Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/046337-4f1f-444e-83d7-054d65d7247f/1/8LmwKXvJcpF0hQgRsD0ZQ_Cn2Qs.roa
File: 8LmwKXvJcpF0hQgRsD0ZQ_Cn2Qs.roa (raw, json)
Hash identifier: PQrAv5fFkkei4crWmr/y/SxMpJSYyUfS1kIXWqEL0Xw=
Subject key identifier: F0:B9:B0:29:7B:C9:72:91:74:85:08:11:B0:3D:19:43:F0:A7:D9:0B
Certificate issuer: /CN=19c91f1cb0874232a04fbc092baa688accecc9d7
Certificate serial: 08466F26
Authority key identifier: 19:C9:1F:1C:B0:87:42:32:A0:4F:BC:09:2B:AA:68:8A:CC:EC:C9:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GckfHLCHQjKgT7wJK6poiszsydc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/046337-4f1f-444e-83d7-054d65d7247f/1/8LmwKXvJcpF0hQgRsD0ZQ_Cn2Qs.roa
Signing time: Sat 01 Jan 2022 12:54:57 +0000
ROA not before: Sat 01 Jan 2022 12:54:57 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208759
IP address blocks: 45.85.237.0/24 maxlen: 24
45.85.236.0/24 maxlen: 24
45.85.239.0/24 maxlen: 24
45.85.238.0/24 maxlen: 24
2a0e:c885::/44 maxlen: 44
2a0e:c887::/44 maxlen: 44
2a0e:c884:3e80::/44 maxlen: 48
2a0e:c886::/44 maxlen: 44
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138833702 (0x8466f26)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19c91f1cb0874232a04fbc092baa688accecc9d7
Validity
Not Before: Jan 1 12:54:57 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f0b9b0297bc9729174850811b03d1943f0a7d90b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:09:87:f9:83:43:0d:66:d7:d7:1d:83:20:61:
95:fe:b8:37:46:23:bc:d5:f4:4c:67:75:68:48:ab:
90:1e:d6:7c:bc:fa:50:93:da:43:90:8c:7c:ae:1d:
34:6b:b6:20:b2:c4:1c:07:61:44:8a:72:49:4b:df:
22:65:6a:cb:a2:92:a2:9a:e8:cd:76:85:a8:39:e5:
9c:ed:a2:ac:66:17:b9:d4:ad:85:8b:01:1b:cd:58:
47:37:1b:6a:06:72:e8:43:c3:3b:f4:d9:0e:4e:9b:
0d:3f:e9:eb:94:71:94:01:d9:19:2d:fe:25:b6:ea:
b1:13:0c:69:32:89:c6:7e:7c:31:04:ab:00:ea:89:
22:4a:69:b3:02:7b:92:18:b6:22:78:b8:74:90:c0:
5d:80:06:96:c3:7c:81:ea:7d:c7:15:c3:b5:23:15:
e3:3e:50:e7:de:2d:81:24:89:af:47:db:c8:b6:23:
7d:80:e8:72:af:19:ff:93:2d:90:f4:e6:59:cd:e5:
a0:72:d2:31:92:ed:8c:19:d0:e2:30:a1:e0:c2:3d:
6b:7b:16:17:0b:c1:8e:32:9f:14:71:6c:6e:ea:8f:
46:9f:1b:1d:a8:2c:bf:4e:2b:ea:35:16:08:ad:26:
91:3d:0d:67:3e:63:52:e0:81:b4:e7:c4:47:3f:9b:
dd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:B9:B0:29:7B:C9:72:91:74:85:08:11:B0:3D:19:43:F0:A7:D9:0B
X509v3 Authority Key Identifier:
keyid:19:C9:1F:1C:B0:87:42:32:A0:4F:BC:09:2B:AA:68:8A:CC:EC:C9:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GckfHLCHQjKgT7wJK6poiszsydc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/046337-4f1f-444e-83d7-054d65d7247f/1/8LmwKXvJcpF0hQgRsD0ZQ_Cn2Qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/046337-4f1f-444e-83d7-054d65d7247f/1/GckfHLCHQjKgT7wJK6poiszsydc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.236.0/22
IPv6:
2a0e:c884:3e80::/44
2a0e:c885::/44
2a0e:c886::/44
2a0e:c887::/44
Signature Algorithm: sha256WithRSAEncryption
52:c0:d4:e7:ac:77:5e:c3:b4:61:58:28:0a:93:92:90:fe:07:
ee:38:d8:69:b1:d2:82:20:34:ef:75:13:60:65:de:f4:9d:46:
7e:25:6f:22:36:53:78:16:d7:ea:36:94:19:22:c1:40:f5:55:
ac:de:4a:c7:34:67:97:75:2c:09:9c:78:fc:c1:73:6c:8a:1c:
20:c9:22:d6:85:da:24:7f:b4:83:3d:c4:e5:ae:86:cf:cc:37:
a9:82:39:24:c0:42:f5:af:3f:92:79:50:a6:66:92:65:9c:ed:
c3:ae:b7:fb:a8:7a:ce:ec:ad:05:8a:e8:d9:92:9f:3d:88:e8:
8d:dc:57:26:1b:62:08:79:3c:c9:9e:5f:08:df:45:10:5c:b6:
04:dc:71:2e:88:8f:ea:80:27:24:6f:a4:c8:ea:7c:0e:2b:d1:
c6:6d:30:35:42:f8:8e:59:57:dc:61:a4:e4:ba:b6:b1:14:32:
4b:e3:3c:13:73:13:49:53:ed:fc:95:88:b3:ac:1e:7d:78:e4:
83:8b:ed:f9:09:89:84:14:46:f4:88:29:f9:37:21:8e:fc:3c:
23:9b:f0:47:59:26:6d:7a:dc:d7:2b:ee:46:1a:f3:9a:8e:27:
0b:dd:79:f1:74:bf:75:ed:39:26:c7:d6:ee:22:7a:df:f0:ef:
b8:6b:87:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:12 2023 by rpki-client on console-fra.rpki-client.org