Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/ju04wURZKapnxkpJHoUOIEOCnUU.roa
File: ju04wURZKapnxkpJHoUOIEOCnUU.roa (raw, json)
Hash identifier: uQzoFLQ2w0aOZPtVje7r6Qya1C2Wk300uZ/PwF9eez0=
Subject key identifier: 8E:ED:38:C1:44:59:29:AA:67:C6:4A:49:1E:85:0E:20:43:82:9D:45
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 08EEDBF6
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/ju04wURZKapnxkpJHoUOIEOCnUU.roa
Signing time: Thu 24 Mar 2022 09:59:43 +0000
ROA not before: Thu 24 Mar 2022 09:59:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210489
IP address blocks: 45.135.96.0/23 maxlen: 23
45.135.98.0/23 maxlen: 23
185.222.32.0/23 maxlen: 23
185.222.34.0/23 maxlen: 23
45.141.16.0/23 maxlen: 23
45.141.18.0/23 maxlen: 23
46.161.220.0/23 maxlen: 23
46.161.222.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149871606 (0x8eedbf6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Mar 24 09:59:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8eed38c1445929aa67c64a491e850e2043829d45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:35:62:77:24:6b:20:be:f8:5d:51:e8:b8:22:
79:b5:8f:f4:ec:bd:87:75:c6:8d:44:4a:3b:8f:2a:
f1:69:df:81:80:f6:38:d3:b8:eb:c0:13:1a:f4:d3:
62:2d:88:be:52:4c:bf:59:ce:87:6a:6f:f0:2c:4d:
c3:02:72:6c:77:18:f4:44:0a:af:38:77:6b:be:46:
0a:40:5f:4b:e0:e9:cb:5c:4a:b0:14:ff:fe:a6:94:
cd:12:15:0c:33:17:0c:1e:44:5e:d6:b9:eb:e5:f6:
3c:9b:0e:7b:5e:23:74:43:bb:d8:34:35:95:76:40:
ff:5c:bb:32:29:71:6e:5d:94:6c:d8:42:fb:61:ca:
5f:ba:ad:3f:fa:6a:7d:2f:9c:66:62:34:c1:79:d0:
14:ab:07:cd:c3:65:a7:9a:e8:38:7d:5e:99:29:f7:
87:f8:50:dd:7e:ab:5f:57:ae:84:76:7c:eb:d9:f0:
f0:13:a3:35:20:5c:bc:9e:5e:05:8f:e7:ee:be:a0:
50:52:ed:66:cf:69:fa:21:91:6d:ca:57:36:0f:16:
61:f2:7c:f3:aa:f7:fd:96:fc:ff:17:88:be:58:ee:
52:ea:98:62:63:27:b8:19:88:ff:48:2a:42:77:c7:
b5:b1:80:f0:e9:2d:d0:e9:56:bd:b6:e7:88:f1:e7:
5a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:ED:38:C1:44:59:29:AA:67:C6:4A:49:1E:85:0E:20:43:82:9D:45
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/ju04wURZKapnxkpJHoUOIEOCnUU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.135.96.0/22
45.141.16.0/22
46.161.220.0/22
185.222.32.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:7c:e3:5f:b9:a8:10:9a:15:27:26:01:29:0c:60:1a:7d:5a:
b2:f2:46:77:b8:c6:f2:40:0a:5d:b2:41:00:84:18:56:ba:02:
a4:0b:a7:64:4c:bd:e5:6f:be:db:bb:92:12:0a:42:8a:71:b1:
75:88:dc:bb:3d:fb:fc:71:ff:e2:b9:77:6a:6e:bf:b4:a8:84:
7a:c3:e4:e2:62:b3:dd:a6:15:ca:72:cd:2d:1a:34:9d:b0:fa:
a4:6b:27:a1:f4:be:31:e4:d1:6e:d9:cc:c3:8b:6c:79:9c:5e:
73:59:53:df:c9:56:3a:0f:e3:be:96:e5:23:6b:bd:07:84:c2:
79:1a:47:2b:39:1c:3c:31:08:dd:22:5e:4b:36:fb:ca:9a:00:
ae:e0:c9:3d:09:8e:78:ff:53:3f:99:07:b4:2f:fe:e8:98:cd:
57:d3:08:ea:65:93:e5:82:50:3f:ba:c1:d6:7a:69:40:d5:19:
36:5b:8f:c0:e7:50:28:45:78:6c:35:47:67:7b:18:bf:75:56:
ba:c5:1f:99:6f:df:bc:74:eb:6b:c1:fe:5b:d8:0f:8e:70:70:
af:a9:0e:ad:44:a5:08:81:75:72:67:3b:c7:a3:1a:74:6f:06:
3e:72:1d:63:65:3e:1a:81:e3:d4:6f:87:e1:21:6e:5f:0f:d0:
0d:df:7d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:17 2024 by rpki-client on console-ams.rpki-client.org