Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/ece2c4-015a-4bfa-b2b9-d06cfa226c64/1/Q2iV4KRP7nQFCqmQ__dL6whMVwg.roa
File: Q2iV4KRP7nQFCqmQ__dL6whMVwg.roa (raw, json)
Hash identifier: Si+CneuQ4Htl+fgsgUv8zT7X6KCbgcByHCruJXrlmlc=
Subject key identifier: 43:68:95:E0:A4:4F:EE:74:05:0A:A9:90:FF:F7:4B:EB:08:4C:57:08
Certificate issuer: /CN=d546e24430dba89bdce22c6bf32818cbde6bbca0
Certificate serial: 08848655
Authority key identifier: D5:46:E2:44:30:DB:A8:9B:DC:E2:2C:6B:F3:28:18:CB:DE:6B:BC:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1UbiRDDbqJvc4ixr8ygYy95rvKA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/ece2c4-015a-4bfa-b2b9-d06cfa226c64/1/Q2iV4KRP7nQFCqmQ__dL6whMVwg.roa
Signing time: Sat 01 Jan 2022 06:59:18 +0000
ROA not before: Sat 01 Jan 2022 06:59:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208859
IP address blocks: 45.81.144.0/24 maxlen: 24
45.81.144.0/22 maxlen: 22
45.81.145.0/24 maxlen: 24
45.81.146.0/24 maxlen: 24
45.81.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142902869 (0x8848655)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d546e24430dba89bdce22c6bf32818cbde6bbca0
Validity
Not Before: Jan 1 06:59:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=436895e0a44fee74050aa990fff74beb084c5708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:2a:18:0d:e6:1e:44:b4:04:b2:7d:b4:38:b1:
c0:9a:d4:a9:1a:e1:42:74:f7:b7:50:fc:f5:24:0f:
92:22:f5:0a:a2:68:fc:3a:5e:c4:f9:e1:16:8f:25:
0a:5d:de:60:93:57:b0:31:a7:bc:c8:b2:53:f5:5d:
54:78:3d:bf:87:90:d0:2f:cb:c0:b8:cc:65:7a:08:
d8:22:38:59:40:04:39:82:76:af:b8:3a:a8:47:9a:
7b:05:99:b3:55:5a:7d:31:fa:69:1d:b2:70:7b:da:
46:db:89:17:48:eb:78:9b:6b:06:74:dd:ce:75:17:
00:a3:d5:3d:e8:6a:99:f0:e3:f8:cd:6e:60:77:b8:
ca:97:5c:42:c3:93:f6:4d:1c:79:99:dc:17:47:81:
cf:4f:f1:d2:3b:09:05:44:23:ad:b3:55:8d:a9:26:
35:7f:ea:2a:1f:3d:7b:4e:8f:67:7b:8c:e3:fd:52:
17:51:f8:4e:9d:1c:e2:67:c2:85:43:cc:00:96:37:
20:e7:a3:17:30:84:f9:bc:a7:d7:4d:bf:89:6d:9a:
d1:b5:ae:86:17:5e:ef:ea:ac:da:c4:d4:4e:a2:d5:
4d:e4:cb:93:c2:d4:42:50:d9:38:7e:1b:6c:15:c1:
d5:90:03:f2:46:7f:03:b3:b1:ba:c6:e4:0a:19:f2:
f3:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:68:95:E0:A4:4F:EE:74:05:0A:A9:90:FF:F7:4B:EB:08:4C:57:08
X509v3 Authority Key Identifier:
keyid:D5:46:E2:44:30:DB:A8:9B:DC:E2:2C:6B:F3:28:18:CB:DE:6B:BC:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1UbiRDDbqJvc4ixr8ygYy95rvKA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ece2c4-015a-4bfa-b2b9-d06cfa226c64/1/Q2iV4KRP7nQFCqmQ__dL6whMVwg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/61/ece2c4-015a-4bfa-b2b9-d06cfa226c64/1/1UbiRDDbqJvc4ixr8ygYy95rvKA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.144.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:62:86:92:11:6e:4a:ba:08:b8:a0:0f:2a:94:c5:62:9a:46:
a2:d7:13:c4:78:3f:b0:8a:04:6f:19:fe:2b:0b:91:2f:12:1a:
82:75:cd:ec:25:fe:ae:d0:70:5b:e4:56:5a:e9:ad:f0:04:c1:
cc:ce:5e:80:c8:83:5f:c9:d9:cf:14:ac:80:4c:cd:43:1e:77:
f4:94:e1:ba:0f:44:d8:62:31:7b:4b:5c:c8:2d:23:8e:ee:23:
24:64:70:f1:18:b5:9e:59:91:2c:5c:d8:8f:b2:1d:04:08:b1:
87:e9:af:23:0c:f0:3a:2e:91:83:b0:21:17:9a:dd:97:af:09:
7b:6b:00:6a:ba:a6:25:17:32:3a:ee:9e:28:5c:4d:06:3f:7f:
7d:c9:09:fc:1c:8b:29:2d:36:7f:07:30:78:a6:b0:87:4b:6d:
bc:7b:a1:bd:ba:59:0f:f8:93:cf:85:0b:17:a3:5d:61:4a:0d:
66:f8:a3:e3:e4:18:d0:91:98:19:5e:f8:6d:90:4b:25:80:4d:
62:c4:a1:dd:65:b4:c3:3c:9b:a5:a1:23:5c:df:2d:3e:e3:6f:
e2:65:e9:40:f3:0e:01:25:9a:a3:96:c6:32:0a:69:96:86:44:
bb:1f:4b:15:30:0a:90:38:69:4a:16:d9:ce:1d:e0:85:cd:25:
96:7c:d9:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:52:40 2025 by rpki-client