Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/mUOH3-csSbgWx7qeLBFDhXFIqSk.roa
File: mUOH3-csSbgWx7qeLBFDhXFIqSk.roa (raw, json)
Hash identifier: 0imSTFWqxIGVim5I1d+xiV5vWf+BCtwpbhHy9cDCrLg=
Subject key identifier: 99:43:87:DF:E7:2C:49:B8:16:C7:BA:9E:2C:11:43:85:71:48:A9:29
Certificate issuer: /CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Certificate serial: 018441C5744CC19498C455F7853EA30721D4
Authority key identifier: EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/mUOH3-csSbgWx7qeLBFDhXFIqSk.roa
Signing time: Fri 04 Nov 2022 08:32:50 +0000
ROA not before: Fri 04 Nov 2022 08:32:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60475
IP address blocks: 45.90.242.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:41:c5:74:4c:c1:94:98:c4:55:f7:85:3e:a3:07:21:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=eaa5abe9f7304383198ba1ffa592790ecf2c3ceb
Validity
Not Before: Nov 4 08:32:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=994387dfe72c49b816c7ba9e2c1143857148a929
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:d2:e6:df:7f:c1:51:a4:06:69:2d:47:32:d8:
01:c4:84:9f:24:b0:b6:53:03:a7:0c:04:0b:8b:08:
1c:93:6b:29:d8:04:da:2f:f7:f4:10:c3:7e:b1:bb:
a9:a7:ec:dd:24:32:97:b9:d5:15:11:40:1c:8c:14:
af:96:00:10:2d:a9:8f:e6:6f:37:89:41:4e:b7:b8:
28:ec:02:7a:af:7b:f4:55:c1:47:b8:83:c4:ab:08:
e7:46:c5:d8:3a:d9:a8:63:ae:19:24:aa:e4:de:9f:
72:67:51:d3:71:fa:bf:0e:48:74:7a:2c:6a:ae:1a:
fc:07:04:0c:4b:ba:43:c8:2a:76:00:bd:60:76:fa:
bd:45:a1:05:4d:ba:50:5c:f7:8b:92:56:36:cb:cf:
b2:a9:a5:91:98:8b:72:e5:59:38:27:6d:4b:8e:f6:
c4:c5:82:69:4e:f1:f1:1f:10:c1:35:9f:f7:ca:5e:
8a:cb:1c:18:4d:0e:33:0a:7c:f2:2c:b9:f9:13:15:
12:97:f5:5b:1f:cf:c3:10:9f:2a:1e:c3:58:ea:95:
08:57:5c:77:5a:19:0c:32:64:cc:7f:77:88:7a:9a:
eb:c4:20:43:5d:32:b9:85:c9:de:dc:24:12:5b:bc:
02:e7:f0:13:c0:a2:ba:3e:ef:56:79:be:ec:e6:0a:
ce:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:43:87:DF:E7:2C:49:B8:16:C7:BA:9E:2C:11:43:85:71:48:A9:29
X509v3 Authority Key Identifier:
keyid:EA:A5:AB:E9:F7:30:43:83:19:8B:A1:FF:A5:92:79:0E:CF:2C:3C:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/mUOH3-csSbgWx7qeLBFDhXFIqSk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/fb2aa1-004b-49c4-aa41-c9de22b916ca/1/6qWr6fcwQ4MZi6H_pZJ5Ds8sPOs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.242.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:ab:08:69:3d:93:c0:07:64:15:ba:bb:44:3b:63:48:54:ac:
b5:12:11:32:c1:a7:00:15:b9:97:3d:d8:91:1d:56:50:f8:6f:
66:01:7d:72:40:08:8b:42:bc:bb:5c:a0:62:e5:92:88:c1:6e:
76:cb:35:d7:38:95:85:d1:ac:b4:bc:ef:2e:15:a7:53:48:43:
ee:57:4c:3b:72:17:48:7c:1d:35:6e:b1:7d:49:13:fb:3e:37:
fc:4a:12:21:a4:31:68:4d:b0:1d:c9:3d:cf:54:b1:d3:da:c3:
69:39:59:5d:a3:e2:7e:71:51:f0:ff:54:3e:b7:7e:f4:62:ce:
d9:31:83:86:94:10:b1:a3:59:b4:ba:ca:02:0a:d4:3f:3c:ea:
60:2e:94:76:12:20:e5:99:9a:16:b2:1d:66:e4:46:7e:72:15:
c5:68:28:50:48:99:4b:34:3b:57:99:c5:d6:0c:2e:cc:ac:32:
d4:4b:75:d4:b5:68:60:f2:55:60:c9:1b:61:8f:65:fd:9f:4e:
e5:18:52:9f:38:a2:40:25:4f:3a:98:09:28:4d:8d:e5:df:b1:
e7:fd:8e:b3:9d:6f:ce:b1:5e:3b:f3:db:5d:b9:19:4e:3d:35:
05:12:23:6a:e4:6e:93:a3:f5:a8:bb:1d:1d:1c:25:14:94:08:
b5:8f:50:2b
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRBxXRMwZSYxFX3hT6jByHUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGVhYTVhYmU5ZjczMDQzODMxOThiYTFmZmE1OTI3OTBlY2Yy
YzNjZWIwHhcNMjIxMTA0MDgzMjUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTQzODdkZmU3MmM0OWI4MTZjN2JhOWUyYzExNDM4NTcxNDhhOTI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiNLm33/BUaQGaS1HMtgBxISfJLC2
UwOnDAQLiwgck2sp2ATaL/f0EMN+sbupp+zdJDKXudUVEUAcjBSvlgAQLamP5m83
iUFOt7go7AJ6r3v0VcFHuIPEqwjnRsXYOtmoY64ZJKrk3p9yZ1HTcfq/Dkh0eixq
rhr8BwQMS7pDyCp2AL1gdvq9RaEFTbpQXPeLklY2y8+yqaWRmIty5Vk4J21LjvbE
xYJpTvHxHxDBNZ/3yl6KyxwYTQ4zCnzyLLn5ExUSl/VbH8/DEJ8qHsNY6pUIV1x3
WhkMMmTMf3eIeprrxCBDXTK5hcne3CQSW7wC5/ATwKK6Pu9Web7s5grOJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJlDh9/nLEm4Fse6niwRQ4VxSKkpMB8GA1UdIwQY
MBaAFOqlq+n3MEODGYuh/6WSeQ7PLDzrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNnFXcjZmY3dRNE1aaTZIX3BaSjVEczhzUE9zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZi9mYjJhYTEtMDA0Yi00OWM0LWFhNDEt
YzlkZTIyYjkxNmNhLzEvbVVPSDMtY3NTYmdXeDdxZUxCRkRoWEZJcVNrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xZi9mYjJhYTEtMDA0Yi00OWM0LWFhNDEtYzlkZTIyYjkxNmNh
LzEvNnFXcjZmY3dRNE1aaTZIX3BaSjVEczhzUE9zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLVryMA0G
CSqGSIb3DQEBCwUAA4IBAQAMqwhpPZPAB2QVurtEO2NIVKy1EhEywacAFbmXPdiR
HVZQ+G9mAX1yQAiLQry7XKBi5ZKIwW52yzXXOJWF0ay0vO8uFadTSEPuV0w7chdI
fB01brF9SRP7Pjf8ShIhpDFoTbAdyT3PVLHT2sNpOVldo+J+cVHw/1Q+t370Ys7Z
MYOGlBCxo1m0usoCCtQ/POpgLpR2EiDlmZoWsh1m5EZ+chXFaChQSJlLNDtXmcXW
DC7MrDLUS3XUtWhg8lVgyRthj2X9n07lGFKfOKJAJU86mAkoTY3l37Hn/Y6znW/O
sV4789tduRlOPTUFEiNq5G6To/Woux0dHCUUlAi1j1Ar
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:55 2024 by rpki-client on console-fra.rpki-client.org