Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/48iZs1opSD5U0ZtM5iEMzh0gKvg.roa
File: 48iZs1opSD5U0ZtM5iEMzh0gKvg.roa (raw, json)
Hash identifier: xa8H5GLTYwopmWcLoDklrZEsPglvc8GKW9IRMecbBLg=
Subject key identifier: E3:C8:99:B3:5A:29:48:3E:54:D1:9B:4C:E6:21:0C:CE:1D:20:2A:F8
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 016E0B1F
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/48iZs1opSD5U0ZtM5iEMzh0gKvg.roa
Signing time: Mon 07 Feb 2022 13:48:13 +0000
ROA not before: Mon 07 Feb 2022 13:48:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206238
IP address blocks: 45.83.240.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23989023 (0x16e0b1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Feb 7 13:48:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e3c899b35a29483e54d19b4ce6210cce1d202af8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b8:b9:56:7c:82:99:ee:9c:eb:07:2f:60:ca:
d3:1f:ab:9e:33:35:a9:65:ec:33:a1:98:d1:67:ed:
d5:5e:79:7e:21:60:0a:2e:ab:c4:1c:71:51:37:8e:
1c:05:50:e5:38:15:cf:90:f5:9e:59:08:6b:9a:c6:
8a:85:30:c9:f2:f0:5d:64:10:59:e3:3c:d3:d6:ff:
d8:8a:44:ce:4a:be:52:29:80:ed:a6:3b:b3:09:bf:
0b:ea:d2:2a:14:7a:75:90:db:21:59:d8:97:22:91:
5c:3b:35:be:95:40:14:ea:8f:cf:a3:bc:ab:55:9d:
fe:58:01:f4:8c:32:9d:3c:12:e0:0e:3b:6d:19:2a:
31:b9:94:84:85:4e:54:a4:79:43:f5:05:cc:b9:ae:
a7:eb:d0:8e:57:e2:4f:dc:81:89:65:b5:9d:b0:b1:
69:f6:27:e0:05:6e:56:05:85:4c:21:1e:a6:de:02:
8d:05:89:19:44:21:d2:8b:90:dd:06:bd:10:af:74:
9c:40:24:94:d1:4e:d7:87:35:f0:d9:74:bd:83:4c:
54:81:b4:d8:de:6f:3c:cd:dd:49:fd:c9:ad:d6:7e:
c9:b2:e2:f0:58:6c:85:7a:a6:e4:d9:5d:08:62:0e:
a8:7d:ee:51:14:9c:23:e1:75:32:24:ae:0e:9d:56:
06:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:C8:99:B3:5A:29:48:3E:54:D1:9B:4C:E6:21:0C:CE:1D:20:2A:F8
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/48iZs1opSD5U0ZtM5iEMzh0gKvg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.240.0/22
Signature Algorithm: sha256WithRSAEncryption
9c:42:0c:a9:88:33:c0:1d:d8:34:b2:43:88:83:a3:85:6a:eb:
44:f7:97:44:e9:b6:ab:cf:7d:62:cc:68:dd:df:56:11:32:64:
ed:3f:06:d6:e7:7a:c9:1a:25:45:09:ce:58:18:ea:20:77:33:
24:81:11:80:39:36:14:43:e0:85:3c:2d:bc:70:40:1a:17:ee:
9f:f8:45:0e:1c:38:0f:f5:50:c8:e0:b0:d2:ac:a0:bd:9b:40:
f2:14:1f:0c:23:09:d6:81:51:e7:e7:bf:db:89:d5:09:ea:dd:
3e:2e:68:dd:43:d1:c9:9f:35:eb:34:22:35:99:da:f4:ed:b2:
00:fb:4e:e1:d3:fa:a7:9c:90:82:45:65:0a:72:88:af:29:1a:
96:2a:44:85:3d:05:6e:93:c6:68:2f:aa:5e:ce:f4:54:45:82:
79:7e:d9:fa:b5:e8:b8:db:48:1c:90:c0:77:37:d5:93:df:44:
c9:59:67:0f:57:14:07:2f:76:cc:04:18:e6:62:30:bf:ea:a8:
df:80:9d:0f:e4:8c:83:93:be:a9:2a:75:0a:b7:a1:96:07:cc:
6e:01:b2:8c:03:4c:be:5f:9e:db:73:74:b1:88:1e:6a:54:7e:
96:4e:7d:bc:f8:9b:bc:47:3b:fe:24:97:29:b0:b6:44:7f:b9:
e2:70:cd:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Feb 19 22:06:34 2025 by rpki-client