Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nOTu0Ne57RtWQVB67AMq_DleSBk.roa
File: nOTu0Ne57RtWQVB67AMq_DleSBk.roa (raw, json)
Hash identifier: awqIVfDFFu+LTHOlj5Hg8pxpMJP/zMs9FpxLP7VL6qg=
Subject key identifier: 9C:E4:EE:D0:D7:B9:ED:1B:56:41:50:7A:EC:03:2A:FC:39:5E:48:19
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01852FF0C49FFF351C9512F185AA065576FD
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nOTu0Ne57RtWQVB67AMq_DleSBk.roa
Signing time: Tue 20 Dec 2022 14:29:46 +0000
ROA not before: Tue 20 Dec 2022 14:29:46 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.86.153.0/24 maxlen: 24
45.13.226.0/24 maxlen: 24
204.11.0.0/24 maxlen: 24
45.147.7.0/24 maxlen: 24
45.84.197.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:2f:f0:c4:9f:ff:35:1c:95:12:f1:85:aa:06:55:76:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Dec 20 14:29:46 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9ce4eed0d7b9ed1b5641507aec032afc395e4819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c0:00:36:7f:7c:ce:0c:c5:7d:47:9c:bd:86:
66:fa:44:cd:9a:d1:29:d1:97:bd:f3:9e:6d:99:77:
d9:db:4a:a9:56:ce:6a:0b:b2:2a:67:a7:13:58:27:
37:8a:ba:75:a0:19:5b:80:f8:a5:25:2b:52:b6:ec:
30:f2:c7:64:f0:56:95:01:55:4d:13:9b:68:94:d2:
ec:7a:91:1f:fe:9f:71:24:18:55:0b:4d:cf:be:1f:
5a:2a:51:61:b9:dd:8f:bb:5b:98:51:35:1f:62:c2:
a0:5c:52:ca:04:98:bd:49:04:e2:24:cc:02:d3:a4:
1b:dc:1b:66:a7:e5:d2:36:53:00:5b:8d:2c:b0:6d:
41:23:3e:21:4a:fa:2a:47:e9:b8:7f:79:bc:c7:6f:
79:fe:2b:a3:15:c2:3c:68:48:1a:43:58:9a:36:97:
bd:9c:2e:9d:7c:60:86:5b:5f:b9:b6:03:3c:ba:e1:
99:31:69:1c:3a:ae:0f:6b:f9:72:f5:b6:e7:3b:83:
35:b0:0e:ae:ea:88:87:28:16:a7:2b:24:a6:2a:5f:
a9:13:25:69:95:fc:6f:9f:6f:42:9c:97:2f:d4:38:
67:5d:3e:34:c9:ba:66:38:ba:65:72:2b:5c:80:21:
11:50:52:62:4f:75:69:55:88:ff:da:a4:38:78:49:
6e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:E4:EE:D0:D7:B9:ED:1B:56:41:50:7A:EC:03:2A:FC:39:5E:48:19
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/nOTu0Ne57RtWQVB67AMq_DleSBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.226.0/24
45.84.197.0/24
45.86.153.0/24
45.147.7.0/24
204.11.0.0/24
Signature Algorithm: sha256WithRSAEncryption
51:95:e8:59:d1:e6:93:24:5f:52:e4:8a:bd:dd:15:c6:a7:9d:
da:0c:7f:d8:68:60:13:ee:51:35:eb:9e:f4:ee:0c:94:a8:9a:
15:a2:5d:71:2c:22:21:1f:75:c3:ff:ae:5d:ca:64:7d:27:f5:
ff:2e:22:10:34:40:c6:91:e4:b3:40:aa:e1:08:3f:dd:99:6d:
df:16:42:84:46:0c:1c:a3:8f:ac:f6:91:6e:8d:10:11:a8:33:
d8:8d:fc:2f:8b:78:48:35:39:ea:8c:83:d1:1a:49:a7:37:35:
35:84:66:95:c0:b4:6d:92:fe:1f:71:5e:19:b7:00:d8:e2:22:
84:ff:04:0f:52:cc:50:e7:de:26:c8:e7:a0:03:c2:66:dc:3f:
df:b7:74:64:3c:3e:72:4d:7c:97:c0:4c:89:5c:31:5c:c9:30:
e1:48:95:6e:cc:8e:b0:19:ee:6e:95:26:fd:a7:a8:1a:42:82:
d5:c1:8e:67:d1:c0:5f:6b:7d:6a:0e:42:d7:2d:50:fe:bc:79:
11:8c:24:0a:2a:a7:b7:56:0b:fd:cb:f2:93:ad:09:bb:59:b1:
8d:81:31:5e:05:9b:65:e8:32:e1:68:1d:d1:f6:25:28:4e:07:
61:f8:63:4f:d0:d2:f8:f3:48:a7:6f:7e:f5:fb:3d:96:b7:bf:
6b:86:2d:41
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISAYUv8MSf/zUclRLxhaoGVXb9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjIxMjIwMTQyOTQ2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5Y2U0ZWVkMGQ3YjllZDFiNTY0MTUwN2FlYzAzMmFmYzM5NWU0ODE5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcAANn98zgzFfUecvYZm+kTNmtEp
0Ze9855tmXfZ20qpVs5qC7IqZ6cTWCc3irp1oBlbgPilJStStuww8sdk8FaVAVVN
E5tolNLsepEf/p9xJBhVC03Pvh9aKlFhud2Pu1uYUTUfYsKgXFLKBJi9SQTiJMwC
06Qb3Btmp+XSNlMAW40ssG1BIz4hSvoqR+m4f3m8x295/iujFcI8aEgaQ1iaNpe9
nC6dfGCGW1+5tgM8uuGZMWkcOq4Pa/ly9bbnO4M1sA6u6oiHKBanKySmKl+pEyVp
lfxvn29CnJcv1DhnXT40ybpmOLplcitcgCERUFJiT3VpVYj/2qQ4eEluSwIDAQAB
o4ICITCCAh0wHQYDVR0OBBYEFJzk7tDXue0bVkFQeuwDKvw5XkgZMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvbk9UdTBOZTU3UnRXUVZCNjdBTXFfRGxlU0JrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDcGCCsGAQUFBwEHAQH/BCgwJjAkBAIAATAeAwQALQ3iAwQA
LVTFAwQALVaZAwQALZMHAwQAzAsAMA0GCSqGSIb3DQEBCwUAA4IBAQBRlehZ0eaT
JF9S5Iq93RXGp53aDH/YaGAT7lE165707gyUqJoVol1xLCIhH3XD/65dymR9J/X/
LiIQNEDGkeSzQKrhCD/dmW3fFkKERgwco4+s9pFujRARqDPYjfwvi3hINTnqjIPR
GkmnNzU1hGaVwLRtkv4fcV4ZtwDY4iKE/wQPUsxQ594myOegA8Jm3D/ft3RkPD5y
TXyXwEyJXDFcyTDhSJVuzI6wGe5ulSb9p6gaQoLVwY5n0cBfa31qDkLXLVD+vHkR
jCQKKqe3Vgv9y/KTrQm7WbGNgTFeBZtl6DLhaB3R9iUoTgdh+GNP0NL480inb371
+z2Wt79rhi1B
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:31 2023 by rpki-client on console-fra.rpki-client.org