Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/RdfmBEVWMicyvakC05cIYp2UkQw.roa
File: RdfmBEVWMicyvakC05cIYp2UkQw.roa (raw, json)
Hash identifier: z57TaLT0ObSOTbsJW3Q/gX261ryfBVYMlEJGPwvOrXg=
Subject key identifier: 45:D7:E6:04:45:56:32:27:32:BD:A9:02:D3:97:08:62:9D:94:91:0C
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A530DDF
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/RdfmBEVWMicyvakC05cIYp2UkQw.roa
Signing time: Thu 07 Apr 2022 07:33:44 +0000
ROA not before: Thu 07 Apr 2022 07:33:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49581
IP address blocks: 45.134.36.0/24 maxlen: 24
185.117.3.0/24 maxlen: 24
45.13.227.0/24 maxlen: 24
5.253.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 173215199 (0xa530ddf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Apr 7 07:33:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45d7e6044556322732bda902d39708629d94910c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2f:5b:b5:6a:75:f3:61:ac:85:d0:74:88:2b:
e2:7d:b8:a5:54:f0:3d:c1:c1:4f:18:27:6d:8d:ee:
3e:ad:cc:63:bf:dd:fc:4b:3c:77:72:3f:33:f8:db:
63:d5:e6:67:b9:e6:5f:bf:78:ba:03:6f:74:a1:4d:
ad:c8:7c:fa:cc:f9:35:c3:59:5e:aa:42:37:14:2a:
78:97:68:45:c4:61:35:a8:bd:7d:c1:ab:65:b4:aa:
f1:4b:83:e8:f4:9d:14:39:34:68:91:07:fd:d9:5f:
f6:3d:e5:fe:59:2b:9b:bf:42:e8:9b:5c:da:bf:a0:
55:06:23:ff:c7:b1:2d:34:1b:af:3a:42:e1:14:c8:
96:40:13:58:1b:75:46:dc:e5:dd:e3:c7:77:bc:94:
da:86:05:f2:9e:ce:51:f8:4b:ef:73:95:d2:cd:f1:
52:2f:28:3b:a1:1c:97:08:c5:60:6b:85:d7:e2:40:
45:91:9e:e6:fa:d1:55:6d:4a:64:3d:88:96:c6:fd:
0c:fc:a1:ee:27:20:ed:0b:16:b4:c7:9f:bb:e1:f6:
e6:68:97:1d:e7:f7:53:7e:aa:a8:ff:58:51:08:87:
5d:f0:8e:4e:20:2b:b7:e3:06:7f:6f:e0:df:4f:81:
35:8b:85:4f:33:26:08:5f:d9:91:1b:06:d7:f1:d0:
f9:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:D7:E6:04:45:56:32:27:32:BD:A9:02:D3:97:08:62:9D:94:91:0C
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/RdfmBEVWMicyvakC05cIYp2UkQw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.253.246.0/24
45.13.227.0/24
45.134.36.0/24
185.117.3.0/24
Signature Algorithm: sha256WithRSAEncryption
00:06:64:5e:b8:90:f5:aa:2f:35:fd:0e:11:76:b5:44:23:e6:
12:9c:8c:c3:78:33:ac:3a:c6:fa:d0:5c:33:16:17:0a:40:af:
83:4c:2b:62:b5:cf:19:47:a4:d8:61:59:6d:58:4d:a6:a8:f8:
83:dc:e2:13:a8:58:b5:a2:8e:4c:d7:dd:5e:10:92:09:cd:34:
0d:6d:ef:8b:16:7d:18:13:2a:b7:f5:da:12:0a:37:0d:a4:fc:
dd:fe:7e:13:83:77:ae:44:96:cf:b5:54:8d:c1:59:8e:07:d6:
78:94:52:2c:43:fc:d7:1b:7a:9e:4a:41:2e:ef:dd:7c:d0:57:
7d:b6:e7:ff:0c:4e:7b:e7:93:3c:88:bf:34:5c:b9:5f:9f:ef:
22:ac:d4:4c:08:89:c9:a4:85:fe:2c:88:73:e9:9b:42:e2:c4:
d6:af:eb:69:3b:f5:e8:8d:d6:c1:2e:cc:d8:9a:00:d4:58:ca:
13:9d:92:ae:27:2a:de:13:dd:ca:c5:a4:fa:fd:d3:8f:b4:38:
65:ed:b6:a8:6c:76:8b:50:cb:99:f9:20:5d:4d:90:57:03:45:
4e:18:07:62:bb:ff:9c:20:d9:5e:f3:98:e8:77:4e:32:83:db:
31:d5:63:0f:4a:f8:5e:bb:6c:cb:b5:0f:c3:65:15:d8:40:dd:
50:70:6f:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:19 2023 by rpki-client on console-ams.rpki-client.org