Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/vxT-TeoR7frHoDeUIXiyLjoOcOE.roa
File: vxT-TeoR7frHoDeUIXiyLjoOcOE.roa (raw, json)
Hash identifier: ir3Z6CGDGcHujGBTfC2CSv7CoJnaoHcsYEiBubu6kkI=
Subject key identifier: BF:14:FE:4D:EA:11:ED:FA:C7:A0:37:94:21:78:B2:2E:3A:0E:70:E1
Certificate issuer: /CN=edee25a78a816bde362c40c86e39b947d0ee2ff3
Certificate serial: 01856C5CAC86C6C7EE6EAA5F6B35EE90D9EE
Authority key identifier: ED:EE:25:A7:8A:81:6B:DE:36:2C:40:C8:6E:39:B9:47:D0:EE:2F:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7e4lp4qBa942LEDIbjm5R9DuL_M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/vxT-TeoR7frHoDeUIXiyLjoOcOE.roa
Signing time: Sun 01 Jan 2023 08:04:50 +0000
ROA not before: Sun 01 Jan 2023 08:04:50 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 207867
IP address blocks: 45.159.104.0/23 maxlen: 23
45.159.104.0/24 maxlen: 24
45.159.104.0/22 maxlen: 24
45.159.105.0/24 maxlen: 24
45.159.107.0/24 maxlen: 24
188.68.191.0/24 maxlen: 24
188.68.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:5c:ac:86:c6:c7:ee:6e:aa:5f:6b:35:ee:90:d9:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=edee25a78a816bde362c40c86e39b947d0ee2ff3
Validity
Not Before: Jan 1 08:04:50 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=bf14fe4dea11edfac7a037942178b22e3a0e70e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:7a:98:b3:84:75:5a:56:37:a6:db:68:a0:9c:
df:5f:83:73:93:b5:2f:05:2f:ba:28:16:91:2c:45:
c7:3a:83:12:e7:12:92:98:26:17:96:3e:e8:6d:bd:
85:e7:37:d7:2f:2f:83:4b:73:dd:a6:60:e5:34:17:
9e:10:5c:b2:d2:3d:bd:bb:3b:1f:d8:75:9a:d2:91:
23:45:f5:51:66:c4:4c:03:9e:43:bc:a2:9e:91:64:
2e:75:5e:e0:90:8a:65:ed:81:3f:58:b0:a9:6a:39:
bc:16:70:87:12:08:20:75:ab:33:b6:6a:89:db:31:
4c:2f:8f:83:7b:e9:1f:b3:e7:fa:a3:83:35:c4:00:
15:4b:6e:da:27:ee:af:0e:c3:e4:97:f1:74:94:87:
b3:a2:08:e9:2a:06:60:c9:c7:ea:c7:3a:e6:3f:cb:
8a:2f:67:92:de:b1:86:15:35:2d:4e:b6:9e:a6:19:
5b:fa:04:15:ad:b4:51:d7:fe:34:39:2c:11:19:09:
84:ec:e6:ba:c0:d9:0a:16:b8:aa:bc:2d:9e:a0:31:
f5:d2:83:e6:44:9f:c4:b4:ea:ba:58:32:14:66:dd:
d8:23:bd:29:e9:3e:0c:f8:26:c5:82:fc:1b:89:95:
f4:ed:df:1e:c6:54:2d:42:a5:af:71:8e:c8:ca:a6:
54:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:14:FE:4D:EA:11:ED:FA:C7:A0:37:94:21:78:B2:2E:3A:0E:70:E1
X509v3 Authority Key Identifier:
keyid:ED:EE:25:A7:8A:81:6B:DE:36:2C:40:C8:6E:39:B9:47:D0:EE:2F:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e4lp4qBa942LEDIbjm5R9DuL_M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/vxT-TeoR7frHoDeUIXiyLjoOcOE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/2c57e5-402b-4896-929f-54341cd13a9d/1/7e4lp4qBa942LEDIbjm5R9DuL_M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.159.104.0/22
188.68.188.0/24
188.68.191.0/24
Signature Algorithm: sha256WithRSAEncryption
b8:cd:30:19:d3:5e:79:4e:07:b8:9a:49:a5:79:11:58:2b:d8:
60:5e:a1:62:ae:80:40:e0:18:7c:65:b1:36:e6:09:34:f5:31:
09:e0:e5:af:a4:e9:ea:09:3f:19:c8:38:79:d2:22:07:8c:3e:
a3:f3:d0:ca:32:79:16:9e:38:4f:bb:3b:af:bb:fb:dc:b6:76:
c6:f4:fb:1d:12:e3:7a:8e:f6:6c:9c:cc:6e:b6:ec:a0:ce:8d:
f4:7d:5a:1b:d2:d9:51:99:4e:f9:0a:2f:53:97:7c:b3:13:4f:
d5:b3:c9:e7:ce:8c:04:c2:bb:5e:04:c3:2d:e7:f1:96:19:82:
72:e0:38:74:95:56:d6:51:4b:76:5c:04:4f:af:ad:e7:8c:e1:
9c:43:79:59:11:bc:dd:e3:1f:7e:7c:64:21:6f:66:4b:c4:28:
4b:b6:1b:65:2f:83:58:12:f9:e6:a1:5f:76:15:b7:8c:00:7c:
36:da:09:f6:63:96:53:b0:c7:b4:b0:32:53:3b:be:d0:f6:29:
c8:70:75:86:4e:c0:46:c9:50:11:39:85:5e:4c:78:1f:b0:88:
19:d3:33:9c:d4:52:88:4a:b8:c0:ef:1a:aa:d5:a1:fb:b7:1e:
93:60:f0:6a:90:58:1c:13:96:1e:f0:c8:a6:8a:68:af:05:00:
7b:8a:34:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:21:03 2025 by rpki-client