Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/8hhEziWln4s5wgksR9pq5p34LJk.roa
File: 8hhEziWln4s5wgksR9pq5p34LJk.roa (raw, json)
Hash identifier: i9QcnwSW0pPXwGgtQTh/TWdM6n7Kt3ac2bto519wu/8=
Subject key identifier: F2:18:44:CE:25:A5:9F:8B:39:C2:09:2C:47:DA:6A:E6:9D:F8:2C:99
Certificate issuer: /CN=b00d3d34f61e484688bfff9cc703755823775998
Certificate serial: 0367679A
Authority key identifier: B0:0D:3D:34:F6:1E:48:46:88:BF:FF:9C:C7:03:75:58:23:77:59:98
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sA09NPYeSEaIv_-cxwN1WCN3WZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/8hhEziWln4s5wgksR9pq5p34LJk.roa
Signing time: Sat 01 Jan 2022 08:03:39 +0000
ROA not before: Sat 01 Jan 2022 08:03:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208799
IP address blocks: 45.84.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57108378 (0x367679a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b00d3d34f61e484688bfff9cc703755823775998
Validity
Not Before: Jan 1 08:03:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f21844ce25a59f8b39c2092c47da6ae69df82c99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:db:ec:db:84:20:e4:88:ba:ce:da:63:d5:d8:
67:85:66:4a:fd:8e:b5:47:4c:53:28:d7:21:b8:6d:
d3:49:aa:c4:19:c9:fb:1c:7c:fd:2a:ef:84:d3:8b:
d8:db:43:a9:3e:73:17:69:5e:d5:f8:07:61:b6:fe:
19:b4:e0:46:85:85:65:14:b3:d6:26:f3:db:6c:4d:
84:dd:f8:5c:6f:34:fd:4d:99:e6:34:d0:7b:86:d9:
27:22:d1:16:b2:49:c2:ea:98:f6:a7:06:dd:96:58:
b1:83:0a:70:df:f2:cf:b4:17:e4:5c:ce:8c:89:17:
2c:3b:7e:91:79:cd:b7:12:0f:86:2c:2f:20:8c:3a:
bc:18:0b:54:05:33:b4:b4:52:7d:d5:09:2f:30:e6:
65:fc:ad:31:fc:bb:ec:11:e2:4a:e6:05:1d:2d:c6:
f4:6f:8c:29:d1:8e:1a:c1:5d:57:96:9a:25:2a:a1:
41:5d:19:1d:6f:ed:d7:49:c8:16:62:bf:7d:23:e4:
4a:37:b4:24:c5:3a:3c:03:a4:d0:5c:c9:71:ea:9c:
da:f9:90:c6:c4:ed:14:4a:b5:0e:bf:d7:b7:12:06:
27:5e:c9:85:31:19:41:ed:f6:e5:85:15:3b:04:e7:
db:28:0b:fb:fc:0c:09:69:a3:c1:cc:6c:8f:15:ff:
02:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:18:44:CE:25:A5:9F:8B:39:C2:09:2C:47:DA:6A:E6:9D:F8:2C:99
X509v3 Authority Key Identifier:
keyid:B0:0D:3D:34:F6:1E:48:46:88:BF:FF:9C:C7:03:75:58:23:77:59:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sA09NPYeSEaIv_-cxwN1WCN3WZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/8hhEziWln4s5wgksR9pq5p34LJk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3b25f5-a190-48ff-a3e1-171dc5a98474/1/sA09NPYeSEaIv_-cxwN1WCN3WZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.84.16.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:9c:e8:f1:31:a1:54:98:ac:18:d8:a0:4d:4b:b7:7a:26:e8:
31:58:44:7a:f7:e9:14:a6:9e:97:15:fd:43:89:54:5e:73:20:
9c:8a:05:67:a1:54:c3:ef:1f:2d:6a:0c:76:72:5a:ec:88:de:
9a:a0:30:62:1c:a9:14:85:85:e9:45:71:ff:eb:c0:1c:7f:91:
fd:60:50:2d:1e:9f:f5:56:76:7e:c0:ab:6a:36:eb:a3:96:65:
01:a5:2d:54:c7:34:21:8a:0d:c8:19:20:57:50:6d:71:97:80:
59:03:32:fa:01:83:cf:6a:34:22:51:79:39:2e:2f:3e:ac:14:
50:53:8c:83:bb:d2:b4:45:f2:af:1f:25:cd:26:f7:48:d1:f9:
55:5a:c7:98:af:95:e1:5a:88:7f:b7:02:b3:d4:4a:8b:7a:0c:
46:17:48:be:2c:c3:82:59:7b:aa:60:b8:0e:39:8a:67:6b:30:
40:87:b4:88:00:0a:0c:29:b1:e4:7b:f9:ab:29:60:95:86:05:
9a:1d:56:d7:d9:e6:50:b8:38:58:20:59:b1:3f:62:21:08:90:
2f:35:17:9e:72:1b:8f:94:72:dc:1a:7e:18:1d:38:6c:d0:9e:
2c:88:e2:0b:5e:4a:fb:7f:8f:3c:bf:b1:ec:62:8b:57:ef:21:
bd:3c:01:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:40:56 2025 by rpki-client