Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/j-AYESXzmEkS8pnJMjCWT-9jw7Y.roa
File: j-AYESXzmEkS8pnJMjCWT-9jw7Y.roa (raw, json)
Hash identifier: 1MMGtmFPll2B3m/yNoZsEzGWFJhlkjzhgX0A7nkFT5k=
Subject key identifier: 8F:E0:18:11:25:F3:98:49:12:F2:99:C9:32:30:96:4F:EF:63:C3:B6
Certificate issuer: /CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Certificate serial: 0183E6772922B445B917CC1D64799A06D139
Authority key identifier: 62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/j-AYESXzmEkS8pnJMjCWT-9jw7Y.roa
Signing time: Mon 17 Oct 2022 15:01:52 +0000
ROA not before: Mon 17 Oct 2022 15:01:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50007
IP address blocks: 45.8.186.0/24 maxlen: 24
45.8.204.0/24 maxlen: 24
85.208.104.0/24 maxlen: 24
2a09:f180::/48 maxlen: 48
2a09:98c0::/48 maxlen: 48
2a09:9940::/48 maxlen: 48
2a09:4040::/48 maxlen: 48
2a09:1140::/48 maxlen: 48
2a06:3b00::/48 maxlen: 48
2a09:6a80::/48 maxlen: 48
2a09:40c0::/48 maxlen: 48
2a09:9740::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:e6:77:29:22:b4:45:b9:17:cc:1d:64:79:9a:06:d1:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=62fdb67654df6184e7d60c4150ea9533c2cf9704
Validity
Not Before: Oct 17 15:01:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8fe0181125f3984912f299c93230964fef63c3b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:50:a7:22:2b:d3:d3:50:fe:9f:c0:77:50:2d:
e2:ba:2f:b3:ee:4d:f9:4c:de:50:1d:dc:7e:4f:d4:
f5:7c:8b:46:a0:a8:2b:36:d8:95:70:4c:8d:1c:e8:
cb:a5:d4:90:ca:07:26:8e:c7:04:e5:3b:19:91:31:
ec:87:c3:c5:09:f2:26:2a:a2:31:15:85:2f:9b:00:
dc:6e:ff:66:f0:68:17:c2:e7:ac:b3:2a:d5:b3:45:
83:10:1a:5e:8c:bd:82:9e:0b:19:b6:1b:df:a4:01:
e9:f3:9f:e0:c1:f4:c6:36:a7:14:2a:a0:3d:56:12:
88:44:98:fc:1d:bc:e2:b9:6f:d9:6f:92:1a:e9:f7:
9d:95:59:07:09:4d:fb:a6:eb:b9:25:c8:5e:8e:61:
59:b4:dc:86:cd:88:e6:4c:f4:c9:f0:77:16:8a:15:
ed:98:72:a2:9d:ca:9f:bd:24:62:f2:56:76:71:99:
66:47:9b:81:6f:92:c4:25:28:95:82:28:ef:6f:0e:
0d:36:47:68:58:a3:13:fa:42:ab:5c:3a:2a:d4:0d:
20:63:c1:47:45:66:3f:d9:86:08:00:0e:56:52:a5:
1e:e4:50:4e:39:15:e0:af:6f:a7:04:83:91:17:21:
b1:14:6c:33:dd:15:39:ee:53:38:f4:ad:a7:89:47:
56:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:E0:18:11:25:F3:98:49:12:F2:99:C9:32:30:96:4F:EF:63:C3:B6
X509v3 Authority Key Identifier:
keyid:62:FD:B6:76:54:DF:61:84:E7:D6:0C:41:50:EA:95:33:C2:CF:97:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/j-AYESXzmEkS8pnJMjCWT-9jw7Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/704071-8dc0-4ed6-9457-e86121c594df/1/Yv22dlTfYYTn1gxBUOqVM8LPlwQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.186.0/24
45.8.204.0/24
85.208.104.0/24
IPv6:
2a06:3b00::/48
2a09:1140::/48
2a09:4040::/48
2a09:40c0::/48
2a09:6a80::/48
2a09:9740::/48
2a09:98c0::/48
2a09:9940::/48
2a09:f180::/48
Signature Algorithm: sha256WithRSAEncryption
81:b1:c3:b5:c1:13:c1:11:7a:62:d6:9a:4a:c8:03:05:dc:ae:
80:15:45:8c:14:d1:9e:8c:d3:89:55:b0:b9:6d:bd:02:1c:91:
cc:f4:17:71:01:ed:f0:15:91:16:50:a6:67:2d:b5:82:32:aa:
ca:ce:84:ea:a3:df:ae:be:36:fa:52:de:31:35:89:3c:eb:21:
b9:bc:d5:02:62:ab:1b:83:63:37:af:39:84:0b:45:db:78:6e:
5f:ec:f2:85:6e:be:3b:a8:af:31:c5:35:52:2a:83:b2:e1:2d:
b9:67:65:31:f0:6b:74:ac:5f:9a:cf:44:5a:0d:b4:69:d3:41:
bd:1c:3b:64:b8:05:99:22:87:25:8b:9a:48:a7:5e:7d:15:59:
f2:18:af:e9:48:e0:ac:b3:9a:81:f5:cb:c2:00:21:07:5f:eb:
78:0d:5e:06:12:9b:89:ec:90:46:cf:ef:85:70:0f:84:cf:8f:
77:e2:ce:73:b3:54:96:07:0d:b7:98:50:6f:3b:64:06:e6:c2:
10:a3:87:80:90:55:97:72:65:63:aa:fb:bf:aa:75:65:0d:fd:
64:2b:07:c3:4a:bc:b7:ec:3b:dc:77:0e:7a:4f:36:0c:14:65:
35:18:79:d2:1a:bb:83:29:66:7b:2f:64:b3:31:31:22:fe:e2:
cd:d7:0f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:23 2023 by rpki-client on console-ams.rpki-client.org