Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/0f3c61-02df-4af7-b93f-07f74c019732/1/GO2kGpl0E4w1hn-qp7HWQIJEmbk.roa
File: GO2kGpl0E4w1hn-qp7HWQIJEmbk.roa (raw, json)
Hash identifier: tFwbdNajsMsQSW8y/Q6oT1EFjZ+lkGVo6bpYcXtJayA=
Subject key identifier: 18:ED:A4:1A:99:74:13:8C:35:86:7F:AA:A7:B1:D6:40:82:44:99:B9
Certificate issuer: /CN=19a43d81657a3c38c150de55797f1c7b5f0c2ebb
Certificate serial: 0524D615
Authority key identifier: 19:A4:3D:81:65:7A:3C:38:C1:50:DE:55:79:7F:1C:7B:5F:0C:2E:BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GaQ9gWV6PDjBUN5VeX8ce18MLrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/0f3c61-02df-4af7-b93f-07f74c019732/1/GO2kGpl0E4w1hn-qp7HWQIJEmbk.roa
Signing time: Sat 01 Jan 2022 08:03:40 +0000
ROA not before: Sat 01 Jan 2022 08:03:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207375
IP address blocks: 45.145.108.0/22 maxlen: 25
2a0e:fdc0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86300181 (0x524d615)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19a43d81657a3c38c150de55797f1c7b5f0c2ebb
Validity
Not Before: Jan 1 08:03:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18eda41a9974138c35867faaa7b1d640824499b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:37:da:b6:e8:88:d7:be:e5:59:e4:44:97:98:
6f:3b:35:42:a3:54:ed:06:c3:96:a0:e9:42:5b:2e:
83:64:61:0b:fc:1e:24:53:7f:16:e4:c0:15:bf:88:
f0:22:37:be:47:d4:cb:d2:e5:77:db:66:12:45:d1:
17:79:e8:5d:de:3b:76:7e:09:ab:e8:ec:26:30:9f:
ed:aa:95:a1:62:57:23:4b:6e:6d:8b:a7:d5:9f:fa:
44:f8:7b:9d:74:4f:27:ca:30:eb:69:8f:8f:4a:dd:
54:c4:40:a7:fb:ba:b5:df:73:9b:1f:92:e5:0b:47:
b7:aa:89:c8:a0:ea:72:98:27:ef:00:3b:a9:32:c7:
89:54:2d:e5:f7:ab:c8:ad:e6:2c:5e:06:c2:7e:84:
23:fb:bf:6a:94:25:d7:34:97:0d:e4:2b:30:00:98:
b1:ae:31:7a:0a:67:5c:4b:16:32:33:c9:0e:be:e8:
d8:08:92:33:ba:3d:99:5c:22:da:97:80:81:ae:b0:
03:b4:6f:9f:3b:69:56:35:bb:7b:bb:ab:bd:f8:09:
53:6d:6c:6d:5c:f2:96:63:83:2b:80:68:c9:8e:e7:
b5:e4:e0:df:65:74:4d:6e:68:da:af:19:01:d9:fe:
31:a4:d3:80:ca:08:f9:7e:0c:18:3d:8e:6a:22:05:
33:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:ED:A4:1A:99:74:13:8C:35:86:7F:AA:A7:B1:D6:40:82:44:99:B9
X509v3 Authority Key Identifier:
keyid:19:A4:3D:81:65:7A:3C:38:C1:50:DE:55:79:7F:1C:7B:5F:0C:2E:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GaQ9gWV6PDjBUN5VeX8ce18MLrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/0f3c61-02df-4af7-b93f-07f74c019732/1/GO2kGpl0E4w1hn-qp7HWQIJEmbk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/0f3c61-02df-4af7-b93f-07f74c019732/1/GaQ9gWV6PDjBUN5VeX8ce18MLrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.108.0/22
IPv6:
2a0e:fdc0::/29
Signature Algorithm: sha256WithRSAEncryption
68:fe:75:60:43:0a:1c:28:a3:91:29:41:31:4e:58:b1:f4:f3:
79:d9:80:31:90:76:62:63:3e:c0:de:c2:b8:e6:43:bc:4d:c3:
bb:64:a3:c0:17:e7:09:e7:a0:64:d6:3a:b8:71:60:1f:74:35:
34:d7:53:78:52:84:c5:05:af:2d:56:18:5d:d0:44:16:c7:a9:
e7:bc:5f:ae:28:17:7f:53:16:8e:c4:c6:e1:21:d7:46:59:0d:
2a:04:b3:e2:e6:37:38:19:bd:f4:71:52:53:94:43:be:de:16:
71:0b:e3:6b:17:a5:2c:40:a6:9c:a9:b8:8d:7d:ff:1d:98:cf:
43:ab:bb:06:e9:a5:db:3e:b1:e4:3d:2c:0a:8c:48:f2:91:55:
53:e6:16:a3:8b:1e:f6:04:87:94:70:89:45:8b:2f:b5:97:67:
5b:df:fb:88:36:a6:da:8c:4f:e7:cb:4d:67:cd:f0:4e:38:e5:
94:27:9f:82:bf:89:7f:12:1b:67:86:8b:f7:0b:17:79:cf:f6:
3c:e6:a8:67:16:ae:97:0c:ad:ec:10:77:25:ce:ea:1d:2d:a4:
96:bc:d4:9f:06:6c:29:44:8a:f4:70:7c:05:90:b6:ce:f1:7d:
a1:61:41:f8:25:c8:ad:73:73:72:7d:b8:83:c9:10:5b:9d:a8:
17:e9:30:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:38:46 2025 by rpki-client