Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WuAZ3ZomRiuo5DGw3l2JyJ5TNUA.roa
File: WuAZ3ZomRiuo5DGw3l2JyJ5TNUA.roa (raw, json)
Hash identifier: VyXBSrAMvRAxQunCEtOPfqLWywaG7Xq98Yeh8jYn2Js=
Subject key identifier: 5A:E0:19:DD:9A:26:46:2B:A8:E4:31:B0:DE:5D:89:C8:9E:53:35:40
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01852FF0C54B3D0943A93A70A6DAFDC3CA51
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WuAZ3ZomRiuo5DGw3l2JyJ5TNUA.roa
Signing time: Tue 20 Dec 2022 14:29:46 +0000
ROA not before: Tue 20 Dec 2022 14:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 45.134.37.0/24 maxlen: 24
45.134.38.0/24 maxlen: 24
45.80.192.0/24 maxlen: 24
45.10.20.0/24 maxlen: 24
45.135.150.0/24 maxlen: 24
45.147.4.0/24 maxlen: 24
45.91.249.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:f0:c5:4b:3d:09:43:a9:3a:70:a6:da:fd:c3:ca:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 20 14:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5ae019dd9a26462ba8e431b0de5d89c89e533540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:46:d6:57:e6:4d:e1:d5:35:b3:25:bb:41:a9:
49:f4:53:a3:1f:f7:38:68:ba:74:4b:77:c3:d3:a0:
0b:bd:e2:1c:ab:6a:60:d5:4e:40:d5:3d:a0:80:88:
e5:f3:9f:7e:29:15:19:9b:cf:8a:47:33:6c:6a:c4:
bb:3d:c5:02:a3:8f:bb:7f:6c:b4:2b:ed:23:e6:15:
b6:86:a2:72:08:37:1a:c2:b4:b8:16:4e:87:d1:d6:
a9:25:6a:85:3a:af:3e:9d:84:ed:2d:1b:4f:c5:e5:
5e:6d:59:af:6f:a1:e2:58:a8:00:35:1b:d0:8c:80:
29:6a:d5:58:4f:5f:15:fb:fc:a6:28:2f:1f:bc:1d:
bb:7c:27:b0:01:12:f1:88:25:be:a8:3b:d1:a3:23:
4d:4e:f3:9f:02:cc:ad:58:7c:d8:f8:98:c3:8c:c0:
96:00:56:8f:b7:10:73:99:55:19:8e:62:3d:1c:39:
ea:c8:a2:60:4c:69:a5:8c:eb:67:d3:a7:15:b5:fa:
75:ed:80:e6:87:ab:8b:b7:3b:5c:02:15:de:fa:b9:
e2:2c:20:e5:6b:27:81:7c:0e:ca:88:df:4f:2d:dc:
00:d2:81:10:6e:4f:fd:59:bc:d7:13:11:89:55:f2:
39:b7:4f:77:b8:fe:c7:b7:46:e9:2f:22:2c:38:ed:
58:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:E0:19:DD:9A:26:46:2B:A8:E4:31:B0:DE:5D:89:C8:9E:53:35:40
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/WuAZ3ZomRiuo5DGw3l2JyJ5TNUA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.10.20.0/24
45.80.192.0/24
45.91.249.0/24
45.134.37.0-45.134.38.255
45.135.150.0/24
45.147.4.0/24
Signature Algorithm: sha256WithRSAEncryption
46:0a:39:ab:c3:62:3e:b1:45:12:85:43:5d:47:87:f8:5e:1d:
4d:42:e3:83:9c:7e:b2:a6:77:60:21:58:77:51:1a:ca:bc:86:
a0:c6:dd:25:66:87:01:b8:18:9d:b6:c7:eb:30:71:f9:0d:06:
ce:60:c7:08:cd:8d:5c:d3:d1:e4:29:54:c1:7b:66:b7:8f:ec:
3a:09:4d:fb:5c:ab:80:94:72:ef:f5:1e:cc:f1:47:72:f6:ec:
e8:51:1f:c8:b2:14:44:2b:3f:18:c2:72:8a:e9:24:82:7e:77:
d5:c1:b7:ab:24:ca:0e:d2:23:72:6c:29:9c:5e:bb:a1:33:6c:
a7:e1:b7:11:15:8d:52:02:23:b8:25:cc:c6:cb:3e:71:21:42:
9e:ac:e5:ee:af:6c:4f:c4:93:ba:95:6c:01:2e:dc:67:03:62:
4d:41:5f:86:30:d2:70:61:6b:34:f7:f0:e2:9f:75:ac:7a:50:
33:ae:13:7f:68:b2:3c:e7:c5:82:a1:e6:98:a9:e8:b7:44:e3:
7a:a4:f2:1c:04:3b:7b:f7:8c:0c:fd:92:17:35:17:db:22:54:
91:d9:fc:0b:7d:14:2d:3e:d3:05:a8:d6:ca:a6:35:23:2c:fe:
e8:bc:5a:43:d4:09:e4:9f:91:5e:ae:f9:6e:eb:50:9f:b4:63:
cb:0c:b4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org