Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/e8kTa2p49awkdORIkavE2DUPVw8.roa
File: e8kTa2p49awkdORIkavE2DUPVw8.roa (raw, json)
Hash identifier: Tv/EhnMz7dP406iTgxXrUu+PKvh/ylY9icWJcz9Osr4=
Subject key identifier: 7B:C9:13:6B:6A:78:F5:AC:24:74:E4:48:91:AB:C4:D8:35:0F:57:0F
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 07A5E488
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/e8kTa2p49awkdORIkavE2DUPVw8.roa
Signing time: Sat 01 Jan 2022 09:58:33 +0000
ROA not before: Sat 01 Jan 2022 09:58:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48011
IP address blocks: 45.89.236.0/22 maxlen: 24
185.227.136.0/24 maxlen: 24
185.227.139.0/24 maxlen: 24
185.227.137.0/24 maxlen: 24
185.227.138.0/24 maxlen: 24
2a0c:6600:1::/48 maxlen: 48
2a0c:6600:2::/48 maxlen: 48
2a0c:6600::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128312456 (0x7a5e488)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jan 1 09:58:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7bc9136b6a78f5ac2474e44891abc4d8350f570f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:e4:11:42:07:d5:9d:7f:16:68:d9:31:05:03:
45:16:46:91:8a:e4:ca:ad:b0:b1:89:c5:67:3c:29:
b7:8f:75:4d:49:73:45:70:bf:8d:b2:10:20:31:de:
0d:1e:de:88:08:1b:60:e0:db:a1:b7:0e:fe:e7:c1:
e3:72:fe:8e:25:dd:9a:76:61:a9:d3:29:2d:25:14:
bc:cf:63:81:b8:dc:07:3f:b0:b5:fc:c5:81:f2:72:
06:56:ba:25:44:7f:0e:bc:a9:56:bc:32:11:9d:09:
48:5b:b9:55:66:5f:b8:cd:44:c4:b8:47:a0:d9:be:
03:5a:0e:69:04:a3:3b:19:5e:04:b7:bc:61:07:d0:
84:67:15:83:f7:69:96:82:34:aa:d3:63:9f:2e:42:
67:97:44:63:a6:26:5a:65:96:28:5c:5e:5e:fd:33:
9b:e5:a8:01:ca:e5:24:c5:6c:fe:5c:e9:ee:98:61:
0e:7b:c6:76:65:c9:98:bd:cb:48:e3:85:6b:32:b4:
9f:04:8d:8f:a9:7b:29:7c:4f:9a:df:01:20:47:5b:
8c:24:1e:52:39:68:c9:88:92:89:4e:b9:81:be:3c:
6b:f8:4a:48:d1:4e:8b:e7:c0:bd:b6:9a:30:da:a4:
0a:05:fe:a2:56:77:c4:93:6d:9b:d6:bc:17:2d:1f:
cb:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:C9:13:6B:6A:78:F5:AC:24:74:E4:48:91:AB:C4:D8:35:0F:57:0F
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/e8kTa2p49awkdORIkavE2DUPVw8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.236.0/22
185.227.136.0/22
IPv6:
2a0c:6600::-2a0c:6600:2:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
6c:25:db:2d:f8:c7:61:7b:80:98:3d:7c:78:e2:be:22:95:ff:
32:2f:59:bc:8e:23:50:d5:f0:63:c6:aa:b5:bc:b3:19:80:51:
01:fe:13:30:46:01:85:e5:61:cd:4b:f5:e8:7c:d1:cc:29:11:
21:99:d8:bb:15:bf:08:3d:45:50:8d:45:65:a4:d3:84:24:8f:
1e:31:f0:a5:e7:f3:82:f4:62:61:c1:86:94:37:2f:e5:d1:e2:
8a:4f:73:0b:35:c9:b6:ee:c5:68:9b:c1:96:f3:1a:f1:a5:0c:
d2:8e:41:23:68:99:bf:22:55:50:11:12:57:c4:68:48:49:b5:
f3:b2:d3:cd:1e:58:73:d4:3f:51:98:bd:cd:5e:bf:02:2c:32:
95:1e:03:38:9e:d5:b9:fd:0f:63:fe:ad:b2:e7:b3:05:59:96:
1e:f1:fd:ac:bf:c3:3a:a9:ff:c4:a7:fe:b5:41:9d:e5:2c:81:
e4:4f:02:bd:79:c6:9f:24:b4:6c:e5:9b:00:fa:f1:7a:5f:f8:
48:fe:87:b1:a8:50:24:ee:1f:b1:c2:f0:6f:d2:43:ef:de:90:
f2:38:85:4e:69:3b:d4:41:c5:4f:db:cf:05:68:7a:a0:e3:e0:
ea:4f:36:9d:cb:b2:9f:91:1f:4e:9e:59:90:9e:88:7b:94:06:
40:55:51:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:01:13 2024 by rpki-client on console-ams.rpki-client.org