Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uxrrPA3-1WZZM93oPPQlFJFxDl4.roa
File: uxrrPA3-1WZZM93oPPQlFJFxDl4.roa (raw, json)
Hash identifier: i9uePLVduWvIyrp3SWe+01+xVkjLT9g9G04kCca6g5A=
Subject key identifier: BB:1A:EB:3C:0D:FE:D5:66:59:33:DD:E8:3C:F4:25:14:91:71:0E:5E
Certificate issuer: /CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Certificate serial: 01849EB2EADAC44A3AC8DBD404D32570E6AF
Authority key identifier: 9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uxrrPA3-1WZZM93oPPQlFJFxDl4.roa
Signing time: Tue 22 Nov 2022 09:37:16 +0000
ROA not before: Tue 22 Nov 2022 09:37:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206092
IP address blocks: 45.151.1.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:9e:b2:ea:da:c4:4a:3a:c8:db:d4:04:d3:25:70:e6:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9d2a478bb0b08e661b0b2f9fbe8935bc9c2a28a1
Validity
Not Before: Nov 22 09:37:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb1aeb3c0dfed5665933dde83cf4251491710e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:75:e0:13:cc:65:70:a7:cc:cb:cf:88:99:cc:
bb:7b:00:48:89:21:3f:c2:9d:03:69:6d:5e:2a:ff:
a6:25:67:8c:f5:92:3e:08:c4:ec:54:6c:11:09:51:
e2:43:f7:e2:2e:8f:c0:46:da:dd:b3:7c:45:ad:d0:
98:14:1b:29:52:53:1e:bc:04:94:72:9e:9f:1a:a2:
f3:5d:e2:8f:41:a1:06:fb:71:32:9d:29:0a:c6:1a:
cb:aa:e5:c0:3c:45:f0:e1:36:e1:de:00:5f:30:87:
de:5e:1b:0e:9d:13:26:40:fa:cd:de:02:88:54:c7:
c4:28:d9:df:5b:a8:2b:bf:ea:64:8a:8c:14:14:44:
01:c1:15:f0:9a:b0:7a:b3:e4:40:ba:cd:af:b5:e6:
8f:3c:29:31:75:4d:2a:76:9b:5d:da:d3:41:44:9d:
5c:5d:26:e9:48:fc:45:e5:b6:1e:84:b3:14:98:1d:
b4:89:68:a0:d5:49:fb:21:96:1a:42:bd:a0:98:bb:
59:73:a9:f9:ff:0e:ab:df:e4:68:ca:cf:91:bc:39:
f8:d1:b6:7f:10:2a:1b:dc:e6:bc:02:70:e0:47:0c:
47:27:3b:59:aa:3f:22:e6:1c:cc:d7:f7:c6:ff:9e:
17:97:61:89:15:c5:50:1b:70:f8:92:68:01:f7:db:
34:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1A:EB:3C:0D:FE:D5:66:59:33:DD:E8:3C:F4:25:14:91:71:0E:5E
X509v3 Authority Key Identifier:
keyid:9D:2A:47:8B:B0:B0:8E:66:1B:0B:2F:9F:BE:89:35:BC:9C:2A:28:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSpHi7CwjmYbCy-fvok1vJwqKKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/uxrrPA3-1WZZM93oPPQlFJFxDl4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/663df5-580c-4f2c-a66c-eef3511f6c60/1/nSpHi7CwjmYbCy-fvok1vJwqKKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.1.0/24
Signature Algorithm: sha256WithRSAEncryption
44:77:f3:9a:fa:3a:c8:8f:98:59:11:ce:98:a5:55:b3:46:05:
29:f9:68:05:20:04:b7:6a:4c:7a:a6:6b:1a:ad:f7:a8:0c:4a:
37:3a:f1:48:9f:bb:a8:9f:f4:11:16:a2:fc:9b:98:59:f5:bc:
6a:f8:4b:5a:a0:7b:53:fa:79:24:0f:7f:49:73:ff:fd:e6:36:
b8:08:1f:8b:fc:89:ae:f8:20:c4:51:3e:fb:f7:3b:c1:f4:53:
29:e6:ec:d8:dd:aa:37:8c:7a:7f:27:4e:62:80:4b:8c:32:9c:
d1:c6:d3:5b:96:77:63:bc:16:df:c4:42:77:7e:4b:26:8e:35:
af:ed:a3:f1:b4:d6:77:d8:0f:4a:38:40:c8:a9:a0:85:a4:bc:
4f:3e:89:23:69:2a:e6:48:6e:ca:e7:54:b7:0c:69:35:ea:24:
0f:5c:df:3c:78:fa:75:da:fa:d5:41:b2:94:b1:b8:49:92:07:
6b:44:ab:6d:87:13:ea:a6:92:f6:a3:dc:4b:4b:53:18:60:db:
36:16:06:db:6a:76:4f:ff:02:dd:8a:c3:43:b3:ae:1c:95:85:
6c:65:61:a1:95:ac:d8:2d:6a:f2:5d:5b:55:6b:69:e3:59:5c:
5f:d5:55:65:26:49:d2:05:3d:6b:4d:cf:dc:44:f9:ee:c3:57:
56:b7:28:e7
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSesuraxEo6yNvUBNMlcOavMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDlkMmE0NzhiYjBiMDhlNjYxYjBiMmY5ZmJlODkzNWJjOWMy
YTI4YTEwHhcNMjIxMTIyMDkzNzE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhiYjFhZWIzYzBkZmVkNTY2NTkzM2RkZTgzY2Y0MjUxNDkxNzEwZTVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqXXgE8xlcKfMy8+Imcy7ewBIiSE/
wp0DaW1eKv+mJWeM9ZI+CMTsVGwRCVHiQ/fiLo/ARtrds3xFrdCYFBspUlMevASU
cp6fGqLzXeKPQaEG+3EynSkKxhrLquXAPEXw4Tbh3gBfMIfeXhsOnRMmQPrN3gKI
VMfEKNnfW6grv+pkiowUFEQBwRXwmrB6s+RAus2vteaPPCkxdU0qdptd2tNBRJ1c
XSbpSPxF5bYehLMUmB20iWig1Un7IZYaQr2gmLtZc6n5/w6r3+Roys+RvDn40bZ/
ECob3Oa8AnDgRwxHJztZqj8i5hzM1/fG/54Xl2GJFcVQG3D4kmgB99s0RwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFLsa6zwN/tVmWTPd6Dz0JRSRcQ5eMB8GA1UdIwQY
MBaAFJ0qR4uwsI5mGwsvn76JNbycKiihMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMt
ZWVmMzUxMWY2YzYwLzEvdXhyclBBMy0xV1paTTkzb1BQUWxGSkZ4RGw0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi82NjNkZjUtNTgwYy00ZjJjLWE2NmMtZWVmMzUxMWY2YzYw
LzEvblNwSGk3Q3dqbVliQ3ktZnZvazF2SndxS0tFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZcBMA0G
CSqGSIb3DQEBCwUAA4IBAQBEd/Oa+jrIj5hZEc6YpVWzRgUp+WgFIAS3akx6pmsa
rfeoDEo3OvFIn7uon/QRFqL8m5hZ9bxq+EtaoHtT+nkkD39Jc//95ja4CB+L/Imu
+CDEUT779zvB9FMp5uzY3ao3jHp/J05igEuMMpzRxtNblndjvBbfxEJ3fksmjjWv
7aPxtNZ32A9KOEDIqaCFpLxPPokjaSrmSG7K51S3DGk16iQPXN88ePp12vrVQbKU
sbhJkgdrRKtthxPqppL2o9xLS1MYYNs2FgbbanZP/wLdisNDs64clYVsZWGhlazY
LWryXVtVa2njWVxf1VVlJknSBT1rTc/cRPnuw1dWtyjn
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:32 2024 by rpki-client on console-fra.rpki-client.org