c:28:47:1b:c5:db:
ab:15:d2:f4:23:e7:81:89:ca:64:df:4b:fe:86:65:
10:5e:30:9a:ee:66:57:f4:3e:f4:77:a5:87:79:1b:
dc:1f:12:bb:f9:1b:cf:22:8f:a0:f0:5d:3b:1c:93:
b3:54:50:b4:7f:6b:03:70:46:e4:8b:23:8c:13:81:
7c:46:4b:a5:e3:71:cb:d1:ab:8f:dc:7b:da:bc:41:
08:0d:12:83:ea:61:92:bc:5e:2e:ed:35:f7:25:ba:
b7:d7:87:f7:96:a1:9d:55:4f:33:63:6d:64:5d:df:
f6:e1:03:d0:9a:56:cb:30:f5:fa:8c:d1:a1:5f:b1:
a1:a1:74:94:aa:f4:ff:46:c9:99:dd:cf:4a:5d:1d:
57:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:75:98:4A:96:45:8B:83:F1:AE:74:F4:B8:92:A0:1D:93:32:D0:81
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8HWYSpZFi4PxrnT0uJKgHZMy0IE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.248.0/24
45.81.250.0/23
45.133.73.0-45.133.74.255
152.89.255.0/24
Signature Algorithm: sha256WithRSAEncryption
24:d3:a8:73:be:03:5e:18:6f:61:e7:3b:f2:40:cd:dd:b9:28:
0e:9f:7b:d9:e9:be:3e:13:b6:7e:2f:15:26:68:82:c3:62:66:
00:6f:d8:c1:d6:80:c5:e8:ce:d0:dd:cb:b2:d1:49:2b:b3:9f:
49:ce:9b:e9:e4:f6:10:fc:22:3a:99:eb:f5:77:01:39:0f:0c:
6b:04:98:e7:55:ad:ac:8f:9b:1f:bc:a1:d9:f8:b6:bf:78:ff:
e5:4d:c4:51:60:48:e1:c9:cb:db:6e:34:96:c1:90:10:bf:34:
6a:20:b7:dc:bc:e7:33:ab:ef:6e:23:e5:7c:d4:1f:8f:de:6e:
5b:fd:04:d0:aa:2f:c7:36:f3:74:92:19:1a:cc:ef:0b:8f:01:
76:b0:e8:aa:3d:8e:7b:cd:c4:5e:aa:35:5c:20:2c:60:fb:81:
c3:41:16:3b:24:f7:41:4c:8c:1a:6f:ac:59:9b:c6:27:bf:35:
f5:e4:eb:d3:89:e9:53:d4:b4:8d:7a:96:59:f9:fa:e4:8e:99:
14:b5:ae:2a:d0:52:03:91:e1:eb:bd:36:23:c1:91:84:a4:e2:
0e:34:18:aa:70:35:33:e8:77:18:77:e6:0f:50:e6:60:7d:9f:
ed:d0:7c:48:9d:39:a6:22:18:d8:49:ef:1b:ff:05:ce:1a:7a:
37:53:83:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:18 2023 by rpki-client on console-ams.rpki-client.org