Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/3is_RMHbzFm-ScYDeAfZ49F67zA.roa
File: 3is_RMHbzFm-ScYDeAfZ49F67zA.roa (raw, json)
Hash identifier: ML3ThNwN7x9WAhmd7qlCJJ0wSWCxgy8t6rGZD4LjZy0=
Subject key identifier: DE:2B:3F:44:C1:DB:CC:59:BE:49:C6:03:78:07:D9:E3:D1:7A:EF:30
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 0182B01D857DD7B6731FAE9BB465AEBB01A1
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/3is_RMHbzFm-ScYDeAfZ49F67zA.roa
Signing time: Thu 18 Aug 2022 08:41:40 +0000
ROA not before: Thu 18 Aug 2022 08:41:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.139.44.0/22 maxlen: 24
45.83.152.0/22 maxlen: 24
45.139.56.0/22 maxlen: 24
45.139.64.0/22 maxlen: 24
45.83.124.0/22 maxlen: 24
45.83.144.0/22 maxlen: 24
45.139.36.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:b0:1d:85:7d:d7:b6:73:1f:ae:9b:b4:65:ae:bb:01:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Aug 18 08:41:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de2b3f44c1dbcc59be49c6037807d9e3d17aef30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:13:a2:d0:64:f5:8e:8d:93:62:04:ea:35:f0:
b2:65:87:94:da:bc:40:69:24:fd:c2:90:ff:1c:7b:
3b:70:9e:ec:ab:18:ab:c3:85:e8:42:7c:e5:91:eb:
08:d4:68:6f:05:bf:28:b1:b3:c3:3c:c8:14:e9:1c:
85:c7:fe:24:e9:02:e3:5e:25:e9:47:28:cc:72:68:
cb:d9:fd:9e:d9:96:df:17:f2:26:a4:6c:6e:7e:bf:
44:58:e5:49:e9:ca:6d:fc:27:e4:b0:d3:e1:96:89:
39:6d:48:1b:56:27:e3:d4:e0:08:7d:cb:da:01:5f:
c5:70:59:96:23:e6:39:4a:eb:50:17:2b:75:aa:83:
b8:f3:19:4c:e6:e3:67:5f:91:7d:7c:01:54:a5:0c:
0a:83:44:12:c1:bb:ee:9b:5e:7a:a0:33:25:8c:2c:
1a:da:73:a2:4b:64:44:02:cf:ca:df:ca:ed:fa:23:
60:52:cb:41:9a:32:96:95:68:16:9f:67:2c:80:38:
d5:c2:37:4e:20:dd:db:8f:d3:e5:5f:f4:d7:ca:f0:
4f:8f:d2:0c:82:fe:d8:81:7d:37:aa:eb:66:7d:ea:
92:58:a8:cb:d4:f1:1e:85:5d:7b:79:ed:f7:57:bd:
3b:b4:09:88:20:b6:55:b2:db:d9:2a:ca:d5:10:45:
6b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2B:3F:44:C1:DB:CC:59:BE:49:C6:03:78:07:D9:E3:D1:7A:EF:30
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/3is_RMHbzFm-ScYDeAfZ49F67zA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.124.0/22
45.83.144.0/22
45.83.152.0/22
45.139.36.0/22
45.139.44.0/22
45.139.56.0/22
45.139.64.0/22
Signature Algorithm: sha256WithRSAEncryption
16:ff:b2:50:e6:96:e8:b6:54:88:d3:89:e4:53:93:58:8d:58:
a7:50:93:bc:48:af:19:64:d2:6a:ad:ad:35:f5:c5:8f:e0:a5:
c8:c0:38:2b:a6:58:54:2c:4e:a8:35:8d:fd:a7:b6:81:b5:1f:
62:dd:81:ce:d3:bc:39:2b:cd:fe:52:99:36:ee:5d:1b:86:b2:
5d:ab:22:ac:e1:0e:b4:8f:06:dd:42:37:71:ce:e3:9f:d1:4c:
aa:bb:a5:84:d6:c4:21:20:e3:e1:7a:26:59:f4:d1:a7:03:41:
28:85:64:2e:ce:32:f8:fa:67:c4:aa:b4:a9:10:76:88:7f:c8:
1f:01:9f:7f:1b:c3:a9:17:02:17:e9:65:83:78:b9:8a:6d:3b:
a4:64:6d:b6:0a:69:f0:66:4e:ac:50:6f:16:0e:bf:6e:5a:0b:
b2:bd:ef:e1:3b:33:f0:99:e6:02:d3:6c:3f:28:11:e4:b6:17:
27:78:4a:7a:9e:5d:ba:4b:02:c8:3d:76:f8:82:0b:b7:91:73:
bf:a1:88:80:7c:3d:ba:67:59:13:6b:59:a2:59:18:33:90:f8:
8b:1e:a0:f3:82:f6:63:52:6a:1f:c8:20:c9:02:cc:8b:57:03:
43:36:9e:cd:4a:0f:db:20:3a:9d:2d:ca:d5:da:29:83:ae:47:
b5:6d:b8:cc
-----BEGIN CERTIFICATE-----
MIIFITCCBAmgAwIBAgISAYKwHYV917ZzH66btGWuuwGhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUxNTgwOGYzZjkyMWJjOGMzZWVhODdjNzU4NGM1ODRjMTAw
MGIwNTEwHhcNMjIwODE4MDg0MTQwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTJiM2Y0NGMxZGJjYzU5YmU0OWM2MDM3ODA3ZDllM2QxN2FlZjMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgBOi0GT1jo2TYgTqNfCyZYeU2rxA
aST9wpD/HHs7cJ7sqxirw4XoQnzlkesI1GhvBb8osbPDPMgU6RyFx/4k6QLjXiXp
RyjMcmjL2f2e2ZbfF/ImpGxufr9EWOVJ6cpt/CfksNPhlok5bUgbVifj1OAIfcva
AV/FcFmWI+Y5SutQFyt1qoO48xlM5uNnX5F9fAFUpQwKg0QSwbvum156oDMljCwa
2nOiS2REAs/K38rt+iNgUstBmjKWlWgWn2csgDjVwjdOIN3bj9PlX/TXyvBPj9IM
gv7YgX03qutmfeqSWKjL1PEehV17ee33V707tAmIILZVstvZKsrVEEVrKQIDAQAB
o4ICLTCCAikwHQYDVR0OBBYEFN4rP0TB28xZvknGA3gH2ePReu8wMB8GA1UdIwQY
MBaAFOFYCPP5IbyMPuqHx1hMWEwQALBRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNFZnSThfa2h2SXctNm9mSFdFeFlUQkFBc0ZFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC84ZThlODItNTI3NC00ZDJmLThjYTAt
YWIxOWZjYjBjZTY0LzEvM2lzX1JNSGJ6Rm0tU2NZRGVBZlo0OUY2N3pBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lZC84ZThlODItNTI3NC00ZDJmLThjYTAtYWIxOWZjYjBjZTY0
LzEvNFZnSThfa2h2SXctNm9mSFdFeFlUQkFBc0ZFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMEMGCCsGAQUFBwEHAQH/BDQwMjAwBAIAATAqAwQCLVN8AwQC
LVOQAwQCLVOYAwQCLYskAwQCLYssAwQCLYs4AwQCLYtAMA0GCSqGSIb3DQEBCwUA
A4IBAQAW/7JQ5pbotlSI04nkU5NYjVinUJO8SK8ZZNJqra019cWP4KXIwDgrplhU
LE6oNY39p7aBtR9i3YHO07w5K83+Upk27l0bhrJdqyKs4Q60jwbdQjdxzuOf0Uyq
u6WE1sQhIOPheiZZ9NGnA0EohWQuzjL4+mfEqrSpEHaIf8gfAZ9/G8OpFwIX6WWD
eLmKbTukZG22CmnwZk6sUG8WDr9uWguyve/hOzPwmeYC02w/KBHkthcneEp6nl26
SwLIPXb4ggu3kXO/oYiAfD26Z1kTa1miWRgzkPiLHqDzgvZjUmofyCDJAsyLVwND
Np7NSg/bIDqdLcrV2imDrke1bbjM
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:54 2023 by rpki-client on console-ams.rpki-client.org