Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/wRQDLzfhhDjEaOdciGD9xR-LA0s.roa
File: wRQDLzfhhDjEaOdciGD9xR-LA0s.roa (raw, json)
Hash identifier: GDJa6eWSLdqzAx4sMqLS3ur4zEfWQae2HzutlSvWKMw=
Subject key identifier: C1:14:03:2F:37:E1:84:38:C4:68:E7:5C:88:60:FD:C5:1F:8B:03:4B
Certificate issuer: /CN=c87c78b5b06a6f902c510f9b4a8f803ba32dfa84
Certificate serial: 018A22D68A6B15EDF9831C6FB998AE59E4EC
Authority key identifier: C8:7C:78:B5:B0:6A:6F:90:2C:51:0F:9B:4A:8F:80:3B:A3:2D:FA:84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yHx4tbBqb5AsUQ-bSo-AO6Mt-oQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/wRQDLzfhhDjEaOdciGD9xR-LA0s.roa
Signing time: Wed 23 Aug 2023 14:40:00 +0000
ROA not before: Wed 23 Aug 2023 14:40:00 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 203391
IP address blocks: 185.136.96.0/24 maxlen: 24
185.136.98.0/24 maxlen: 24
185.136.97.0/24 maxlen: 24
185.136.99.0/24 maxlen: 24
45.83.250.0/24 maxlen: 24
45.83.249.0/24 maxlen: 24
45.83.248.0/24 maxlen: 24
45.83.251.0/24 maxlen: 24
2a06:fb00:3::/48 maxlen: 48
2a06:fb00:1::/48 maxlen: 48
2a06:fb00:4::/48 maxlen: 48
2a06:fb00:2::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:22:d6:8a:6b:15:ed:f9:83:1c:6f:b9:98:ae:59:e4:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c87c78b5b06a6f902c510f9b4a8f803ba32dfa84
Validity
Not Before: Aug 23 14:40:00 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=c114032f37e18438c468e75c8860fdc51f8b034b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1d:01:34:3f:4d:8c:a6:21:0c:ff:e6:f2:7d:
77:6d:7c:17:0e:6f:f8:83:c4:cb:00:8f:1e:9e:eb:
a4:e8:6c:72:94:7a:de:67:07:8b:61:de:2d:c5:4f:
f2:52:ee:c5:1c:4f:ad:9e:0b:ec:19:57:f6:2d:01:
b7:8b:b7:a3:d1:88:bf:9f:8b:65:d7:2f:8a:bb:55:
65:02:23:7d:d6:6f:56:21:7e:57:dc:87:ef:f6:f7:
73:e3:de:90:9f:c9:ed:16:a6:15:0e:cd:b9:42:cb:
37:79:8b:4e:ad:e6:af:bb:d4:86:fb:96:9d:d0:c4:
e2:aa:a9:55:24:05:bb:00:ef:fb:23:fb:d5:59:fc:
3c:67:60:0a:35:29:3d:c1:f1:89:e9:6b:ff:b1:a3:
ff:22:63:21:17:37:a4:9f:d1:89:e0:5e:5c:1e:64:
de:d3:01:6e:9d:0a:96:0f:af:f6:e6:2e:4d:20:31:
f1:b9:07:d1:e6:e5:68:0b:2a:6e:ce:90:99:17:c6:
37:fb:56:a6:71:52:97:cb:9d:99:be:2e:f9:08:97:
9a:10:17:04:be:bd:0d:24:b3:fd:01:0a:1d:46:be:
ca:4b:b5:99:21:4d:b1:d3:31:04:8f:69:8d:87:5f:
6a:2e:56:7e:b6:80:fe:e2:87:15:c1:aa:f1:52:5f:
30:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:14:03:2F:37:E1:84:38:C4:68:E7:5C:88:60:FD:C5:1F:8B:03:4B
X509v3 Authority Key Identifier:
keyid:C8:7C:78:B5:B0:6A:6F:90:2C:51:0F:9B:4A:8F:80:3B:A3:2D:FA:84
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yHx4tbBqb5AsUQ-bSo-AO6Mt-oQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/wRQDLzfhhDjEaOdciGD9xR-LA0s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/e22980-d5e5-41e8-a06a-7469ef203f82/1/yHx4tbBqb5AsUQ-bSo-AO6Mt-oQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.248.0/22
185.136.96.0/22
IPv6:
2a06:fb00:1::-2a06:fb00:4:ffff:ffff:ffff:ffff:ffff
Signature Algorithm: sha256WithRSAEncryption
15:5d:99:49:52:e3:13:38:41:fe:63:37:12:0a:93:35:23:19:
0d:9c:bb:11:a2:5f:83:54:55:9d:4e:8f:01:a1:3f:02:a6:3a:
d7:7b:12:5c:95:8a:70:db:31:38:97:7a:3c:85:bc:58:3a:47:
1d:70:a1:e4:43:e1:7e:b3:1c:d4:41:87:d1:cf:be:86:4e:a7:
4b:27:96:5b:a1:be:e5:57:ee:40:cd:23:e2:d0:d7:13:40:5f:
73:0d:17:a8:9d:1d:b7:4d:3b:5e:ec:e1:ea:e1:50:23:5d:39:
e0:1f:e6:25:eb:a3:21:13:84:46:56:76:e4:a3:d3:52:48:cb:
7e:f0:ea:5e:e6:5f:b2:69:18:d3:bf:ec:9b:d2:c0:a5:af:4f:
e4:f1:cc:8b:03:fb:d3:ed:38:5b:98:85:28:e8:d1:62:5d:a3:
e5:34:b5:43:d0:3c:d1:a3:ef:dd:25:02:ec:b6:1f:cb:5d:ab:
ab:7d:d2:93:5c:cc:d1:43:c1:c2:2a:00:8a:e4:55:c2:11:30:
c0:d8:d6:90:5f:c1:0d:d5:a0:c7:94:92:9e:8d:3f:e5:83:1f:
22:47:08:ac:32:85:bf:e2:d8:f2:ed:c1:02:78:e5:69:b5:71:
60:f2:67:07:00:33:6c:86:8f:e5:1b:09:7f:aa:35:a9:15:2e:
63:69:70:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:22:36 2025 by rpki-client