Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/fb2a45-8d94-4a8d-bcb0-6191b9d0cda3/1/itusb18RrPh4uHTe9Ze_l2LTOKE.roa
File: itusb18RrPh4uHTe9Ze_l2LTOKE.roa (raw, json)
Hash identifier: fh+hLpUnz3JoduNXEsSrdXMpGGiXviiqzb+zATXGG/c=
Subject key identifier: 8A:DB:AC:6F:5F:11:AC:F8:78:B8:74:DE:F5:97:BF:97:62:D3:38:A1
Certificate issuer: /CN=61b1e31c09fe826fe4d792e7fa8855e0ad39342a
Certificate serial: 15EF51A8
Authority key identifier: 61:B1:E3:1C:09:FE:82:6F:E4:D7:92:E7:FA:88:55:E0:AD:39:34:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YbHjHAn-gm_k15Ln-ohV4K05NCo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/fb2a45-8d94-4a8d-bcb0-6191b9d0cda3/1/itusb18RrPh4uHTe9Ze_l2LTOKE.roa
Signing time: Sat 01 Jan 2022 04:59:58 +0000
ROA not before: Sat 01 Jan 2022 04:59:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 199803
IP address blocks: 185.45.200.0/22 maxlen: 22
2a01:7fe0::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368005544 (0x15ef51a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61b1e31c09fe826fe4d792e7fa8855e0ad39342a
Validity
Not Before: Jan 1 04:59:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8adbac6f5f11acf878b874def597bf9762d338a1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:3f:df:77:19:39:86:ed:57:3e:b5:03:e3:
6a:e9:12:de:e5:a8:d3:c8:92:cf:81:4b:26:d3:d9:
77:bb:35:5d:1e:f1:17:14:54:eb:9c:16:5a:40:2e:
c5:93:24:57:90:90:52:66:31:3a:3c:47:03:7a:a9:
8d:15:d6:65:c4:bb:cc:73:c6:02:e0:c7:70:53:c7:
e9:a5:7c:00:43:77:1d:eb:ad:55:b5:3a:87:18:5f:
93:34:81:4b:5c:87:41:4a:49:da:50:55:1a:75:ab:
49:8d:3d:f3:dd:10:fd:35:88:7f:ea:73:a0:12:4e:
a0:f4:f1:65:ad:92:7d:42:14:cb:eb:52:a9:98:34:
d0:f8:29:57:50:13:19:ba:33:16:cd:f3:9e:58:42:
64:08:80:44:06:01:79:c4:92:46:20:44:77:f2:c2:
fa:05:76:b7:b5:0f:c2:96:d9:3e:ba:b8:5c:ca:29:
37:ca:30:ba:73:a9:ef:a6:1b:2a:7a:fa:eb:e2:02:
da:0e:7a:54:72:1c:92:72:5e:83:d5:2b:5d:85:80:
ef:ae:4d:e3:a1:ec:f2:86:46:96:49:ed:e6:7c:4f:
9b:cf:bb:7c:5b:25:9c:f5:d8:da:64:77:55:c2:67:
94:81:e8:90:0d:66:81:1c:e8:43:26:ab:54:86:a7:
6c:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:DB:AC:6F:5F:11:AC:F8:78:B8:74:DE:F5:97:BF:97:62:D3:38:A1
X509v3 Authority Key Identifier:
keyid:61:B1:E3:1C:09:FE:82:6F:E4:D7:92:E7:FA:88:55:E0:AD:39:34:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YbHjHAn-gm_k15Ln-ohV4K05NCo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/fb2a45-8d94-4a8d-bcb0-6191b9d0cda3/1/itusb18RrPh4uHTe9Ze_l2LTOKE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/fb2a45-8d94-4a8d-bcb0-6191b9d0cda3/1/YbHjHAn-gm_k15Ln-ohV4K05NCo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.45.200.0/22
IPv6:
2a01:7fe0::/32
Signature Algorithm: sha256WithRSAEncryption
34:01:b5:d7:03:a3:fc:0d:7b:ff:ea:0a:e5:37:30:e0:e3:99:
2c:81:ec:b5:9e:7d:2a:68:b6:ba:39:0d:55:62:5d:2b:25:95:
58:f6:3e:10:ae:75:2e:d1:8c:9e:3e:9c:33:f3:78:1c:ac:9c:
e6:a1:43:2d:20:c6:65:03:5f:29:02:1f:ba:f9:74:2a:1b:58:
d8:b8:b5:73:42:ea:b8:f0:aa:72:cb:d2:51:af:1a:9c:85:7a:
63:30:41:bc:ea:e3:05:19:00:58:1e:9f:6a:3b:22:ba:24:85:
34:b2:75:38:7a:18:48:22:9e:7d:aa:ae:ed:0a:35:31:eb:88:
eb:22:48:23:f1:ef:5a:42:41:9b:3c:61:d0:87:ee:25:da:9c:
91:cc:6d:23:7d:59:4c:78:82:20:ce:9b:17:b1:a0:aa:31:7b:
95:36:bc:c7:ef:b8:d6:f6:10:63:cb:67:c5:4e:5a:53:93:3d:
d6:39:f0:3b:64:c9:54:04:e4:48:ec:8f:bd:20:68:f2:82:eb:
2b:81:55:51:34:52:d2:44:bc:64:7f:08:ca:0d:8c:f8:6b:18:
97:ad:f2:aa:2d:a8:8e:0e:a9:f0:42:9b:ff:3e:ab:e9:89:26:
62:69:e1:0d:36:4e:9e:e2:21:dd:2e:49:72:7f:9d:8a:33:e4:
44:c0:71:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:15:59 2025 by rpki-client