Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/c8VfmwcNkbnD3XGix5_Ntu9fzXI.roa
File: c8VfmwcNkbnD3XGix5_Ntu9fzXI.roa (raw, json)
Hash identifier: EClL8U7RJogfF44wti2+uDkgE8jyA2f1QLtRe5OzJhw=
Subject key identifier: 73:C5:5F:9B:07:0D:91:B9:C3:DD:71:A2:C7:9F:CD:B6:EF:5F:CD:72
Certificate issuer: /CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Certificate serial: 018355896345AC24BCDCCE4268D8A0C07D99
Authority key identifier: E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/c8VfmwcNkbnD3XGix5_Ntu9fzXI.roa
Signing time: Mon 19 Sep 2022 11:36:50 +0000
ROA not before: Mon 19 Sep 2022 11:36:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204860
IP address blocks: 194.180.110.0/24 maxlen: 24
194.180.115.0/24 maxlen: 24
194.180.150.0/24 maxlen: 24
194.180.154.0/24 maxlen: 24
45.158.88.0/22 maxlen: 22
2a0f:5880::/29 maxlen: 29
2a0f:2a80::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:55:89:63:45:ac:24:bc:dc:ce:42:68:d8:a0:c0:7d:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e15808f3f921bc8c3eea87c7584c584c1000b051
Validity
Not Before: Sep 19 11:36:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73c55f9b070d91b9c3dd71a2c79fcdb6ef5fcd72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:2c:9b:49:bd:48:43:80:04:4c:6e:82:a2:5d:
6e:e6:6b:dd:82:39:2d:01:04:2b:56:aa:f8:8a:9f:
fd:1f:5c:f2:da:c2:b2:1e:c4:50:55:2c:05:0e:c5:
43:04:cd:32:bf:06:0f:1c:91:30:1e:86:6d:9b:e9:
f1:d9:29:1d:18:a6:46:fa:26:3a:96:3c:b5:da:21:
9c:a2:c8:3b:8b:9e:11:43:78:1e:92:26:a7:60:a7:
ac:cc:0e:61:ba:50:61:28:cb:a9:9a:05:6a:37:63:
4a:16:12:4b:f7:0b:ca:02:ad:ab:19:0a:96:df:ad:
19:51:aa:7c:34:5e:da:e3:f7:b8:f9:09:c6:1d:86:
46:5c:a4:74:3e:2d:6f:18:a6:7d:7a:e4:fe:d2:07:
a4:21:9f:0a:67:73:ec:3b:2a:d4:b1:02:44:37:7d:
75:c9:74:0d:64:3e:28:2c:f0:c7:a5:65:77:e5:80:
2f:22:ec:f1:d2:fa:d4:0b:c0:84:77:cb:62:f5:7c:
bb:af:85:5e:2e:51:d5:f1:ab:d3:c4:20:dc:b7:04:
9b:14:25:8f:9d:73:31:0e:d4:ea:ef:ea:ef:a8:d9:
5d:ae:39:db:80:29:9e:22:d7:2d:b2:b9:9a:f5:9f:
bb:1c:19:c8:67:e8:98:72:1f:dd:62:5d:90:57:cf:
44:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:C5:5F:9B:07:0D:91:B9:C3:DD:71:A2:C7:9F:CD:B6:EF:5F:CD:72
X509v3 Authority Key Identifier:
keyid:E1:58:08:F3:F9:21:BC:8C:3E:EA:87:C7:58:4C:58:4C:10:00:B0:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4VgI8_khvIw-6ofHWExYTBAAsFE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/c8VfmwcNkbnD3XGix5_Ntu9fzXI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/8e8e82-5274-4d2f-8ca0-ab19fcb0ce64/1/4VgI8_khvIw-6ofHWExYTBAAsFE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.88.0/22
194.180.110.0/24
194.180.115.0/24
194.180.150.0/24
194.180.154.0/24
IPv6:
2a0f:2a80::/29
2a0f:5880::/29
Signature Algorithm: sha256WithRSAEncryption
b2:09:4b:c8:08:c8:bd:98:63:c3:c3:ad:ad:df:8b:d6:0d:2c:
51:47:1a:98:78:04:b7:13:df:4c:3a:54:0b:62:f7:cd:dd:a6:
8d:9b:c0:4a:a5:b4:16:c7:21:ae:e6:46:f2:5b:1b:db:e1:05:
fb:3a:a4:ed:08:a9:53:85:e3:f9:7d:e8:ba:68:2b:31:70:6e:
5a:1c:fc:a3:a7:6f:8d:18:cc:ee:59:ac:f2:c5:d8:7b:1d:da:
2f:69:9a:29:b2:6d:ee:1f:04:87:96:de:7b:cd:3a:87:cd:a4:
16:e5:58:67:c0:0a:9f:c8:7a:7b:d0:66:34:c2:9c:b4:98:0a:
70:cd:af:ae:f4:11:64:b3:c4:58:35:ca:f5:76:f5:7f:1d:2d:
11:5e:ab:cf:31:43:fa:ff:41:3f:33:ef:c9:86:85:1d:af:56:
a5:d5:43:6c:72:e0:b5:d5:9c:05:cc:96:29:f8:d4:df:d9:f5:
a9:a1:67:c5:40:78:3b:88:10:6f:0c:00:34:c5:fe:d4:90:73:
bf:c1:b7:28:3a:eb:4d:8c:12:46:e9:95:4a:a0:ce:b2:61:2d:
61:e9:8c:84:75:39:42:35:3d:a0:42:ad:da:9f:88:fe:6c:49:
0f:cf:e5:f3:74:f9:d5:7b:94:0c:6b:a4:57:e3:ff:20:db:e1:
2c:e6:dc:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:54 2023 by rpki-client on console-ams.rpki-client.org