Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/CcfsOobUidzerrzkKof5q3xhwE8.roa
File: CcfsOobUidzerrzkKof5q3xhwE8.roa (raw, json)
Hash identifier: FfGAV/mvbeiENOlLOnTWjmrEqq3rR0cDusmUWj4vtlg=
Subject key identifier: 09:C7:EC:3A:86:D4:89:DC:DE:AE:BC:E4:2A:87:F9:AB:7C:61:C0:4F
Certificate issuer: /CN=b56fa2bcfb1ba199d0a6597fb88954c0a6c512d5
Certificate serial: 018472AE66EC12429633C5012DBFA11B10D5
Authority key identifier: B5:6F:A2:BC:FB:1B:A1:99:D0:A6:59:7F:B8:89:54:C0:A6:C5:12:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tW-ivPsboZnQpll_uIlUwKbFEtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/CcfsOobUidzerrzkKof5q3xhwE8.roa
Signing time: Sun 13 Nov 2022 20:29:02 +0000
ROA not before: Sun 13 Nov 2022 20:29:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 21769
IP address blocks: 45.11.32.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:72:ae:66:ec:12:42:96:33:c5:01:2d:bf:a1:1b:10:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b56fa2bcfb1ba199d0a6597fb88954c0a6c512d5
Validity
Not Before: Nov 13 20:29:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=09c7ec3a86d489dcdeaebce42a87f9ab7c61c04f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:2b:41:f5:81:c3:94:b4:88:d5:44:8f:ed:40:
26:5b:d5:3d:c2:b9:b5:36:ad:8f:bf:95:fd:46:8f:
69:a5:67:d4:4a:7f:5b:2c:a8:95:45:4c:64:33:03:
bc:47:35:fa:0a:e2:68:db:94:0c:93:b1:34:ff:ba:
69:c5:76:b6:4b:ce:4e:df:33:bb:de:9f:4a:b5:49:
15:cc:e8:9f:2f:47:5d:49:11:a3:f8:92:a6:88:b9:
60:cc:dc:35:48:b9:3b:6f:72:f8:5d:26:7e:25:f9:
b2:d4:56:c5:14:31:37:41:85:3e:86:41:b8:25:03:
d8:01:8a:f4:9a:47:77:14:db:ec:da:92:74:6f:2f:
d0:6a:64:a3:54:69:6e:83:88:7b:a2:83:30:30:cf:
7b:fc:cb:91:4d:8a:25:eb:6f:81:a0:ec:13:0c:fa:
8d:e8:87:8f:51:77:64:25:ef:4f:04:dd:80:2f:e3:
51:ce:70:ce:5a:21:da:6f:18:75:96:49:9e:5f:4e:
2e:11:5e:2c:5f:6c:ab:e2:f0:78:04:56:0a:2a:64:
99:30:14:46:fa:81:59:e2:83:b3:6c:25:2a:87:98:
30:23:5d:b3:34:ac:4c:b9:75:73:4d:41:5e:f1:e0:
d6:bd:fa:32:d5:37:9f:a4:aa:d3:84:b5:00:95:5c:
e9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:C7:EC:3A:86:D4:89:DC:DE:AE:BC:E4:2A:87:F9:AB:7C:61:C0:4F
X509v3 Authority Key Identifier:
keyid:B5:6F:A2:BC:FB:1B:A1:99:D0:A6:59:7F:B8:89:54:C0:A6:C5:12:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tW-ivPsboZnQpll_uIlUwKbFEtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/CcfsOobUidzerrzkKof5q3xhwE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6e/8146d8-31b0-4022-af7e-fa5b2199a739/1/tW-ivPsboZnQpll_uIlUwKbFEtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.32.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:1c:a9:2e:6c:b7:a1:59:84:e2:3a:6c:a9:7e:30:ef:6d:ff:
4b:74:64:de:c4:b4:38:14:87:ee:ca:38:9d:59:d8:47:5a:dc:
22:54:75:55:db:d5:b8:80:85:4e:1d:4c:9e:06:48:2b:6c:3c:
51:bd:ac:1d:2e:c2:06:42:e1:0d:3d:b5:b7:da:ba:44:5a:a0:
ea:6d:ad:19:2e:b4:5e:b0:f2:56:45:fe:ac:50:16:b6:48:5c:
bd:48:1b:38:09:2a:c8:50:f0:21:28:6e:66:e5:d9:f6:76:19:
8a:de:72:7c:83:5b:42:a9:a8:b7:52:c2:d6:a6:89:2d:12:d8:
f9:c8:21:fa:6a:7b:07:7b:df:89:1b:92:5a:38:9b:e7:1a:ff:
65:37:d6:50:85:1e:b2:ad:61:f0:ab:b1:43:32:00:64:89:de:
e1:5c:a6:33:6c:77:86:ae:0f:b2:4d:3f:b1:cd:d8:ec:a6:e2:
28:81:1f:0f:8b:6b:e0:3a:af:e5:9c:f8:cf:ec:eb:4d:7e:55:
f9:73:84:14:5c:03:aa:65:4f:38:d0:89:55:d0:a5:b8:32:96:
c5:0b:b1:27:b1:7b:25:ad:e6:8f:4d:dc:34:8c:36:6b:e6:83:
83:be:b0:f8:21:bc:52:9c:68:98:cf:eb:ae:54:20:e9:47:f4:
19:51:89:7d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYRyrmbsEkKWM8UBLb+hGxDVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NmZhMmJjZmIxYmExOTlkMGE2NTk3ZmI4ODk1NGMwYTZj
NTEyZDUwHhcNMjIxMTEzMjAyOTAyWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwOWM3ZWMzYTg2ZDQ4OWRjZGVhZWJjZTQyYTg3ZjlhYjdjNjFjMDRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCtB9YHDlLSI1USP7UAmW9U9wrm1
Nq2Pv5X9Ro9ppWfUSn9bLKiVRUxkMwO8RzX6CuJo25QMk7E0/7ppxXa2S85O3zO7
3p9KtUkVzOifL0ddSRGj+JKmiLlgzNw1SLk7b3L4XSZ+Jfmy1FbFFDE3QYU+hkG4
JQPYAYr0mkd3FNvs2pJ0by/QamSjVGlug4h7ooMwMM97/MuRTYol62+BoOwTDPqN
6IePUXdkJe9PBN2AL+NRznDOWiHabxh1lkmeX04uEV4sX2yr4vB4BFYKKmSZMBRG
+oFZ4oOzbCUqh5gwI12zNKxMuXVzTUFe8eDWvfoy1TefpKrThLUAlVzpjQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAnH7DqG1Inc3q685CqH+at8YcBPMB8GA1UdIwQY
MBaAFLVvorz7G6GZ0KZZf7iJVMCmxRLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFctaXZQc2JvWm5RcGxsX3VJbFV3S2JGRXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZS84MTQ2ZDgtMzFiMC00MDIyLWFmN2Ut
ZmE1YjIxOTlhNzM5LzEvQ2Nmc09vYlVpZHplcnJ6a0tvZjVxM3hod0U4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZS84MTQ2ZDgtMzFiMC00MDIyLWFmN2UtZmE1YjIxOTlhNzM5
LzEvdFctaXZQc2JvWm5RcGxsX3VJbFV3S2JGRXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQsgMA0G
CSqGSIb3DQEBCwUAA4IBAQCbHKkubLehWYTiOmypfjDvbf9LdGTexLQ4FIfuyjid
WdhHWtwiVHVV29W4gIVOHUyeBkgrbDxRvawdLsIGQuENPbW32rpEWqDqba0ZLrRe
sPJWRf6sUBa2SFy9SBs4CSrIUPAhKG5m5dn2dhmK3nJ8g1tCqai3UsLWpoktEtj5
yCH6ansHe9+JG5JaOJvnGv9lN9ZQhR6yrWHwq7FDMgBkid7hXKYzbHeGrg+yTT+x
zdjspuIogR8Pi2vgOq/lnPjP7OtNflX5c4QUXAOqZU840IlV0KW4MpbFC7EnsXsl
reaPTdw0jDZr5oODvrD4IbxSnGiYz+uuVCDpR/QZUYl9
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:13 2024 by rpki-client on console-fra.rpki-client.org