Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/i4gaS-8Y2LUTS1BQ67LPYWY0vuw.roa
File: i4gaS-8Y2LUTS1BQ67LPYWY0vuw.roa (raw, json)
Hash identifier: hhAfyYvguOiHtldil5ZLGFXH7yNFgYFxLWOkn+OOUTg=
Subject key identifier: 8B:88:1A:4B:EF:18:D8:B5:13:4B:50:50:EB:B2:CF:61:66:34:BE:EC
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0512FB44
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/i4gaS-8Y2LUTS1BQ67LPYWY0vuw.roa
Signing time: Sun 29 May 2022 21:21:13 +0000
ROA not before: Sun 29 May 2022 21:21:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210644
IP address blocks: 185.174.136.0/24 maxlen: 24
185.229.66.0/24 maxlen: 24
185.106.94.0/24 maxlen: 24
185.112.83.0/24 maxlen: 24
45.142.122.0/24 maxlen: 24
185.17.0.0/24 maxlen: 24
2a0e:d607::/48 maxlen: 48
2a0e:d606::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85130052 (0x512fb44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: May 29 21:21:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b881a4bef18d8b5134b5050ebb2cf616634beec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7f:64:b2:72:f2:dc:84:0d:3b:d8:7c:ed:1b:
a5:56:c5:ff:3d:b1:0c:84:9c:e2:af:0e:9f:48:9e:
87:a8:cb:4f:d7:70:67:cc:94:ea:77:41:4b:c9:e4:
e1:35:ce:02:66:b9:36:27:e2:9d:1b:ea:a3:3e:3f:
b0:de:97:6a:33:83:4d:ca:97:55:75:a0:ac:34:b6:
20:c9:4c:88:c8:b4:c5:d7:01:41:94:77:53:3c:de:
0d:45:aa:06:89:5a:39:d5:12:3a:24:72:52:9d:61:
e1:a5:b1:bd:62:0f:e1:78:3b:be:59:03:b6:31:22:
89:aa:bd:8c:9a:6b:a3:67:df:e7:8b:ae:1c:5d:d5:
ed:92:31:2d:5a:c5:71:f0:1a:da:d6:3f:63:63:c6:
ea:03:68:b8:60:7d:ab:dd:92:9b:31:b7:38:f2:e7:
0c:c3:a6:1a:5c:1b:fb:a3:36:d2:db:4b:a5:1b:82:
ae:b4:59:a9:38:e6:b3:46:43:81:b8:0a:88:2a:b1:
ec:bf:51:37:92:26:1d:ea:8e:26:dd:40:6f:3b:e2:
91:90:d9:f6:61:ea:9e:5b:6f:e1:c3:58:d7:5e:fe:
c6:0a:aa:39:1e:d3:52:71:ad:3c:ce:4f:d5:ce:9f:
82:d0:d8:70:55:c4:9d:71:5c:d5:13:5e:8d:97:06:
7f:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:88:1A:4B:EF:18:D8:B5:13:4B:50:50:EB:B2:CF:61:66:34:BE:EC
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/i4gaS-8Y2LUTS1BQ67LPYWY0vuw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.122.0/24
185.17.0.0/24
185.106.94.0/24
185.112.83.0/24
185.174.136.0/24
185.229.66.0/24
IPv6:
2a0e:d606::/48
2a0e:d607::/48
Signature Algorithm: sha256WithRSAEncryption
3a:6e:3d:00:de:36:02:e3:8f:c6:5c:a9:6e:c8:70:09:03:a6:
9e:2c:85:70:91:ac:ac:cf:1d:4c:92:f0:11:d9:f1:45:7b:ab:
32:1d:8b:04:23:7a:30:66:86:c2:c6:42:72:23:16:d6:92:21:
24:19:e1:07:ff:0b:4a:50:4c:3f:5c:a4:38:dc:fd:f9:f6:af:
8b:b5:f7:80:e0:e5:96:6d:f2:c7:bb:ac:91:fb:d7:49:16:ba:
53:8f:ab:9b:b3:79:0a:de:97:a6:1d:86:6c:5b:3e:1b:24:bb:
10:e1:a9:9e:0e:39:24:db:1a:4a:a2:77:f4:f3:7f:ea:f8:ba:
40:aa:35:17:4a:fd:99:c0:bd:62:aa:7b:7b:2e:b7:31:e2:58:
6a:3b:c6:3c:22:22:e4:77:3e:a3:c6:08:7f:1a:4d:92:4b:93:
d5:0c:ef:df:27:f0:ab:16:62:b3:c2:bd:93:95:4f:e3:a4:36:
02:ad:73:0a:43:3b:f1:f0:2a:30:81:c2:39:26:fb:32:b6:bc:
4e:cb:1a:20:7e:f0:59:ca:79:c0:e2:53:1d:9f:95:a9:05:79:
05:f4:d1:9f:2c:61:d9:02:e6:16:5a:3f:bc:46:3f:3e:64:8a:
0e:de:28:e3:fe:2c:a7:50:65:20:7a:4a:7c:60:a9:d2:4b:83:
48:02:ee:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org