Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/o4J45wVL7TVLGZpBZPD86vjYcEg.roa
File: o4J45wVL7TVLGZpBZPD86vjYcEg.roa (raw, json)
Hash identifier: o7R5mjrg1cE2O3C6cdS8tmX5JCk6V+bqNaQE73buKZc=
Subject key identifier: A3:82:78:E7:05:4B:ED:35:4B:19:9A:41:64:F0:FC:EA:F8:D8:70:48
Certificate issuer: /CN=86fa564cf97577c07633ba4e640ea78c76fc17dd
Certificate serial: 01834038ED55FA807B2E6026E676924CEBD3
Authority key identifier: 86:FA:56:4C:F9:75:77:C0:76:33:BA:4E:64:0E:A7:8C:76:FC:17:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hvpWTPl1d8B2M7pOZA6njHb8F90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/o4J45wVL7TVLGZpBZPD86vjYcEg.roa
Signing time: Thu 15 Sep 2022 08:16:56 +0000
ROA not before: Thu 15 Sep 2022 08:16:56 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39294
IP address blocks: 45.82.219.0/24 maxlen: 24
45.82.218.0/24 maxlen: 24
45.82.216.0/24 maxlen: 24
195.88.135.0/24 maxlen: 24
195.88.134.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:40:38:ed:55:fa:80:7b:2e:60:26:e6:76:92:4c:eb:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=86fa564cf97577c07633ba4e640ea78c76fc17dd
Validity
Not Before: Sep 15 08:16:56 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a38278e7054bed354b199a4164f0fceaf8d87048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:00:30:67:44:df:74:2d:fd:3a:47:c4:34:e4:
c9:8a:64:df:68:92:e1:f9:da:fb:d0:32:fd:0f:05:
3c:7c:32:55:1f:a2:0c:e8:da:8a:30:9a:c7:bf:a3:
fa:27:e6:3d:e9:9a:54:bd:f5:84:31:e5:bf:a9:87:
a5:3c:7c:ab:1e:ef:6c:5c:16:c4:fa:f5:57:ad:60:
cc:b1:07:5d:c7:f9:61:dd:65:b8:f6:b1:73:ca:24:
0d:6d:1a:10:c6:80:76:0e:c3:04:01:a2:4a:7b:91:
82:d0:2f:66:16:47:06:f3:9f:f3:df:76:47:43:df:
70:54:ec:06:77:f6:2b:9e:f2:d9:e5:d1:c1:f4:cb:
49:5e:87:a0:34:5f:2d:3e:17:e7:4d:91:be:75:63:
b8:1f:09:ac:fc:6a:a4:3f:9b:a5:25:40:06:cc:f3:
df:05:f2:16:f7:89:af:e2:3b:15:d4:62:bb:c7:19:
e7:71:f4:9d:81:98:f4:49:e2:04:90:8b:0f:79:09:
b1:ba:1d:8b:98:ad:1f:09:ef:54:55:71:0c:14:dc:
79:7b:db:64:a5:c0:81:3c:1f:65:9e:47:b9:92:ee:
e8:63:76:ca:b2:f9:58:20:2f:90:2a:c1:66:a4:e6:
ac:73:10:cc:d3:ff:bb:3a:a2:c6:cd:72:96:ff:2d:
43:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:82:78:E7:05:4B:ED:35:4B:19:9A:41:64:F0:FC:EA:F8:D8:70:48
X509v3 Authority Key Identifier:
keyid:86:FA:56:4C:F9:75:77:C0:76:33:BA:4E:64:0E:A7:8C:76:FC:17:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hvpWTPl1d8B2M7pOZA6njHb8F90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/o4J45wVL7TVLGZpBZPD86vjYcEg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/39cb4f-ca88-480e-97d9-073d0d14ddde/1/hvpWTPl1d8B2M7pOZA6njHb8F90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.216.0/24
45.82.218.0/23
195.88.134.0/23
Signature Algorithm: sha256WithRSAEncryption
3d:13:35:ec:ab:32:45:19:df:24:3c:28:b6:6c:4c:8e:6d:1e:
d2:33:c4:d1:f3:67:06:56:82:39:b9:8b:0d:06:f2:26:6f:27:
44:bf:b1:ff:30:54:ef:e1:39:6c:61:83:3a:40:d8:01:1e:82:
dd:e8:8d:67:0d:67:2a:b9:fb:b2:ad:69:13:43:67:dd:40:64:
a5:88:05:0e:74:e4:99:8f:3f:b6:4b:58:58:6f:54:bd:c4:16:
1d:7e:97:6d:c8:37:72:d1:04:2a:a9:db:0b:e4:ea:d5:de:b3:
65:1a:29:7b:7a:fe:81:0a:cb:a1:0f:39:cb:9b:0a:6f:c4:ad:
e2:df:6d:d0:cf:1b:0c:d2:18:2d:4e:99:a6:b0:75:5e:46:5b:
e1:4e:55:4f:31:f4:07:fd:19:b5:d8:ba:52:ba:f7:1c:01:bf:
a0:e3:a8:8c:7a:87:1b:c7:5d:bd:00:1c:e6:77:07:2b:3a:a5:
80:bb:9d:3f:91:66:97:d2:42:15:98:f9:2f:8b:2d:6a:de:49:
25:87:00:70:d8:0f:7d:e1:fd:45:e2:b6:f9:4b:d0:fa:0a:d6:
24:87:b7:32:c8:f1:9c:37:82:85:35:fd:4a:6d:b1:5d:9a:12:
b2:85:4d:8c:81:08:3e:0f:fb:d7:93:24:c8:89:b0:8b:7f:81:
f0:b6:fb:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:38:00 2024 by rpki-client on console-ams.rpki-client.org