Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/VckKwtOV1Q3QLJxR_F08zs0LTr0.roa
File: VckKwtOV1Q3QLJxR_F08zs0LTr0.roa (raw, json)
Hash identifier: l9lgslNvKjG5Dg+exrZ6DYZlRnucTkHzOCodQSBqRKc=
Subject key identifier: 55:C9:0A:C2:D3:95:D5:0D:D0:2C:9C:51:FC:5D:3C:CE:CD:0B:4E:BD
Certificate issuer: /CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Certificate serial: 06ABCE00
Authority key identifier: 5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/VckKwtOV1Q3QLJxR_F08zs0LTr0.roa
Signing time: Wed 01 Jun 2022 12:18:36 +0000
ROA not before: Wed 01 Jun 2022 12:18:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 140224
IP address blocks: 45.81.128.0/24 maxlen: 24
45.135.116.0/24 maxlen: 24
45.135.117.0/24 maxlen: 24
45.91.83.0/24 maxlen: 24
45.91.81.0/24 maxlen: 24
45.91.80.0/24 maxlen: 24
45.155.222.0/24 maxlen: 24
45.155.223.0/24 maxlen: 24
45.140.89.0/24 maxlen: 24
45.140.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111922688 (0x6abce00)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5b2dd9fe628b6bc10141de0241766a1b7a63193f
Validity
Not Before: Jun 1 12:18:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55c90ac2d395d50dd02c9c51fc5d3ccecd0b4ebd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:bb:8a:6c:cd:3e:44:ea:6d:c2:f2:b7:62:15:
17:23:61:ed:21:2f:06:f9:da:2e:d5:d0:04:5c:ba:
7d:8d:fd:d1:7d:0f:a5:c9:0d:75:88:1f:6a:ea:e1:
0b:67:79:a2:0b:2a:13:54:c7:8f:84:13:cd:48:00:
22:c9:c7:a8:09:53:c5:c0:01:a8:7a:b6:57:11:d2:
d7:c4:ad:db:94:42:5d:a7:48:49:1f:88:db:bc:13:
40:bf:08:a3:72:79:49:3c:79:d3:90:1a:eb:a4:a8:
f1:ad:e3:1e:c4:be:04:4a:e8:17:11:2b:39:b6:60:
31:6f:de:f5:fb:02:30:ab:a5:88:72:3a:5b:b6:cc:
e0:97:16:7d:19:fd:f3:41:83:28:e5:98:ec:c6:29:
55:12:54:1d:07:81:16:33:18:14:82:bd:c7:24:69:
35:41:76:b4:85:b6:8c:eb:52:38:74:97:f9:37:53:
c1:59:20:a4:91:76:65:70:47:de:2e:89:0a:9b:93:
3c:9b:5b:f7:42:9f:98:fe:57:d0:12:03:f8:44:54:
ab:19:bf:3c:72:f6:17:3c:b8:51:39:77:73:51:03:
bd:54:a3:9b:a5:f7:8b:45:01:c1:64:56:1a:ab:91:
5e:63:db:b1:79:89:9e:8c:00:39:9d:be:50:74:f7:
d3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:C9:0A:C2:D3:95:D5:0D:D0:2C:9C:51:FC:5D:3C:CE:CD:0B:4E:BD
X509v3 Authority Key Identifier:
keyid:5B:2D:D9:FE:62:8B:6B:C1:01:41:DE:02:41:76:6A:1B:7A:63:19:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/VckKwtOV1Q3QLJxR_F08zs0LTr0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/4de889-dc9d-41e5-b3aa-0d7b551f828c/1/Wy3Z_mKLa8EBQd4CQXZqG3pjGT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.128.0/24
45.91.80.0/23
45.91.83.0/24
45.135.116.0/23
45.140.88.0/23
45.155.222.0/23
Signature Algorithm: sha256WithRSAEncryption
1a:81:5c:f1:ec:2a:ef:b7:1a:63:36:4a:55:d5:5e:2e:83:a7:
fc:83:b6:d5:80:03:95:97:2a:63:15:d9:d3:63:7d:c6:b4:a2:
a0:cc:14:3a:56:ba:aa:c7:56:02:b6:50:80:79:86:ec:cf:98:
ed:d5:7c:f1:76:65:8e:0e:ef:b1:5b:61:88:0e:62:f8:f6:ff:
c1:7e:34:78:00:b4:ec:d3:88:1b:00:f3:76:7d:52:79:a8:90:
e9:92:22:ed:f0:d6:fb:61:b6:eb:bf:30:47:fb:c3:b2:cd:96:
5b:78:11:60:9f:b1:c3:5b:50:46:f1:c5:3b:4a:29:58:3c:b8:
49:2f:0b:9f:0e:2b:37:b9:98:3f:fc:4a:53:41:33:dc:7d:dd:
a2:05:93:b1:ad:e0:87:6f:23:6d:c9:7a:a4:2f:6c:41:6a:de:
d9:11:4b:ee:91:83:02:46:79:06:1f:ff:7c:94:66:78:25:56:
80:93:41:b6:8f:ff:af:6d:50:b8:27:0b:82:6e:f8:b1:3e:40:
23:36:cb:8b:51:79:02:23:67:fa:14:e6:c2:f2:d4:61:ff:59:
07:0b:dc:60:8d:e0:3a:ac:a2:db:b1:85:5d:2a:70:25:24:fd:
a6:e7:ab:90:e4:94:6e:c6:b5:65:ff:72:0d:6d:86:01:69:84:
a1:88:36:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:57 2023 by rpki-client on console-ams.rpki-client.org