Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/af4c09-c8c2-4893-a10b-0cd8a69729b7/1/G8m0weuJ5XoNu8GaAOhzOpZM6D0.roa
File: G8m0weuJ5XoNu8GaAOhzOpZM6D0.roa (raw, json)
Hash identifier: lNPOn6INoU62s7kKvhOH8+B7e11rodlFnrd/Ke57NZg=
Subject key identifier: 1B:C9:B4:C1:EB:89:E5:7A:0D:BB:C1:9A:00:E8:73:3A:96:4C:E8:3D
Certificate issuer: /CN=29493731efccc74ad5c273874b9360f7aa689465
Certificate serial: 073E7D2B
Authority key identifier: 29:49:37:31:EF:CC:C7:4A:D5:C2:73:87:4B:93:60:F7:AA:68:94:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUk3Me_Mx0rVwnOHS5Ng96polGU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/af4c09-c8c2-4893-a10b-0cd8a69729b7/1/G8m0weuJ5XoNu8GaAOhzOpZM6D0.roa
Signing time: Sat 01 Jan 2022 10:00:40 +0000
ROA not before: Sat 01 Jan 2022 10:00:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208376
IP address blocks: 45.141.228.0/24 maxlen: 24
45.141.230.0/24 maxlen: 24
45.141.229.0/24 maxlen: 24
2a0e:d0c0::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121535787 (0x73e7d2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29493731efccc74ad5c273874b9360f7aa689465
Validity
Not Before: Jan 1 10:00:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1bc9b4c1eb89e57a0dbbc19a00e8733a964ce83d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:1d:80:de:79:87:9a:1e:33:e1:7e:77:80:5e:
4f:a1:be:16:56:76:75:ae:f4:09:03:49:21:19:36:
d6:55:db:83:8d:27:70:b5:11:74:27:87:e6:f5:53:
7c:85:6c:34:58:8b:37:a4:b1:29:7d:3c:0c:98:6d:
51:22:a9:53:9f:c8:1b:30:c2:14:32:04:86:67:ae:
5e:5c:91:94:f5:9f:84:77:43:db:41:ae:b4:ec:84:
2a:21:0b:90:78:5f:1e:af:2a:50:8a:b6:b7:f4:af:
42:f7:e3:29:a4:75:ef:b2:0c:af:97:a0:33:79:6a:
f0:68:43:0e:36:c7:09:10:cc:fe:b5:15:ab:26:93:
a9:01:0b:d9:7c:0b:2b:c6:3b:20:f1:73:f6:4d:a2:
eb:51:59:df:6a:f9:c2:d7:f2:56:e1:ee:1d:2d:0e:
48:39:1a:fb:1f:35:e4:f7:a0:ab:d0:78:c1:d5:f2:
f4:b6:ba:e8:84:74:3e:5c:07:76:e3:a5:cf:95:7d:
56:bc:81:09:53:c9:24:78:f1:91:a7:e2:21:f7:ee:
7e:ea:cf:7b:71:89:51:03:17:7a:31:11:28:67:c9:
a6:c1:ce:8f:ba:5e:b8:0d:0b:b2:59:0f:d1:8e:f9:
6c:38:97:e0:67:5c:0c:3f:c4:4a:ba:a2:d2:91:59:
17:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C9:B4:C1:EB:89:E5:7A:0D:BB:C1:9A:00:E8:73:3A:96:4C:E8:3D
X509v3 Authority Key Identifier:
keyid:29:49:37:31:EF:CC:C7:4A:D5:C2:73:87:4B:93:60:F7:AA:68:94:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUk3Me_Mx0rVwnOHS5Ng96polGU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/af4c09-c8c2-4893-a10b-0cd8a69729b7/1/G8m0weuJ5XoNu8GaAOhzOpZM6D0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/af4c09-c8c2-4893-a10b-0cd8a69729b7/1/KUk3Me_Mx0rVwnOHS5Ng96polGU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.228.0-45.141.230.255
IPv6:
2a0e:d0c0::/29
Signature Algorithm: sha256WithRSAEncryption
2a:c9:8c:d3:f1:f3:ce:a4:91:f2:d3:10:73:41:44:1b:27:64:
4f:69:83:79:8e:fe:51:d9:f7:3b:66:69:c3:35:1c:18:07:28:
9c:5d:0a:2f:89:d4:62:58:16:7c:34:f6:f0:01:30:97:8a:a9:
c3:01:89:67:d9:c0:53:af:b0:a6:72:8a:6d:d7:78:45:98:31:
27:e2:0f:e2:34:51:80:34:c7:e9:3d:7a:5e:07:49:32:10:90:
f5:3a:2b:0f:1b:55:67:13:43:f2:fc:fc:09:0d:72:98:55:07:
61:ac:f5:28:cc:58:04:ae:3e:01:03:a3:59:36:69:fe:48:9a:
1d:90:71:54:4a:4b:56:7c:6c:94:16:c4:bf:bc:f4:52:5e:76:
fd:8a:69:c5:da:d9:a0:82:b3:5e:29:2c:b4:84:31:03:52:f1:
e6:7e:2e:1a:a8:58:99:d0:43:50:1e:ba:eb:04:d8:e8:9e:ea:
69:81:1f:11:6c:ae:21:22:2d:2f:89:02:68:48:8e:fd:ae:b9:
bd:ce:23:d0:a5:74:36:f0:c6:ea:03:86:65:ed:1c:c8:3f:17:
6c:0d:65:da:83:59:c1:e8:d4:f4:8b:74:ff:2f:b2:2e:de:2a:
2b:65:3f:de:94:e2:bb:d0:04:ae:6b:58:74:ba:7c:96:00:4e:
40:7b:5e:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:45:57 2024 by rpki-client on console-ams.rpki-client.org