Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/g5pY4BeX4zMl4A19XXMeee03ces.roa
File: g5pY4BeX4zMl4A19XXMeee03ces.roa (raw, json)
Hash identifier: eA0XTS2uFZciJM1EAVcZkyygbir3UByGB8BTOg7P0Dw=
Subject key identifier: 83:9A:58:E0:17:97:E3:33:25:E0:0D:7D:5D:73:1E:79:ED:37:71:EB
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 083DD7C3
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/g5pY4BeX4zMl4A19XXMeee03ces.roa
Signing time: Tue 18 Jan 2022 22:04:45 +0000
ROA not before: Tue 18 Jan 2022 22:04:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208258
IP address blocks: 45.151.112.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
195.60.176.0/24 maxlen: 24
195.60.177.0/24 maxlen: 24
194.146.48.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
45.159.192.0/24 maxlen: 24
2a0e:5540:100::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138270659 (0x83dd7c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Jan 18 22:04:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=839a58e01797e33325e00d7d5d731e79ed3771eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:97:42:d8:38:34:b9:5b:26:7a:c4:e5:b2:b4:
e8:72:82:b4:c4:f1:25:32:84:70:f5:37:f1:ed:4e:
c9:93:68:ac:c7:ff:9e:92:1e:ba:30:d8:5e:45:05:
ce:9f:da:07:85:dc:44:16:a9:e8:13:60:38:a6:82:
1c:ca:08:bb:98:1b:9f:cc:7a:38:3a:02:69:26:71:
60:cb:5b:73:89:a8:ac:6c:f3:42:c9:7b:22:b3:dd:
6a:ff:13:37:b6:25:80:b4:ab:1b:5b:24:26:07:5b:
f8:3e:63:47:40:2b:eb:70:8c:ef:20:bb:b2:41:bf:
b8:b6:e2:20:8f:c1:c3:fb:32:e5:b0:40:20:ac:59:
b8:9e:88:17:b4:94:e5:4a:42:2f:a7:75:ed:0d:5c:
b0:89:69:c4:b5:ab:6a:62:77:c9:63:56:66:3f:16:
26:01:7c:b0:b7:b4:1b:92:0e:21:3a:0a:26:2d:9d:
4c:b4:27:06:65:ef:55:b8:3c:c2:b0:cf:20:c7:56:
7c:c1:b0:f0:11:51:b4:13:71:13:d7:e2:52:c7:9d:
e4:92:95:5c:93:fd:57:a8:a9:ea:9c:b2:ab:6d:37:
b3:35:df:16:22:57:01:d9:44:0b:14:bf:6f:6f:7e:
f0:14:5c:6f:ae:bb:cd:65:cb:94:07:f7:7a:e5:a5:
dc:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:9A:58:E0:17:97:E3:33:25:E0:0D:7D:5D:73:1E:79:ED:37:71:EB
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/g5pY4BeX4zMl4A19XXMeee03ces.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.244.0/23
45.151.112.0/24
45.151.156.0-45.151.158.255
45.159.192.0/24
194.146.48.0/24
195.60.176.0/23
IPv6:
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
be:ed:04:38:a8:63:11:3c:0a:e5:0f:ce:75:3e:19:48:90:cb:
92:19:7d:93:12:af:62:5e:ea:0a:67:e7:a2:58:64:f2:53:6e:
18:6a:91:29:12:0b:0a:6f:af:40:71:d4:8f:6e:92:c7:78:63:
b4:38:7e:56:fd:8f:94:95:ff:39:60:36:a2:2c:15:9c:46:3a:
1c:96:25:61:60:e0:62:42:58:c5:fe:48:e8:25:3d:1b:42:4d:
1f:40:ad:a9:00:5c:4b:f0:5f:81:37:da:8f:7d:65:27:b1:a4:
8a:ff:52:93:59:dd:08:65:9e:5e:2c:95:f8:5a:48:90:ea:d2:
7e:cb:6f:1f:a9:b6:bd:1e:f2:c8:37:90:a3:be:b9:ee:29:ef:
b2:cb:a5:10:3f:94:45:92:73:30:c3:58:d4:4e:b4:7a:1f:fc:
30:9c:5e:89:44:88:97:b6:fa:62:6a:fc:09:97:21:0d:de:d5:
4d:96:ce:7c:1f:ed:7a:9a:8f:11:fa:1f:cf:5d:aa:10:97:54:
d1:6c:c6:9c:14:55:40:42:18:19:8f:34:80:2f:13:6d:28:09:
ce:bc:63:a7:a7:17:32:3d:c9:ce:70:b4:2a:dd:f0:c2:f9:94:
61:c6:b7:f4:7a:86:c5:ea:fe:c9:3c:09:56:0b:1d:1b:89:a3:
b6:f8:69:ee
-----BEGIN CERTIFICATE-----
MIIFJjCCBA6gAwIBAgIECD3XwzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NTU3Y2NkNDNhZmU4MTZlNDk1MzIyOGJmMTRhNzVkYzI5MDE0YjhkMB4XDTIyMDEx
ODIyMDQ0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODM5YTU4ZTAxNzk3
ZTMzMzI1ZTAwZDdkNWQ3MzFlNzllZDM3NzFlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANeXQtg4NLlbJnrE5bK06HKCtMTxJTKEcPU38e1OyZNorMf/
npIeujDYXkUFzp/aB4XcRBap6BNgOKaCHMoIu5gbn8x6ODoCaSZxYMtbc4morGzz
Qsl7IrPdav8TN7YlgLSrG1skJgdb+D5jR0Ar63CM7yC7skG/uLbiII/Bw/sy5bBA
IKxZuJ6IF7SU5UpCL6d17Q1csIlpxLWramJ3yWNWZj8WJgF8sLe0G5IOIToKJi2d
TLQnBmXvVbg8wrDPIMdWfMGw8BFRtBNxE9fiUsed5JKVXJP9V6ip6pyyq203szXf
FiJXAdlECxS/b29+8BRcb667zWXLlAf3euWl3MMCAwEAAaOCAkAwggI8MB0GA1Ud
DgQWBBSDmljgF5fjMyXgDX1dcx557Tdx6zAfBgNVHSMEGDAWgBS1V8zUOv6BbklT
IovxSnXcKQFLjTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RWZk0xRHItZ1c1SlV5S0w4VXAxM0NrQlM0MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGIvMTkwODQzLTE4MDMtNDQ2Mi1hNzk1LTZiYzc1NTc4YjRjMy8x
L2c1cFk0QmVYNHpNbDRBMTlYWE1lZWUwM2Nlcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGIv
MTkwODQzLTE4MDMtNDQ2Mi1hNzk1LTZiYzc1NTc4YjRjMy8xL3RWZk0xRHItZ1c1
SlV5S0w4VXAxM0NrQlM0MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBW
BggrBgEFBQcBBwEB/wRHMEUwMgQCAAEwLAMEAS2Q9AMEAC2XcDAMAwQCLZecAwQA
LZeeAwQALZ/AAwQAwpIwAwQBwzywMA8EAgACMAkDBwAqDlVAAQAwDQYJKoZIhvcN
AQELBQADggEBAL7tBDioYxE8CuUPznU+GUiQy5IZfZMSr2Je6gpn56JYZPJTbhhq
kSkSCwpvr0Bx1I9uksd4Y7Q4flb9j5SV/zlgNqIsFZxGOhyWJWFg4GJCWMX+SOgl
PRtCTR9ArakAXEvwX4E32o99ZSexpIr/UpNZ3Qhlnl4slfhaSJDq0n7Lbx+ptr0e
8sg3kKO+ue4p77LLpRA/lEWSczDDWNROtHof/DCcXolEiJe2+mJq/AmXIQ3e1U2W
znwf7XqajxH6H89dqhCXVNFsxpwUVUBCGBmPNIAvE20oCc68Y6enFzI9yc5wtCrd
8ML5lGHGt/R6hsXq/sk8CVYLHRuJo7b4ae4=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org