Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/Ia2rj6UkTq_5zZdOb4yY-aunhAQ.roa
File: Ia2rj6UkTq_5zZdOb4yY-aunhAQ.roa (raw, json)
Hash identifier: Tdy8sjz2nOQx8p+bbNxi4Mm6tZ2o2qdSvnEdos6D4ME=
Subject key identifier: 21:AD:AB:8F:A5:24:4E:AF:F9:CD:97:4E:6F:8C:98:F9:AB:A7:84:04
Certificate issuer: /CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e
Certificate serial: 06845E9D
Authority key identifier: 85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/Ia2rj6UkTq_5zZdOb4yY-aunhAQ.roa
Signing time: Sat 01 Jan 2022 08:56:24 +0000
ROA not before: Sat 01 Jan 2022 08:56:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57814
IP address blocks: 45.138.44.0/24 maxlen: 32
185.110.93.0/24 maxlen: 32
45.138.45.0/24 maxlen: 32
45.138.47.0/24 maxlen: 32
195.69.140.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109338269 (0x6845e9d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=856f0c90073afb8ecde7e83409ceabdb93b41a4e
Validity
Not Before: Jan 1 08:56:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=21adab8fa5244eaff9cd974e6f8c98f9aba78404
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:2b:83:93:9b:22:37:ae:6b:ca:45:1d:80:af:
fa:92:08:d0:a1:fb:a9:28:32:b1:e4:47:8e:80:39:
08:00:6d:7f:92:6a:cc:9d:69:cc:37:f9:34:54:96:
02:ad:2b:c0:e7:ad:34:1e:57:ff:f8:5b:a3:18:03:
87:ba:bb:c7:bf:bc:4f:34:0f:0a:5b:c9:03:58:d8:
4d:77:c7:71:bf:5d:be:44:ad:bf:4b:1d:81:3c:6d:
88:21:bd:74:4f:8d:7c:91:88:17:64:bf:ba:73:f9:
87:69:e9:53:db:60:fb:b5:66:2a:32:8d:ff:ab:0d:
35:22:1f:98:0a:a7:23:b2:61:8f:05:66:62:b8:55:
4f:a9:ea:32:55:34:1d:c1:e5:a7:d9:62:3a:7b:7c:
b1:5d:8b:f7:73:88:7f:94:c1:23:b8:49:0e:62:37:
25:64:6d:5c:a0:2a:a5:92:8a:52:0b:02:ee:55:09:
70:ba:3d:b7:4e:78:59:20:f4:72:bc:ce:9e:ab:7b:
6e:ad:00:ad:4e:1a:55:10:c6:a5:59:3c:ac:97:45:
f4:25:10:96:52:40:06:f4:9a:bf:5d:58:64:67:07:
f0:3b:b7:91:f7:47:9a:6e:f8:13:0c:ce:be:20:4d:
0b:97:d0:a3:42:f0:77:0d:16:4c:22:73:cd:28:2d:
09:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:AD:AB:8F:A5:24:4E:AF:F9:CD:97:4E:6F:8C:98:F9:AB:A7:84:04
X509v3 Authority Key Identifier:
keyid:85:6F:0C:90:07:3A:FB:8E:CD:E7:E8:34:09:CE:AB:DB:93:B4:1A:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hW8MkAc6-47N5-g0Cc6r25O0Gk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/Ia2rj6UkTq_5zZdOb4yY-aunhAQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8c/204268-6078-4b53-94d2-44fde96b8aec/1/hW8MkAc6-47N5-g0Cc6r25O0Gk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.44.0/23
45.138.47.0/24
185.110.93.0/24
195.69.140.0/22
Signature Algorithm: sha256WithRSAEncryption
59:c4:5f:f0:74:d2:33:42:92:29:e0:0d:10:75:90:4c:96:5c:
68:1b:cb:a5:32:25:76:df:8f:21:f4:1c:64:24:e8:a6:d6:27:
72:90:b4:9e:83:35:4e:d5:0d:ab:df:8a:e5:ca:24:bc:21:03:
11:e4:b2:64:bb:41:76:40:2e:fd:e6:0d:67:d1:0d:21:f2:b7:
8c:68:62:4a:06:b8:1f:e4:a2:f5:29:76:e1:93:39:58:e2:60:
d8:4b:5e:4f:f1:7e:52:c8:83:24:52:bc:1e:c5:94:17:73:85:
7a:4d:44:44:8c:93:4c:73:69:7d:97:93:c2:58:ca:0d:22:68:
e9:e9:2e:97:2b:2d:7e:91:73:25:42:bb:52:62:85:64:81:64:
44:1b:b0:a4:c6:29:2b:8a:3c:e8:20:29:b3:87:fb:01:e9:19:
78:15:8e:dc:bd:59:bc:86:8b:2b:0f:21:c2:c0:b7:b9:f9:48:
29:c7:a7:ac:12:83:eb:f1:8b:f9:e4:13:5c:b1:0e:29:08:80:
56:f7:d3:6e:8f:25:59:f8:16:6d:55:c3:36:cf:b0:6c:3a:72:
9a:f3:71:f1:c2:47:84:5e:95:6d:ed:0b:84:1e:52:1a:43:4b:
e8:43:59:b0:65:22:d2:cf:6d:67:68:09:90:ac:1a:d0:90:9b:
7b:c0:ad:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:22:56 2024 by rpki-client on console-ams.rpki-client.org