Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/i0WENpY0fuLGyxdn4MrRGy7OxO8.roa
File: i0WENpY0fuLGyxdn4MrRGy7OxO8.roa (raw, json)
Hash identifier: NvD95A7zbGEQRyEr7jBs6QX8Ph2VDR2m2AIye1pUnFA=
Subject key identifier: 8B:45:84:36:96:34:7E:E2:C6:CB:17:67:E0:CA:D1:1B:2E:CE:C4:EF
Certificate issuer: /CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Certificate serial: 0AD589B1
Authority key identifier: CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/i0WENpY0fuLGyxdn4MrRGy7OxO8.roa
Signing time: Wed 06 Apr 2022 10:22:16 +0000
ROA not before: Wed 06 Apr 2022 10:22:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208485
IP address blocks: 85.133.234.0/24 maxlen: 24
85.133.137.0/24 maxlen: 24
85.133.169.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 181766577 (0xad589b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=cd5e39658a3ef6f13ca21cc11a4e33ebcd946702
Validity
Not Before: Apr 6 10:22:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b45843696347ee2c6cb1767e0cad11b2ecec4ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:51:70:59:e5:7c:d9:cf:d0:89:c1:dc:d2:d6:
46:ef:8b:02:55:2e:58:e5:2f:44:08:08:ca:65:fa:
a3:ce:1e:31:2f:ff:e6:b7:2f:df:61:0d:02:ac:19:
6d:8d:5a:e4:f0:df:13:a7:b7:47:74:83:78:2b:23:
fb:10:8c:48:c4:f7:72:2c:db:46:b9:70:a1:b1:e2:
2f:3e:1c:99:0d:9d:27:80:42:4d:87:b1:2e:81:27:
d3:75:32:0a:f1:46:d2:a4:f1:d5:0b:77:16:d8:8a:
de:ed:e5:4f:71:82:49:ea:6b:11:16:cd:41:82:df:
9c:80:cb:dc:46:71:cc:f9:f9:24:39:78:19:b7:0c:
ff:28:4f:36:94:fb:1a:1b:17:7c:9f:21:54:5a:23:
ba:ee:11:f2:a9:c3:20:f3:6d:2b:0f:28:3f:0e:42:
c8:df:2b:78:8d:c0:52:0a:ff:a3:19:4f:94:81:58:
17:55:47:bf:8f:4e:4e:11:ad:fa:b5:84:e2:40:0f:
09:22:83:ed:7e:e9:4f:b5:e2:fd:aa:5c:35:30:01:
b4:e7:fe:0f:88:0d:88:01:a8:ca:e1:89:86:1b:87:
6a:ab:cc:46:c0:ab:bd:16:71:08:13:7c:c1:66:5e:
5d:41:cd:c1:1c:11:80:31:b8:9d:eb:f8:ad:f5:f1:
2c:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:45:84:36:96:34:7E:E2:C6:CB:17:67:E0:CA:D1:1B:2E:CE:C4:EF
X509v3 Authority Key Identifier:
keyid:CD:5E:39:65:8A:3E:F6:F1:3C:A2:1C:C1:1A:4E:33:EB:CD:94:67:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zV45ZYo-9vE8ohzBGk4z682UZwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/i0WENpY0fuLGyxdn4MrRGy7OxO8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/ef536c-03d3-4ac5-b125-5d1fa66c363b/1/zV45ZYo-9vE8ohzBGk4z682UZwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
85.133.137.0/24
85.133.169.0/24
85.133.234.0/24
Signature Algorithm: sha256WithRSAEncryption
2e:68:6a:ca:e9:d4:c6:04:58:9d:af:89:01:91:fb:94:0e:8a:
8b:84:bb:05:51:c3:61:76:0c:ae:ce:fd:9d:ed:1b:4f:a9:28:
04:bf:d1:de:1e:94:aa:65:0c:2a:f7:15:3a:24:cc:7e:8d:65:
e8:e4:53:d8:b1:00:99:77:49:56:1c:09:24:4a:ed:ea:7f:a2:
5e:a5:5b:5d:39:8c:7c:99:b0:53:cb:11:f4:64:b9:ec:ba:3b:
90:50:81:b2:4b:dc:c5:d7:9e:d0:e6:44:be:d4:1e:7c:a2:b9:
14:ce:d1:be:32:dd:b2:0d:70:4d:e6:50:45:30:85:81:27:4c:
3d:11:96:41:af:65:63:fd:7e:60:2c:f9:68:9e:97:8c:de:51:
3c:95:1a:f9:b2:fe:18:e3:1e:04:4e:b5:de:c9:50:c1:b1:63:
16:59:f7:53:06:16:56:15:8f:d1:69:b9:f8:a8:70:9f:7a:38:
62:42:48:84:5d:aa:8c:32:5c:fd:be:ab:9c:3e:73:05:d6:c2:
42:4c:b2:40:c5:65:42:4e:eb:19:51:be:20:52:32:34:84:04:
2a:18:dc:ff:2b:3d:ed:6b:15:34:d4:27:50:f0:e4:41:6a:89:
e8:13:c5:54:46:1f:0e:5d:1b:11:a3:c5:59:12:51:c0:01:bc:
ee:83:c4:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:13 2024 by rpki-client on console-fra.rpki-client.org