Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/GEDe22Yuw-b7uWgO4wJkFxNa3qs.roa
File: GEDe22Yuw-b7uWgO4wJkFxNa3qs.roa (raw, json)
Hash identifier: VKZMaMvskytpNVeBfMZ0f3P4cGKAy52CWmxvpz0Lt/w=
Subject key identifier: 18:40:DE:DB:66:2E:C3:E6:FB:B9:68:0E:E3:02:64:17:13:5A:DE:AB
Certificate issuer: /CN=8d66032e08894118d7998c5c060ca46eb3871338
Certificate serial: 0C985420
Authority key identifier: 8D:66:03:2E:08:89:41:18:D7:99:8C:5C:06:0C:A4:6E:B3:87:13:38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jWYDLgiJQRjXmYxcBgykbrOHEzg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/GEDe22Yuw-b7uWgO4wJkFxNa3qs.roa
Signing time: Sat 01 Jan 2022 14:55:43 +0000
ROA not before: Sat 01 Jan 2022 14:55:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49425
IP address blocks: 185.169.144.0/23 maxlen: 24
45.75.128.0/17 maxlen: 24
2a0a:4900::/29 maxlen: 29
2a0a:4900::/32 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 211309600 (0xc985420)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8d66032e08894118d7998c5c060ca46eb3871338
Validity
Not Before: Jan 1 14:55:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1840dedb662ec3e6fbb9680ee3026417135adeab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a5:8e:8b:e9:35:62:23:8e:94:ef:ee:7b:7e:
70:0a:7c:9a:57:62:54:ff:8d:f5:dc:3e:c2:88:c1:
55:f8:a8:9a:e2:f0:4a:05:42:27:3f:19:99:45:6e:
0b:bd:8a:b6:35:18:45:50:d9:72:7f:1a:9e:25:22:
56:ce:c5:6a:9a:e3:f3:44:63:12:29:40:7b:c2:c6:
32:09:03:a5:37:4d:d6:66:cf:8d:8b:a0:8c:18:f2:
10:5c:01:22:b7:7b:14:d1:5b:86:24:e2:e3:90:d7:
ba:3d:70:73:d4:84:ee:91:60:34:04:45:b6:9b:b9:
68:81:6b:b9:3c:ae:d7:17:e0:3b:86:c2:cf:c0:a2:
7a:4e:5e:ac:c2:36:de:04:94:88:e0:8f:8b:11:f3:
89:6e:5e:1f:82:91:d8:5f:11:26:b3:f7:1c:dd:bb:
a5:c4:90:16:74:5c:6a:1e:05:24:d3:24:5c:5f:13:
05:e9:cd:dd:cd:1f:23:f7:10:09:ff:07:b0:5d:e1:
bc:f1:c4:85:e7:7a:36:62:71:f4:22:c1:bd:df:d2:
0a:56:88:f3:d7:51:bc:51:de:82:98:25:9d:7f:52:
48:db:5f:80:43:a1:2d:af:f9:0c:5e:cd:3e:63:fe:
d6:fc:95:e4:bf:b7:91:ee:a9:46:5e:86:a3:ba:eb:
3e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:40:DE:DB:66:2E:C3:E6:FB:B9:68:0E:E3:02:64:17:13:5A:DE:AB
X509v3 Authority Key Identifier:
keyid:8D:66:03:2E:08:89:41:18:D7:99:8C:5C:06:0C:A4:6E:B3:87:13:38
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jWYDLgiJQRjXmYxcBgykbrOHEzg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/GEDe22Yuw-b7uWgO4wJkFxNa3qs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/872dc7-7c01-4e66-844e-599d1ca6a5fd/1/jWYDLgiJQRjXmYxcBgykbrOHEzg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.75.128.0/17
185.169.144.0/23
IPv6:
2a0a:4900::/29
Signature Algorithm: sha256WithRSAEncryption
25:28:1e:c1:0e:23:a0:a4:e7:74:63:d6:97:3c:c8:a7:e8:35:
fd:18:f7:55:25:73:6d:d2:e2:e5:24:a0:86:f7:3a:5d:a1:7e:
cd:d6:58:bb:7d:ca:2a:3d:14:d7:e8:b7:25:68:93:d5:3c:3e:
46:c2:7a:11:13:94:ad:dc:c6:18:29:c6:40:3a:5f:8f:e0:e9:
41:00:5e:8a:eb:02:9a:a3:09:d8:91:1b:af:a1:0b:d7:86:59:
58:21:42:4f:27:4e:e7:c8:30:14:b3:c2:ed:b4:1b:56:2b:89:
60:3c:a6:42:c8:40:14:ed:71:67:dd:e2:c6:59:d5:a6:2e:cb:
5c:6f:e2:71:9c:a8:de:9a:4f:ef:1c:ab:03:f8:a7:31:57:36:
99:cb:34:32:b0:a5:37:81:fb:e2:82:c5:20:b2:fb:2b:7c:80:
bf:fc:10:9a:78:bc:7b:14:18:21:e9:f7:86:32:95:cd:de:3f:
1a:3e:a7:b9:dc:d6:53:69:c3:ae:7b:ee:ad:2d:e2:23:3c:6c:
fd:38:c4:41:d2:26:77:c9:d8:82:2e:75:75:5b:ad:4b:f0:7c:
2b:b2:21:e9:1c:c4:d0:48:04:17:ce:1a:67:84:9e:a3:98:e8:
f8:07:70:f1:99:ef:11:51:ff:47:af:11:c7:51:a0:01:0b:84:
65:75:30:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:46 2024 by rpki-client on console-ams.rpki-client.org