Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/IQr4JIMVQx-X0M4653hsZD08q7E.roa
File: IQr4JIMVQx-X0M4653hsZD08q7E.roa (raw, json)
Hash identifier: qI2Kzp9K08gAIEAQ50bRTp9g1OqsNjnA21cbgJHb8vc=
Subject key identifier: 21:0A:F8:24:83:15:43:1F:97:D0:CE:3A:E7:78:6C:64:3D:3C:AB:B1
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 06999C9B
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/IQr4JIMVQx-X0M4653hsZD08q7E.roa
Signing time: Sat 01 Jan 2022 11:03:18 +0000
ROA not before: Sat 01 Jan 2022 11:03:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57844
IP address blocks: 45.83.152.0/22 maxlen: 24
45.139.44.0/22 maxlen: 24
45.139.56.0/22 maxlen: 24
45.83.124.0/22 maxlen: 24
45.83.132.0/22 maxlen: 24
45.83.136.0/22 maxlen: 24
45.83.144.0/22 maxlen: 24
45.139.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110730395 (0x6999c9b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Jan 1 11:03:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=210af8248315431f97d0ce3ae7786c643d3cabb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:11:f2:3a:36:16:fe:26:1d:7d:ab:06:c7:08:
38:0d:3d:4c:1a:83:a0:de:ae:27:6d:ab:39:71:18:
ce:68:81:90:35:33:c6:4d:8e:c9:ae:14:ee:3a:b2:
4d:c0:eb:f5:cd:20:63:02:59:44:d7:84:1e:1d:7e:
82:2f:4b:15:a7:bb:a0:24:ec:96:6e:8e:85:90:39:
c3:a8:5d:6e:94:eb:a1:a9:8c:ba:0d:83:8a:cd:f4:
7a:aa:98:3e:63:de:3a:b4:9a:8a:c4:3c:0c:d2:0d:
10:ad:c4:0c:c1:e3:c7:ed:53:b5:f5:b8:eb:94:b3:
98:f1:5b:f0:4a:84:cb:8d:a9:af:95:0c:4b:0f:32:
1f:e2:41:58:e3:a1:b3:b4:9f:cd:34:89:16:06:ca:
0f:eb:14:fd:1a:ec:5d:ab:40:aa:f6:07:10:75:f0:
0d:6d:e5:6f:56:11:bf:f4:51:1c:20:2b:6c:6e:14:
6f:eb:f2:e9:8b:91:ff:b7:9f:bc:1e:26:90:94:9e:
9e:d3:8f:2c:03:0e:be:61:dc:9a:6d:d2:c1:9e:fa:
ef:31:96:78:09:30:33:c0:42:d6:7b:94:85:89:e6:
ac:52:ee:7b:73:99:c1:60:fd:01:d8:a2:ef:79:11:
19:23:51:ea:c1:e9:8c:e1:2c:2b:d4:65:6d:31:0a:
54:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:0A:F8:24:83:15:43:1F:97:D0:CE:3A:E7:78:6C:64:3D:3C:AB:B1
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/IQr4JIMVQx-X0M4653hsZD08q7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.124.0/22
45.83.132.0-45.83.139.255
45.83.144.0/22
45.83.152.0/22
45.139.36.0/22
45.139.44.0/22
45.139.56.0/22
Signature Algorithm: sha256WithRSAEncryption
ae:63:d5:66:43:d5:ea:d6:15:99:f8:d2:4e:4a:fa:b8:16:3d:
cc:4b:37:62:61:4d:61:03:21:6b:19:49:f3:00:a7:2f:d3:75:
87:ad:33:3d:72:03:a0:34:09:65:e4:00:3a:95:ae:31:2e:3f:
3e:80:e6:22:26:73:3e:ac:7d:f1:e8:df:b8:79:80:76:33:a9:
a7:70:39:04:dc:6c:4a:37:92:b7:69:d9:72:e8:7e:8a:8a:bb:
4d:56:a8:08:c7:be:c2:8a:1d:23:5a:f9:27:7e:a6:ba:ef:ae:
e3:ce:af:c1:26:73:52:fb:44:88:01:68:cf:99:66:3a:99:bd:
89:d3:58:16:49:ca:58:6d:5e:45:5d:04:0b:7a:1d:d0:a9:25:
9a:74:c0:0e:40:8c:e0:c7:2c:f3:8a:e4:b6:95:27:f3:d1:32:
ed:f6:13:bc:42:aa:e2:61:48:b0:fe:17:e7:38:7d:de:21:4b:
eb:29:b2:66:c6:fa:ad:06:84:17:a5:24:c7:cf:e1:7b:18:4e:
b4:4a:92:cf:18:86:63:4d:56:55:2d:8c:58:83:48:ef:ee:8f:
41:09:4f:9f:25:33:69:3e:0f:0b:f9:36:c4:10:ca:50:54:28:
63:25:f8:45:9d:88:8e:44:8c:78:22:c0:d2:f7:11:14:b4:f5:
35:23:32:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:51:18 2024 by rpki-client on console-ams.rpki-client.org