Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/RT5IagMU2gmAvgCN--_nr7ITkwI.roa
File: RT5IagMU2gmAvgCN--_nr7ITkwI.roa (raw, json)
Hash identifier: EdKUy7DoqN0x/r/zNw5KpXXQOCd0W/tOLdlzveij/dw=
Subject key identifier: 45:3E:48:6A:03:14:DA:09:80:BE:00:8D:FB:EF:E7:AF:B2:13:93:02
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 1499EEA6
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/RT5IagMU2gmAvgCN--_nr7ITkwI.roa
Signing time: Mon 18 Apr 2022 13:01:49 +0000
ROA not before: Mon 18 Apr 2022 13:01:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 6762
IP address blocks: 212.90.102.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345632422 (0x1499eea6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Apr 18 13:01:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=453e486a0314da0980be008dfbefe7afb2139302
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:63:1b:5c:e6:ca:e8:8a:55:cd:d9:1f:72:4f:
66:12:01:f0:2c:da:b6:d0:f0:e5:92:22:d4:5b:ec:
52:76:f9:99:c6:8e:11:4a:b7:23:78:8a:1a:83:46:
44:ce:8b:57:29:07:28:e4:ee:1c:ac:da:2b:9c:da:
39:39:cc:e0:71:1a:d2:40:18:8d:52:a8:44:8f:15:
2e:a8:53:d3:9d:33:40:47:09:98:7a:1e:c9:de:a9:
15:ad:ce:d1:5c:63:b9:10:91:06:70:da:c2:55:b0:
2d:1a:38:ea:1e:4c:2b:b5:12:9d:50:e9:02:da:26:
9b:02:59:0f:a1:b5:6b:5f:ee:83:95:87:9f:b4:ba:
87:38:fe:c7:ca:e2:db:66:de:3d:3c:73:c2:c9:2c:
8b:5b:3b:b1:b6:08:46:20:48:a4:64:1c:4c:fa:72:
f3:ad:19:29:c5:18:75:e5:ab:50:de:3f:dc:1a:3f:
83:66:f4:6a:8b:03:82:e0:91:7b:59:9e:89:b5:93:
89:b8:5a:2d:4a:a9:a4:a3:b0:e2:2b:3d:25:64:1e:
65:97:15:7c:80:55:a5:86:f6:68:41:52:03:00:1b:
bd:2f:b4:5c:8d:9e:7c:ab:cc:aa:86:f8:bd:de:1b:
31:62:be:84:59:03:53:9e:2b:7b:bb:cb:3a:8a:3f:
6d:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:3E:48:6A:03:14:DA:09:80:BE:00:8D:FB:EF:E7:AF:B2:13:93:02
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/RT5IagMU2gmAvgCN--_nr7ITkwI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
212.90.102.0/23
Signature Algorithm: sha256WithRSAEncryption
45:3a:ca:f8:6e:51:fd:0b:50:99:65:e6:43:e7:f2:5a:2a:62:
6d:36:5d:b7:6d:08:00:a6:55:42:b8:7a:8d:42:f6:0d:e1:9f:
88:e4:ee:1a:45:22:6d:ad:f9:8e:ed:68:e0:c6:ac:85:4f:67:
d1:1a:84:fc:94:ca:23:86:22:7f:7f:eb:27:0a:5d:6a:68:7c:
37:ea:e3:13:77:9a:13:a1:06:74:5d:b8:e5:0b:cf:e8:12:db:
65:b9:79:53:a3:3d:05:4a:ec:9b:43:c5:92:4c:1f:0c:09:30:
bf:06:2b:e1:6c:b5:e3:74:46:85:79:05:b0:a8:aa:91:4e:71:
5c:e5:ae:d8:41:dc:a5:da:71:bb:23:d6:fa:12:c0:99:6e:c1:
70:fa:d4:65:56:18:f1:50:73:ee:89:95:3a:94:b3:16:5f:0c:
e6:b5:17:e6:23:a3:e2:40:5b:55:c5:98:87:b3:55:04:1a:5e:
fe:62:6e:a9:f5:b6:61:9a:df:b4:0b:9e:4b:64:ee:c3:3b:2d:
62:79:e5:81:ef:8d:3b:10:1c:f0:76:5d:4c:36:34:4b:79:39:
f5:d8:ab:60:ae:ec:9a:30:24:00:43:41:47:89:e9:2a:eb:c5:
d9:cb:b6:14:5f:56:91:32:5e:a1:88:a0:3d:e7:b1:77:58:7e:
31:0e:3a:4f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFJnupjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDQx
ODEzMDE0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDUzZTQ4NmEwMzE0
ZGEwOTgwYmUwMDhkZmJlZmU3YWZiMjEzOTMwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKxjG1zmyuiKVc3ZH3JPZhIB8CzattDw5ZIi1FvsUnb5mcaO
EUq3I3iKGoNGRM6LVykHKOTuHKzaK5zaOTnM4HEa0kAYjVKoRI8VLqhT050zQEcJ
mHoeyd6pFa3O0VxjuRCRBnDawlWwLRo46h5MK7USnVDpAtommwJZD6G1a1/ug5WH
n7S6hzj+x8ri22bePTxzwsksi1s7sbYIRiBIpGQcTPpy860ZKcUYdeWrUN4/3Bo/
g2b0aosDguCRe1meibWTibhaLUqppKOw4is9JWQeZZcVfIBVpYb2aEFSAwAbvS+0
XI2efKvMqob4vd4bMWK+hFkDU54re7vLOoo/bTkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRFPkhqAxTaCYC+AI377+evshOTAjAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L1JUNUlhZ01VMmdtQXZnQ04tLV9ucjdJVGt3SS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdRaZjANBgkqhkiG9w0BAQsFAAOC
AQEARTrK+G5R/QtQmWXmQ+fyWipibTZdt20IAKZVQrh6jUL2DeGfiOTuGkUiba35
ju1o4MashU9n0RqE/JTKI4Yif3/rJwpdamh8N+rjE3eaE6EGdF245QvP6BLbZbl5
U6M9BUrsm0PFkkwfDAkwvwYr4Wy143RGhXkFsKiqkU5xXOWu2EHcpdpxuyPW+hLA
mW7BcPrUZVYY8VBz7omVOpSzFl8M5rUX5iOj4kBbVcWYh7NVBBpe/mJuqfW2YZrf
tAueS2TuwzstYnnlge+NOxAc8HZdTDY0S3k59dirYK7smjAkAENBR4npKuvF2cu2
FF9WkTJeoYigPeexd1h+MQ46Tw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:35 2024 by rpki-client on console-fra.rpki-client.org