Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/BDfZe6dA_Y0KEo8xr3IUFz8Tqjg.roa
File: BDfZe6dA_Y0KEo8xr3IUFz8Tqjg.roa (raw, json)
Hash identifier: mv2HWXIa/kPPmmzrT0BQ4jhXdcode9rEYtbU/p3h+Kg=
Subject key identifier: 04:37:D9:7B:A7:40:FD:8D:0A:12:8F:31:AF:72:14:17:3F:13:AA:38
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1440EC5F
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/BDfZe6dA_Y0KEo8xr3IUFz8Tqjg.roa
Signing time: Mon 21 Mar 2022 02:24:24 +0000
ROA not before: Mon 21 Mar 2022 02:24:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6762
IP address blocks: 212.90.102.0/23 maxlen: 23
45.146.242.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 339799135 (0x1440ec5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Mar 21 02:24:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0437d97ba740fd8d0a128f31af7214173f13aa38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:0c:3c:d6:9f:6d:b5:63:c3:94:7f:eb:9a:f0:
d3:b3:50:64:d6:ee:a5:fe:1b:3f:10:2f:2f:e0:5c:
a5:74:75:11:5f:4c:08:f6:ed:20:4f:eb:35:ed:a1:
93:76:f5:17:bc:43:06:0a:22:10:d8:91:d5:67:b3:
20:b0:f3:f0:6d:39:eb:f7:e6:b3:5b:b4:c8:39:58:
3e:b6:5d:ea:f9:ab:42:6c:82:6d:bc:01:12:ce:b4:
50:3f:b3:fb:3a:77:73:33:ce:30:18:a4:a9:79:0f:
bf:c2:1f:2a:7a:8b:11:c4:82:ab:7b:d5:cd:91:0a:
2f:61:67:cc:09:c1:81:8d:94:55:ac:02:12:70:59:
7e:4d:e9:de:eb:a9:39:4a:e7:18:37:81:00:51:d4:
ae:d8:09:d2:73:1d:5e:a9:0e:cb:e9:ec:2f:1b:3a:
98:b1:1d:82:42:44:49:56:bd:db:42:60:5b:09:30:
65:ad:90:a3:ee:74:ac:2d:b1:69:c8:81:05:69:25:
80:ed:fe:72:19:e3:ce:f6:5c:30:b9:cd:5e:07:71:
d7:1d:d6:be:71:aa:3c:ff:9a:9a:81:52:e5:8c:4c:
ae:60:09:f9:a8:01:01:54:49:c3:61:d0:e5:48:0b:
86:a1:c6:20:32:bf:ad:4d:0e:fd:a3:19:ea:cb:73:
f2:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:37:D9:7B:A7:40:FD:8D:0A:12:8F:31:AF:72:14:17:3F:13:AA:38
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/BDfZe6dA_Y0KEo8xr3IUFz8Tqjg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.242.0/23
212.90.102.0/23
Signature Algorithm: sha256WithRSAEncryption
03:66:a7:42:43:06:7e:c8:c7:c5:8f:a6:7f:8b:1c:48:2a:2e:
7b:7b:70:58:5a:ac:06:60:ae:0b:cb:51:a1:62:78:10:9e:76:
0b:8e:0e:b1:6e:9e:53:22:de:9e:a1:38:a4:14:63:59:bb:d6:
51:3a:06:b3:12:a6:7a:ca:7a:3b:1f:1f:61:53:94:04:2c:7d:
6c:ae:2c:47:1e:88:0a:ed:54:5c:6d:00:d0:5e:8b:aa:92:0b:
65:91:ff:55:e9:24:19:a6:1e:4d:13:68:f5:53:fd:10:fd:7d:
36:0e:b1:15:28:2d:be:44:de:8a:24:46:81:70:ce:65:ea:93:
a0:b1:08:52:75:63:23:a0:34:92:b6:28:9e:e3:9f:0e:9e:03:
25:ec:41:51:52:e8:ac:09:4e:6d:23:e5:f4:67:b1:86:0e:10:
d3:93:c9:ad:58:33:ec:a1:db:f1:10:0e:1e:d2:da:34:ed:bc:
14:51:d8:28:79:0a:3c:0c:e8:9d:04:b8:5f:ec:8c:00:b6:24:
d5:2d:57:0d:32:ed:39:0e:98:54:d9:e9:2e:7f:5a:e5:cb:4c:
73:5b:1d:2c:8d:f9:2e:3d:79:87:0b:5e:0c:c8:4b:2d:6a:3a:
6b:e5:cc:0d:70:8d:32:ad:07:04:f8:24:5f:46:e4:aa:d0:af:
4b:f8:8c:f5
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEFEDsXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDMy
MTAyMjQyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDQzN2Q5N2JhNzQw
ZmQ4ZDBhMTI4ZjMxYWY3MjE0MTczZjEzYWEzODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKAMPNafbbVjw5R/65rw07NQZNbupf4bPxAvL+BcpXR1EV9M
CPbtIE/rNe2hk3b1F7xDBgoiENiR1WezILDz8G056/fms1u0yDlYPrZd6vmrQmyC
bbwBEs60UD+z+zp3czPOMBikqXkPv8IfKnqLEcSCq3vVzZEKL2FnzAnBgY2UVawC
EnBZfk3p3uupOUrnGDeBAFHUrtgJ0nMdXqkOy+nsLxs6mLEdgkJESVa920JgWwkw
Za2Qo+50rC2xaciBBWklgO3+chnjzvZcMLnNXgdx1x3WvnGqPP+amoFS5YxMrmAJ
+agBAVRJw2HQ5UgLhqHGIDK/rU0O/aMZ6stz8n0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBQEN9l7p0D9jQoSjzGvchQXPxOqODAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L0JEZlplNmRBX1kwS0VvOHhyM0lVRno4VHFqZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAS2S8gMEAdRaZjANBgkqhkiG9w0B
AQsFAAOCAQEAA2anQkMGfsjHxY+mf4scSCoue3twWFqsBmCuC8tRoWJ4EJ52C44O
sW6eUyLenqE4pBRjWbvWUToGsxKmesp6Ox8fYVOUBCx9bK4sRx6ICu1UXG0A0F6L
qpILZZH/VekkGaYeTRNo9VP9EP19Ng6xFSgtvkTeiiRGgXDOZeqToLEIUnVjI6A0
krYonuOfDp4DJexBUVLorAlObSPl9Gexhg4Q05PJrVgz7KHb8RAOHtLaNO28FFHY
KHkKPAzonQS4X+yMALYk1S1XDTLtOQ6YVNnpLn9a5ctMc1sdLI35Lj15hwteDMhL
LWo6a+XMDXCNMq0HBPgkX0bkqtCvS/iM9Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:34 2024 by rpki-client on console-fra.rpki-client.org