Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/iejtTXKZnaSs8mNz7WImlT7xgVo.roa
File: iejtTXKZnaSs8mNz7WImlT7xgVo.roa (raw, json)
Hash identifier: Fii+dPhZlh58UD54ZfFgOgkjvcu4MHbLWxuGKI6FGjM=
Subject key identifier: 89:E8:ED:4D:72:99:9D:A4:AC:F2:63:73:ED:62:26:95:3E:F1:81:5A
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0AD7F0DC
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/iejtTXKZnaSs8mNz7WImlT7xgVo.roa
Signing time: Wed 12 Jan 2022 15:11:46 +0000
ROA not before: Wed 12 Jan 2022 15:11:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206119
IP address blocks: 185.169.180.0/24 maxlen: 24
45.133.37.0/24 maxlen: 24
45.133.36.0/24 maxlen: 24
45.133.38.0/24 maxlen: 24
185.174.21.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181924060 (0xad7f0dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 12 15:11:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=89e8ed4d72999da4acf26373ed6226953ef1815a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:67:35:47:a1:1a:74:93:d8:0d:dc:7f:10:91:
29:d2:d9:f9:04:a0:c8:f6:98:eb:f3:dc:c0:d1:8a:
9a:c9:b8:c2:e4:0f:53:8d:83:e0:02:0b:d2:60:d4:
b4:a8:ba:cb:3a:63:d7:f8:34:15:16:08:39:9b:a4:
e3:06:dc:3a:b4:ca:ab:05:28:65:4f:6a:d0:61:ad:
7a:d8:24:ed:b2:8e:15:2f:49:83:f0:0d:6c:74:89:
67:a1:25:ac:b0:b3:57:65:4b:8a:e6:14:56:c7:75:
b0:31:eb:ae:eb:0d:b7:38:b3:a7:32:e0:8c:0a:05:
21:07:73:cb:45:30:0f:49:9b:c1:d4:7f:b3:f6:cd:
2e:34:b9:47:63:a1:58:dc:20:c0:a2:4a:24:0d:82:
49:4f:cc:b7:5d:fe:03:13:72:90:82:d2:ec:a5:e8:
e7:73:c4:15:8d:45:56:a5:57:d5:b1:b6:e8:f2:ee:
00:a0:02:6a:1a:82:8c:98:fc:3d:fe:53:64:07:17:
6f:a2:3d:44:35:5a:15:a2:ae:2f:d4:92:46:f5:fa:
1d:fd:a8:0c:36:d2:67:50:66:1e:98:cd:05:d7:9f:
63:bc:90:0d:c9:ad:cf:1c:b7:5f:ea:6a:2d:22:51:
c5:3f:ae:5d:26:ba:5d:bb:e6:cc:07:83:af:af:8e:
d5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:E8:ED:4D:72:99:9D:A4:AC:F2:63:73:ED:62:26:95:3E:F1:81:5A
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/iejtTXKZnaSs8mNz7WImlT7xgVo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.36.0-45.133.38.255
185.169.180.0/24
185.174.21.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:75:f3:41:87:59:12:26:85:36:7e:a9:06:8d:5f:51:c3:03:
58:19:0b:d4:40:b5:52:d1:e0:e6:92:8a:9d:b7:7b:ac:17:da:
eb:31:c4:04:e6:e8:25:12:e3:f9:25:f9:ba:df:a2:a3:20:28:
97:c6:e8:6b:d2:49:55:6a:d5:bc:00:5c:0d:ad:3a:2c:80:1b:
95:0d:3d:74:75:e6:a2:f6:6b:af:b7:0b:51:03:61:73:ad:0b:
0b:85:47:62:f5:a8:73:1a:26:d8:71:59:52:59:a5:94:da:87:
58:00:ab:21:a0:f1:7e:64:6b:06:b5:a6:c8:38:1a:e9:6e:81:
cd:04:06:04:c8:e5:b8:41:e6:a2:17:0b:6d:74:79:0a:91:e0:
80:24:20:5a:bc:6a:7e:14:d0:ac:9b:78:bb:ab:b0:c4:1a:1b:
42:0a:67:8e:9a:94:81:53:09:36:38:9d:b3:4e:4d:5c:11:db:
12:49:f9:18:4b:88:5b:da:f2:d7:58:44:4c:b5:9d:5a:95:3b:
0c:14:e5:69:1e:b8:cb:f2:a3:e7:0a:ec:2f:47:95:6d:1d:e9:
79:52:f2:73:49:7b:3a:c5:dd:ea:d0:1e:a9:ee:d6:13:a9:f4:
84:04:47:b0:74:19:08:ef:ad:32:91:3d:45:03:9c:99:9f:3b:
70:b9:16:a7
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgIECtfw3DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZDBkYTQzYjRhNWQzZGI3OGJhM2Y3NzRlNWIzMWI3NzAzNzIwMmQ1MB4XDTIyMDEx
MjE1MTE0NloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODllOGVkNGQ3Mjk5
OWRhNGFjZjI2MzczZWQ2MjI2OTUzZWYxODE1YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALNnNUehGnST2A3cfxCRKdLZ+QSgyPaY6/PcwNGKmsm4wuQP
U42D4AIL0mDUtKi6yzpj1/g0FRYIOZuk4wbcOrTKqwUoZU9q0GGtetgk7bKOFS9J
g/ANbHSJZ6ElrLCzV2VLiuYUVsd1sDHrrusNtzizpzLgjAoFIQdzy0UwD0mbwdR/
s/bNLjS5R2OhWNwgwKJKJA2CSU/Mt13+AxNykILS7KXo53PEFY1FVqVX1bG26PLu
AKACahqCjJj8Pf5TZAcXb6I9RDVaFaKuL9SSRvX6Hf2oDDbSZ1BmHpjNBdefY7yQ
Dcmtzxy3X+pqLSJRxT+uXSa6XbvmzAeDr6+O1UUCAwEAAaOCAh0wggIZMB0GA1Ud
DgQWBBSJ6O1NcpmdpKzyY3PtYiaVPvGBWjAfBgNVHSMEGDAWgBStDaQ7Sl09t4uj
93Tlsxt3A3IC1TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JRMmtPMHBkUGJlTG9fZDA1Yk1iZHdOeUF0VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvZGQ4MDk2LTE0Y2MtNDg4ZC05MjU3LWM1MTVmMzU0Y2M1YS8x
L2llanRUWEtabmFTczhtTno3V0ltbFQ3eGdWby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
ZGQ4MDk2LTE0Y2MtNDg4ZC05MjU3LWM1MTVmMzU0Y2M1YS8xL3JRMmtPMHBkUGJl
TG9fZDA1Yk1iZHdOeUF0VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAz
BggrBgEFBQcBBwEB/wQkMCIwIAQCAAEwGjAMAwQCLYUkAwQALYUmAwQAuam0AwQA
ua4VMA0GCSqGSIb3DQEBCwUAA4IBAQBedfNBh1kSJoU2fqkGjV9RwwNYGQvUQLVS
0eDmkoqdt3usF9rrMcQE5uglEuP5Jfm636KjICiXxuhr0klVatW8AFwNrTosgBuV
DT10deai9muvtwtRA2FzrQsLhUdi9ahzGibYcVlSWaWU2odYAKshoPF+ZGsGtabI
OBrpboHNBAYEyOW4QeaiFwttdHkKkeCAJCBavGp+FNCsm3i7q7DEGhtCCmeOmpSB
Uwk2OJ2zTk1cEdsSSfkYS4hb2vLXWERMtZ1alTsMFOVpHrjL8qPnCuwvR5VtHel5
UvJzSXs6xd3q0B6p7tYTqfSEBEewdBkI760ykT1FA5yZnztwuRan
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:49 2024 by rpki-client on console-fra.rpki-client.org