Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/h4XDvf-GzqsxnemHD7r83jwXs0w.roa
File: h4XDvf-GzqsxnemHD7r83jwXs0w.roa (raw, json)
Hash identifier: Xdb5TVp7odyRci4VdnkL9KhkLq2B6DqfW3TbXw6XRvw=
Subject key identifier: 87:85:C3:BD:FF:86:CE:AB:31:9D:E9:87:0F:BA:FC:DE:3C:17:B3:4C
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 0961215E
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/h4XDvf-GzqsxnemHD7r83jwXs0w.roa
Signing time: Tue 03 May 2022 07:58:27 +0000
ROA not before: Tue 03 May 2022 07:58:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208258
IP address blocks: 185.243.112.0/24 maxlen: 24
185.243.113.0/24 maxlen: 24
185.228.83.0/24 maxlen: 24
185.227.82.0/24 maxlen: 24
185.208.208.0/24 maxlen: 24
185.208.209.0/24 maxlen: 24
185.208.210.0/24 maxlen: 24
45.140.10.0/24 maxlen: 24
45.151.156.0/23 maxlen: 24
45.151.158.0/24 maxlen: 24
45.144.244.0/23 maxlen: 24
195.26.7.0/24 maxlen: 24
2a0b:3c40:17::/48 maxlen: 48
2a0b:3c40:12::/48 maxlen: 48
2a0e:5540:11::/48 maxlen: 48
2a0b:3c40:fca6::/48 maxlen: 48
2a0b:3c40:1::/48 maxlen: 48
2a0e:5540::/48 maxlen: 48
2a0e:5540:100::/48 maxlen: 48
2a0b:3c40:20::/48 maxlen: 48
2a0b:3c40:16::/48 maxlen: 48
2a0b:3c40:11::/48 maxlen: 48
2a0e:5540:10::/48 maxlen: 48
2a0b:3c40:15::/48 maxlen: 48
2a0e:5540:12::/48 maxlen: 48
2a0b:3c40:9::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 157360478 (0x961215e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 3 07:58:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8785c3bdff86ceab319de9870fbafcde3c17b34c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:4d:e9:1e:e7:4f:9c:46:5f:ff:4a:ba:a9:47:
b6:11:4f:7b:13:96:38:bc:eb:6f:5b:e4:49:85:07:
aa:1c:cf:28:db:08:61:2a:be:b4:18:7a:fe:4b:ac:
75:bc:9d:4a:f0:33:36:55:2d:27:a2:1b:b3:22:f8:
54:7c:a3:bc:9a:92:d0:b7:23:a2:34:42:3f:5f:bb:
8a:1c:bd:c6:6c:2f:e6:ff:bc:0e:1e:16:32:01:60:
28:52:0f:4c:f0:80:eb:58:1e:88:5a:1e:04:0b:92:
24:05:41:a1:74:af:ac:62:84:40:2c:d8:1a:f2:11:
bc:53:bf:56:5b:ae:24:fa:37:6d:e9:b8:0d:0b:65:
3b:e4:32:cc:2f:ed:6a:de:ff:c4:fd:a7:45:e2:40:
ec:46:12:6b:cb:fb:1c:aa:1d:4a:03:69:bf:76:0e:
dc:84:1e:c0:d4:3c:63:b6:98:39:49:af:47:a9:d6:
bb:47:c4:dc:52:57:5d:17:0d:88:33:32:1a:58:72:
ac:16:f7:be:0c:f9:76:31:5b:fa:50:f5:9f:26:69:
97:7d:10:74:c8:87:30:26:2b:bd:d2:9e:c0:fb:8e:
4b:21:10:e3:f5:e1:2a:ac:49:71:e4:2d:ef:8b:ef:
07:ed:17:18:bd:78:db:15:28:aa:50:80:96:20:f7:
74:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:85:C3:BD:FF:86:CE:AB:31:9D:E9:87:0F:BA:FC:DE:3C:17:B3:4C
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/h4XDvf-GzqsxnemHD7r83jwXs0w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.10.0/24
45.144.244.0/23
45.151.156.0-45.151.158.255
185.208.208.0-185.208.210.255
185.227.82.0/24
185.228.83.0/24
185.243.112.0/23
195.26.7.0/24
IPv6:
2a0b:3c40:1::/48
2a0b:3c40:9::/48
2a0b:3c40:11::-2a0b:3c40:12:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:15::-2a0b:3c40:17:ffff:ffff:ffff:ffff:ffff
2a0b:3c40:20::/48
2a0b:3c40:fca6::/48
2a0e:5540::/48
2a0e:5540:10::-2a0e:5540:12:ffff:ffff:ffff:ffff:ffff
2a0e:5540:100::/48
Signature Algorithm: sha256WithRSAEncryption
11:d5:ae:e3:55:ad:a9:11:5f:bb:a7:36:84:69:60:d1:82:38:
7e:82:b5:30:88:61:44:0c:44:4b:a4:8d:ad:ef:7d:cc:73:ee:
9d:7d:6e:09:72:54:7d:ae:ec:29:d0:d7:56:f8:d2:04:68:94:
90:79:2a:b4:36:94:49:22:12:36:23:e1:36:80:49:80:12:21:
40:89:29:68:ca:e1:35:66:20:c6:93:cf:27:3b:be:0e:6f:20:
aa:9c:1b:1e:fe:12:33:24:62:b3:0e:2e:29:08:96:c6:af:8a:
87:67:73:fb:09:66:8c:de:39:74:c3:16:26:de:15:43:a5:dc:
9d:00:ea:51:a7:38:c7:18:ac:56:69:6a:57:6b:e7:cc:6d:0a:
03:73:1b:b2:32:13:50:01:51:fd:c9:1d:c2:c9:5a:7e:a0:63:
b1:ee:11:0f:ef:76:27:92:81:be:9f:15:fc:b4:fc:ff:38:aa:
1b:04:37:84:3b:10:4b:87:85:f8:64:30:6e:64:46:e9:fc:d2:
01:33:b0:ea:c1:e7:d1:6f:56:76:a9:8f:b0:28:88:71:77:e0:
e5:a3:7b:c6:0e:69:d7:c1:14:2d:40:76:0b:da:a7:e3:12:7f:
30:fe:c5:49:27:5f:23:6d:15:61:f2:62:04:31:01:30:a0:01:
b6:c4:fc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org