Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/i9nuLKWOWUoh_I0yZwx-Y3gBMqA.roa
File: i9nuLKWOWUoh_I0yZwx-Y3gBMqA.roa (raw, json)
Hash identifier: K1rz+QR7xOqlYWszxnbZ0+Elpzth8R61sGnqoHloTns=
Subject key identifier: 8B:D9:EE:2C:A5:8E:59:4A:21:FC:8D:32:67:0C:7E:63:78:01:32:A0
Certificate issuer: /CN=e7c07db9880133c5cdce005bca111b552cd14c53
Certificate serial: 0185162A640A2C21C119476325E7E26872AD
Authority key identifier: E7:C0:7D:B9:88:01:33:C5:CD:CE:00:5B:CA:11:1B:55:2C:D1:4C:53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/i9nuLKWOWUoh_I0yZwx-Y3gBMqA.roa
Signing time: Thu 15 Dec 2022 14:22:34 +0000
ROA not before: Thu 15 Dec 2022 14:22:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208183
IP address blocks: 45.152.229.0/24 maxlen: 24
45.152.228.0/22 maxlen: 22
45.152.228.0/24 maxlen: 24
2a0f:6500:3000::/36 maxlen: 36
2a0f:6500:2000::/36 maxlen: 36
2a0f:6500:1000::/36 maxlen: 36
2a0f:6500::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:16:2a:64:0a:2c:21:c1:19:47:63:25:e7:e2:68:72:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7c07db9880133c5cdce005bca111b552cd14c53
Validity
Not Before: Dec 15 14:22:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bd9ee2ca58e594a21fc8d32670c7e63780132a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:3f:ca:2c:3d:78:3c:9e:bf:8a:67:12:25:53:
38:ef:8c:ab:4e:56:1c:24:b6:1a:28:ab:23:39:88:
f4:7a:ab:f0:c0:c3:e0:74:fd:31:e5:34:57:31:24:
00:4a:f1:56:2a:df:53:89:8d:a1:4e:2c:b5:8f:8b:
d3:af:05:cb:9f:32:26:40:61:12:4f:43:d5:98:a8:
b3:1f:cf:ce:3d:44:0a:ad:22:bc:b5:f9:c1:bf:60:
43:04:af:2e:f9:a1:45:d5:3f:a8:ae:f1:3e:ae:32:
d8:66:9f:53:91:a9:5d:e6:7d:14:f9:d4:b2:bd:4f:
63:2f:3a:06:a9:18:db:86:59:ad:5a:36:b7:01:b4:
47:92:a6:69:66:1f:e3:f4:b5:78:d5:5f:d6:3c:f0:
d1:00:10:d7:ee:50:54:54:02:04:b9:95:5d:d1:2d:
ae:c9:c5:b8:3d:59:43:59:bf:f9:9f:b2:fb:d6:86:
bb:28:40:d8:45:16:48:be:a0:1c:ff:da:ee:a4:10:
08:8e:dc:9b:76:6a:2d:b7:13:ba:d2:9d:99:8c:a5:
ca:31:a4:0e:f5:23:ae:48:8a:26:31:8c:ba:b5:9e:
ea:b5:0d:58:1f:93:39:81:d6:3a:b0:0a:0e:ca:46:
1e:73:7f:f5:aa:6c:8b:f9:d3:ab:40:a1:f2:63:59:
e4:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D9:EE:2C:A5:8E:59:4A:21:FC:8D:32:67:0C:7E:63:78:01:32:A0
X509v3 Authority Key Identifier:
keyid:E7:C0:7D:B9:88:01:33:C5:CD:CE:00:5B:CA:11:1B:55:2C:D1:4C:53
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58B9uYgBM8XNzgBbyhEbVSzRTFM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/i9nuLKWOWUoh_I0yZwx-Y3gBMqA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/8cdd49-c094-4c6a-918c-0aa463cdfca0/1/58B9uYgBM8XNzgBbyhEbVSzRTFM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.228.0/22
IPv6:
2a0f:6500::/32
Signature Algorithm: sha256WithRSAEncryption
79:df:b1:41:27:07:dd:a0:00:e6:0e:65:e2:74:b0:27:5c:d2:
74:15:96:ef:db:80:84:e4:88:b0:0c:66:e2:8c:d0:81:24:d6:
8b:9e:47:60:e7:49:ba:9b:4b:c7:d3:85:bb:0a:a3:bf:3f:80:
6a:c7:47:69:6c:da:e0:83:1c:26:8f:c7:71:d7:bb:a0:e2:6f:
d0:51:c0:3e:ea:05:fb:9f:b4:72:6a:5b:cd:9d:ce:62:e2:01:
bc:e9:bd:78:3d:77:d8:8c:6e:f1:03:c6:47:c4:98:f8:cb:b5:
eb:49:5b:99:13:37:74:13:1e:70:57:98:7f:df:ca:28:bb:53:
17:80:dc:58:6f:16:ae:13:83:5f:71:f4:a0:e9:9e:3f:07:7b:
ae:df:4b:32:d4:f7:b4:d5:6c:ed:18:39:be:c2:4c:8e:18:c2:
54:7c:ba:fb:b5:7e:29:bf:73:17:91:b9:83:cd:1d:79:6f:c9:
3c:24:a9:bc:c2:eb:ea:0e:2b:d0:9d:e1:de:a2:cb:a8:a5:2a:
92:66:14:a3:1c:35:7b:34:7f:fd:ee:c5:c3:46:06:c9:84:48:
5f:0f:ba:4e:0d:e2:0b:e2:11:f0:67:70:2b:14:62:27:1b:d0:
88:55:27:35:dd:5b:21:48:f8:26:5b:ee:b8:74:38:9a:ac:ff:
7c:2b:bd:db
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYUWKmQKLCHBGUdjJefiaHKtMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU3YzA3ZGI5ODgwMTMzYzVjZGNlMDA1YmNhMTExYjU1MmNk
MTRjNTMwHhcNMjIxMjE1MTQyMjM0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4YmQ5ZWUyY2E1OGU1OTRhMjFmYzhkMzI2NzBjN2U2Mzc4MDEzMmEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkD/KLD14PJ6/imcSJVM474yrTlYc
JLYaKKsjOYj0eqvwwMPgdP0x5TRXMSQASvFWKt9TiY2hTiy1j4vTrwXLnzImQGES
T0PVmKizH8/OPUQKrSK8tfnBv2BDBK8u+aFF1T+orvE+rjLYZp9Tkald5n0U+dSy
vU9jLzoGqRjbhlmtWja3AbRHkqZpZh/j9LV41V/WPPDRABDX7lBUVAIEuZVd0S2u
ycW4PVlDWb/5n7L71oa7KEDYRRZIvqAc/9rupBAIjtybdmottxO60p2ZjKXKMaQO
9SOuSIomMYy6tZ7qtQ1YH5M5gdY6sAoOykYec3/1qmyL+dOrQKHyY1nkXQIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFIvZ7iyljllKIfyNMmcMfmN4ATKgMB8GA1UdIwQY
MBaAFOfAfbmIATPFzc4AW8oRG1Us0UxTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNThCOXVZZ0JNOFhOemdCYnloRWJWU3pSVEZNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi84Y2RkNDktYzA5NC00YzZhLTkxOGMt
MGFhNDYzY2RmY2EwLzEvaTludUxLV09XVW9oX0kweVp3eC1ZM2dCTXFBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi84Y2RkNDktYzA5NC00YzZhLTkxOGMtMGFhNDYzY2RmY2Ew
LzEvNThCOXVZZ0JNOFhOemdCYnloRWJWU3pSVEZNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCLZjkMA0E
AgACMAcDBQAqD2UAMA0GCSqGSIb3DQEBCwUAA4IBAQB537FBJwfdoADmDmXidLAn
XNJ0FZbv24CE5IiwDGbijNCBJNaLnkdg50m6m0vH04W7CqO/P4Bqx0dpbNrggxwm
j8dx17ug4m/QUcA+6gX7n7RyalvNnc5i4gG86b14PXfYjG7xA8ZHxJj4y7XrSVuZ
Ezd0Ex5wV5h/38oou1MXgNxYbxauE4NfcfSg6Z4/B3uu30sy1Pe01WztGDm+wkyO
GMJUfLr7tX4pv3MXkbmDzR15b8k8JKm8wuvqDivQneHeosuopSqSZhSjHDV7NH/9
7sXDRgbJhEhfD7pODeIL4hHwZ3ArFGInG9CIVSc13VshSPgmW+64dDiarP98K73b
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:51 2024 by rpki-client on console-fra.rpki-client.org