Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/00f66b-fe83-4ccd-82ee-c56f05da3d25/1/iwiyju6t4fk6xEp3x3g53qMSu6E.roa
File: iwiyju6t4fk6xEp3x3g53qMSu6E.roa (raw, json)
Hash identifier: 8s1PnvmOTl5QDwfgvJ8amERqbJ6PXCeDbVHvz61n5zw=
Subject key identifier: 8B:08:B2:8E:EE:AD:E1:F9:3A:C4:4A:77:C7:78:39:DE:A3:12:BB:A1
Certificate issuer: /CN=81665d6cf26d937484dbb4633743e0657eccdc5e
Certificate serial: 05AD3E12
Authority key identifier: 81:66:5D:6C:F2:6D:93:74:84:DB:B4:63:37:43:E0:65:7E:CC:DC:5E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWZdbPJtk3SE27RjN0PgZX7M3F4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/00f66b-fe83-4ccd-82ee-c56f05da3d25/1/iwiyju6t4fk6xEp3x3g53qMSu6E.roa
Signing time: Sat 01 Jan 2022 03:54:44 +0000
ROA not before: Sat 01 Jan 2022 03:54:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8495
IP address blocks: 45.135.106.0/24 maxlen: 24
2a0e:6b40:20::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95239698 (0x5ad3e12)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81665d6cf26d937484dbb4633743e0657eccdc5e
Validity
Not Before: Jan 1 03:54:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b08b28eeeade1f93ac44a77c77839dea312bba1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8a:54:8f:cc:e5:3b:df:69:02:16:ab:88:4a:
22:06:68:e8:0b:e2:99:dd:dc:b6:5f:7f:e4:48:c5:
bd:22:bc:b6:6b:c9:37:2f:1b:b0:64:2e:bb:d1:f0:
8a:17:51:ed:04:99:1a:44:10:df:9b:f2:31:78:c8:
42:2f:c4:63:5a:9f:33:5d:12:5b:29:ec:ea:1e:df:
63:25:ff:b3:87:91:a0:03:a3:c9:a8:84:d6:e8:ea:
dc:a6:48:1e:94:55:cb:f0:63:c8:bd:06:43:9c:14:
33:ca:6e:30:5b:d7:50:5f:19:2d:7f:57:47:00:ab:
ff:33:91:fc:ea:9b:71:81:0d:97:a2:9f:80:a7:13:
4b:d2:cd:dc:3d:67:45:8b:26:a4:f2:53:56:b4:a9:
1e:9c:96:f3:13:f8:29:d3:65:d6:f0:df:0c:40:6c:
38:ed:78:5a:23:5b:28:77:7b:93:04:1d:07:fe:dc:
6a:06:65:ea:18:6c:eb:f1:20:0f:f3:0e:d3:cb:3c:
f5:4f:42:a8:57:17:88:fa:fe:c1:62:80:45:ba:3f:
d5:3d:2d:9c:58:51:eb:59:b8:d1:d6:eb:5a:81:b8:
19:44:d3:c4:16:ce:5b:c0:d5:a8:4e:6e:b4:a3:a8:
41:aa:ea:b5:29:69:61:ef:b0:58:09:9f:a6:1f:08:
b8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:08:B2:8E:EE:AD:E1:F9:3A:C4:4A:77:C7:78:39:DE:A3:12:BB:A1
X509v3 Authority Key Identifier:
keyid:81:66:5D:6C:F2:6D:93:74:84:DB:B4:63:37:43:E0:65:7E:CC:DC:5E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWZdbPJtk3SE27RjN0PgZX7M3F4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/00f66b-fe83-4ccd-82ee-c56f05da3d25/1/iwiyju6t4fk6xEp3x3g53qMSu6E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/00f66b-fe83-4ccd-82ee-c56f05da3d25/1/gWZdbPJtk3SE27RjN0PgZX7M3F4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.106.0/24
IPv6:
2a0e:6b40:20::/48
Signature Algorithm: sha256WithRSAEncryption
08:aa:61:2d:33:e2:fb:c7:41:ab:64:b1:83:89:2a:70:a2:38:
49:d7:3a:a0:22:5d:20:06:db:b3:5d:eb:76:ef:93:ce:6c:f1:
5e:67:d5:80:8e:c4:da:4a:da:98:04:49:4b:39:c5:ce:b7:b0:
dc:a9:ae:d9:ac:92:7a:7d:22:62:8a:42:90:99:76:ad:7f:9b:
c5:d4:bc:88:de:25:83:f0:f1:4f:23:a8:de:a0:da:9f:c3:f9:
df:6e:7d:ac:a1:f9:8c:62:7f:ad:85:a5:1e:59:cd:5c:fb:0e:
69:c3:fb:00:27:24:47:75:69:43:98:b5:d4:c0:d5:90:17:61:
10:50:15:16:8b:dc:92:67:fa:5c:22:dd:81:de:65:37:b6:a1:
16:b0:bd:f4:dd:1b:a3:f9:64:b8:50:08:24:a1:c0:8c:39:a0:
fb:ae:eb:2a:7f:f1:2b:f4:29:0d:02:1c:19:82:1d:d5:fe:94:
4a:76:2e:a8:98:73:b9:88:a3:aa:62:98:aa:af:ec:10:31:b1:
47:e9:02:d0:73:aa:e5:b1:4d:16:08:56:7b:a0:42:c4:36:67:
66:6f:6c:6a:9c:d4:f2:66:ef:c7:c6:23:34:39:e3:a9:b5:c0:
8b:b1:3c:14:c2:12:1d:82:d7:99:21:7e:1a:4e:9e:0f:0f:ee:
7f:39:c6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:42:34 2023 by rpki-client on console-fra.rpki-client.org