Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/Duj77fusUwPBXnLtiV_AKfK71_Y.roa
File: Duj77fusUwPBXnLtiV_AKfK71_Y.roa (raw, json)
Hash identifier: vuN10DDYBhRS0/BRX7zF5HCuSJMm+wNhpC4UtbxSD2U=
Subject key identifier: 0E:E8:FB:ED:FB:AC:53:03:C1:5E:72:ED:89:5F:C0:29:F2:BB:D7:F6
Certificate issuer: /CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Certificate serial: 02DCFE29
Authority key identifier: 72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/Duj77fusUwPBXnLtiV_AKfK71_Y.roa
Signing time: Sat 01 Jan 2022 04:02:24 +0000
ROA not before: Sat 01 Jan 2022 04:02:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208451
IP address blocks: 45.132.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 48037417 (0x2dcfe29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7277a02aa546dd1a0a6a82d05d90b0917e1545ed
Validity
Not Before: Jan 1 04:02:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0ee8fbedfbac5303c15e72ed895fc029f2bbd7f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:00:0b:61:9f:18:f1:6d:b2:3e:ef:29:65:74:
67:83:7c:cb:aa:ac:b3:70:00:c3:2e:34:39:5f:19:
8b:9b:6f:e4:47:13:32:d5:2e:25:6d:f4:30:ce:49:
01:11:72:08:e7:83:63:42:54:86:70:8e:6e:03:ac:
1d:7f:b9:9d:80:00:a6:89:dc:7b:e5:6a:6f:5d:03:
c2:86:c1:94:69:a0:28:d5:a3:d3:4d:c5:fe:c0:31:
68:ef:ac:b8:22:bf:b8:09:0c:fc:76:be:e4:6c:4e:
1a:fb:a1:82:9c:50:d1:80:40:07:20:81:e0:0a:5a:
2f:2a:d5:b0:fc:75:8f:73:66:eb:7f:eb:d8:ef:ac:
8f:5f:49:fc:5a:bd:ea:6b:f4:e4:da:cb:42:57:cb:
98:bb:9a:a7:bb:8d:e4:7c:6a:99:29:b4:66:08:77:
ff:59:9e:f1:cb:96:80:0f:49:14:e2:b5:6f:a7:8e:
1e:ab:b2:5e:10:62:4b:59:e4:9c:a6:f1:39:a9:4a:
f9:0b:3e:84:0a:12:52:d5:ea:84:e6:51:ec:66:cb:
d7:c0:ac:7e:e1:c5:6b:30:56:5e:20:77:92:89:1c:
9e:56:8b:67:b6:fe:af:24:85:bf:ac:9f:d6:5e:57:
77:98:7f:48:3f:56:00:f2:ab:6c:99:95:fc:8d:46:
cf:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:E8:FB:ED:FB:AC:53:03:C1:5E:72:ED:89:5F:C0:29:F2:BB:D7:F6
X509v3 Authority Key Identifier:
keyid:72:77:A0:2A:A5:46:DD:1A:0A:6A:82:D0:5D:90:B0:91:7E:15:45:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cnegKqVG3RoKaoLQXZCwkX4VRe0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/Duj77fusUwPBXnLtiV_AKfK71_Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/97ad7e-fcbe-4fcc-9c3f-f48930e42641/1/cnegKqVG3RoKaoLQXZCwkX4VRe0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.116.0/22
Signature Algorithm: sha256WithRSAEncryption
41:a4:ca:10:2b:9b:47:97:83:fb:b5:33:9b:d3:89:d1:9e:ca:
c2:54:e3:18:2a:b4:29:df:3f:be:b5:a2:3f:1c:f6:60:be:aa:
cb:54:12:79:28:8c:55:31:35:16:ed:25:bb:31:e1:34:f6:68:
f3:d9:50:2e:ae:84:4d:75:04:fc:e3:96:c1:e0:84:18:aa:80:
b8:53:15:d2:d0:9a:58:8f:9b:30:2b:16:e8:e2:3b:d5:bf:53:
95:66:4c:b5:db:6b:59:43:4a:3c:4d:20:e6:b9:f6:6a:84:04:
23:fa:19:24:0e:09:02:57:7a:5f:a2:08:21:f8:ad:99:48:65:
18:b7:13:9e:41:0c:d4:5c:b6:28:77:e2:c2:fb:46:cf:78:4c:
96:c2:ca:4d:02:3d:37:9c:d3:a9:c0:05:ee:0e:87:2b:61:b9:
36:6a:88:c8:da:9c:37:e8:e5:e9:6f:eb:76:8b:af:be:02:1c:
e8:e1:d6:3d:9b:bd:af:4a:8e:0d:7a:e8:50:ee:61:b1:e1:26:
9f:3f:4c:6b:0c:bb:42:de:89:c1:e4:32:74:72:08:70:f3:cb:
03:89:69:7b:08:a4:55:f0:b2:d7:05:fb:be:6d:b3:f4:76:9c:
d5:69:bd:50:68:3d:64:a2:81:11:db:ee:3f:df:ff:69:50:63:
77:09:ec:24
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAtz+KTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
Mjc3YTAyYWE1NDZkZDFhMGE2YTgyZDA1ZDkwYjA5MTdlMTU0NWVkMB4XDTIyMDEw
MTA0MDIyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGVlOGZiZWRmYmFj
NTMwM2MxNWU3MmVkODk1ZmMwMjlmMmJiZDdmNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN0AC2GfGPFtsj7vKWV0Z4N8y6qss3AAwy40OV8Zi5tv5EcT
MtUuJW30MM5JARFyCOeDY0JUhnCObgOsHX+5nYAAponce+Vqb10DwobBlGmgKNWj
003F/sAxaO+suCK/uAkM/Ha+5GxOGvuhgpxQ0YBAByCB4ApaLyrVsPx1j3Nm63/r
2O+sj19J/Fq96mv05NrLQlfLmLuap7uN5HxqmSm0Zgh3/1me8cuWgA9JFOK1b6eO
HquyXhBiS1nknKbxOalK+Qs+hAoSUtXqhOZR7GbL18CsfuHFazBWXiB3kokcnlaL
Z7b+rySFv6yf1l5Xd5h/SD9WAPKrbJmV/I1Gz+UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQO6Pvt+6xTA8Fecu2JX8Ap8rvX9jAfBgNVHSMEGDAWgBRyd6AqpUbdGgpq
gtBdkLCRfhVF7TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2NuZWdLcVZHM1JvS2FvTFFYWkN3a1g0VlJlMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvN2IvOTdhZDdlLWZjYmUtNGZjYy05YzNmLWY0ODkzMGU0MjY0MS8x
L0R1ajc3ZnVzVXdQQlhuTHRpVl9BS2ZLNzFfWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvN2Iv
OTdhZDdlLWZjYmUtNGZjYy05YzNmLWY0ODkzMGU0MjY0MS8xL2NuZWdLcVZHM1Jv
S2FvTFFYWkN3a1g0VlJlMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2EdDANBgkqhkiG9w0BAQsFAAOC
AQEAQaTKECubR5eD+7Uzm9OJ0Z7KwlTjGCq0Kd8/vrWiPxz2YL6qy1QSeSiMVTE1
Fu0luzHhNPZo89lQLq6ETXUE/OOWweCEGKqAuFMV0tCaWI+bMCsW6OI71b9TlWZM
tdtrWUNKPE0g5rn2aoQEI/oZJA4JAld6X6IIIfitmUhlGLcTnkEM1Fy2KHfiwvtG
z3hMlsLKTQI9N5zTqcAF7g6HK2G5NmqIyNqcN+jl6W/rdouvvgIc6OHWPZu9r0qO
DXroUO5hseEmnz9Mawy7Qt6JweQydHIIcPPLA4lpewikVfCy1wX7vm2z9Hac1Wm9
UGg9ZKKBEdvuP9//aVBjdwnsJA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:19:31 2024 by rpki-client on console-ams.rpki-client.org