Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/5uwp0ZcHqaInA6a7HsHY8g4V6K0.roa
File: 5uwp0ZcHqaInA6a7HsHY8g4V6K0.roa (raw, json)
Hash identifier: HPMsWBtRki1eyVZbfGMnjh4BKO54AM10oaFRLSMhqco=
Subject key identifier: E6:EC:29:D1:97:07:A9:A2:27:03:A6:BB:1E:C1:D8:F2:0E:15:E8:AD
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 01821FAD817B78BCA2D97DD56F6E2C512B69
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/5uwp0ZcHqaInA6a7HsHY8g4V6K0.roa
Signing time: Thu 21 Jul 2022 07:34:00 +0000
ROA not before: Thu 21 Jul 2022 07:34:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206804
IP address blocks: 45.86.201.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1f:ad:81:7b:78:bc:a2:d9:7d:d5:6f:6e:2c:51:2b:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jul 21 07:34:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e6ec29d19707a9a22703a6bb1ec1d8f20e15e8ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e2:48:77:c4:70:b0:0a:80:c2:eb:bf:c5:6a:
15:8a:b7:bd:5d:1d:22:1e:71:4f:e7:f9:e7:95:ce:
8e:46:fd:b7:1f:b6:90:59:b4:a9:5d:07:ed:b6:f4:
d0:b6:88:5e:16:94:3d:ee:69:d3:22:0d:5d:bc:12:
92:c8:4e:55:ce:1a:9a:9d:9c:9d:a9:6a:8a:36:e0:
ff:30:b8:a8:98:9e:29:18:b0:17:59:67:28:f3:ea:
9a:33:43:15:2f:c5:7c:d9:90:e7:0f:a4:a3:7e:e9:
57:d2:5c:bf:c0:28:8f:17:86:c8:90:85:e1:0c:4c:
70:a9:75:b1:4f:39:6b:a1:fc:25:76:2e:0f:8c:aa:
d5:bb:37:fc:03:3d:a4:0a:77:f0:2b:45:00:09:e8:
a8:1f:d4:87:5f:a4:ae:0d:52:f8:27:12:39:88:6f:
d9:a4:8b:10:a6:9f:bd:69:e4:48:bb:26:e2:71:3f:
00:9c:0b:df:b1:54:ab:31:94:5b:a7:f1:7e:56:6d:
98:be:0b:9c:76:d0:00:d4:f5:93:ef:83:e3:ca:83:
b9:89:33:18:98:63:dc:6f:32:ab:32:25:5d:bb:2d:
3f:09:c9:4c:f9:99:3c:d3:bd:89:90:fa:3d:72:59:
66:66:fc:e0:58:d5:3d:e5:21:3d:63:c8:13:df:05:
be:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:EC:29:D1:97:07:A9:A2:27:03:A6:BB:1E:C1:D8:F2:0E:15:E8:AD
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/5uwp0ZcHqaInA6a7HsHY8g4V6K0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.201.0/24
Signature Algorithm: sha256WithRSAEncryption
ae:c9:8b:47:51:ae:fd:0f:15:41:60:95:65:13:dd:b9:fe:6a:
26:cd:d1:de:0e:08:0b:4b:49:e1:42:88:a9:b8:fa:f1:18:ba:
e9:b9:9c:b7:50:09:8b:44:ee:2e:92:e9:30:e0:9c:3d:b9:23:
8c:36:30:ee:cd:24:71:77:6c:0c:01:2a:b8:9a:98:8d:7a:7b:
12:d0:b9:1e:25:eb:fe:df:ee:cd:cc:59:23:b7:8b:fa:50:90:
44:00:64:48:f0:6d:c2:a5:e9:b0:b5:de:bf:42:ee:42:05:fa:
3d:ba:3a:29:b6:f2:8d:fb:c2:02:44:5c:99:f1:f4:36:d4:0b:
dd:8a:29:2b:72:ad:6d:e9:e2:a2:84:ec:43:a3:3c:d3:69:ce:
71:a4:11:1e:b5:45:c2:3f:f6:ec:a3:bf:ba:6f:0d:3c:d4:1a:
13:77:3e:4a:9f:69:a6:3c:b4:d9:4f:11:00:f6:f8:ea:16:35:
b2:b6:8c:05:d0:f0:df:c5:7e:2c:03:b0:b3:ff:44:f2:4e:27:
08:3b:f0:43:3f:46:76:24:b3:0e:c4:54:4d:ed:7c:70:d7:68:
2f:98:d9:be:50:ce:39:67:2a:23:b4:46:e0:75:6f:35:ba:8a:
30:8e:22:15:c2:5d:8e:3a:76:01:c8:70:5f:f9:ef:aa:7a:33:
9f:9f:65:7e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIfrYF7eLyi2X3Vb24sUStpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxNTUwMDljM2RlNDIxY2M0ZTY3YjlhOWFlNDIzYmIzNWRl
MGI5MjYwHhcNMjIwNzIxMDczNDAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNmVjMjlkMTk3MDdhOWEyMjcwM2E2YmIxZWMxZDhmMjBlMTVlOGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuJId8RwsAqAwuu/xWoVire9XR0i
HnFP5/nnlc6ORv23H7aQWbSpXQfttvTQtoheFpQ97mnTIg1dvBKSyE5VzhqanZyd
qWqKNuD/MLiomJ4pGLAXWWco8+qaM0MVL8V82ZDnD6SjfulX0ly/wCiPF4bIkIXh
DExwqXWxTzlrofwldi4PjKrVuzf8Az2kCnfwK0UACeioH9SHX6SuDVL4JxI5iG/Z
pIsQpp+9aeRIuybicT8AnAvfsVSrMZRbp/F+Vm2YvgucdtAA1PWT74PjyoO5iTMY
mGPcbzKrMiVduy0/CclM+Zk8072JkPo9cllmZvzgWNU95SE9Y8gT3wW+YwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFObsKdGXB6miJwOmux7B2PIOFeitMB8GA1UdIwQY
MBaAFLFVAJw95CHMTme5qa5CO7Nd4LkmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYt
NzM4NTZhZjQ5ZjNlLzEvNXV3cDBaY0hxYUluQTZhN0hzSFk4ZzRWNkswLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9kZTkwMmMtM2QxMy00N2QxLWE1ZTYtNzM4NTZhZjQ5ZjNl
LzEvc1ZVQW5EM2tJY3hPWjdtcHJrSTdzMTNndVNZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVbJMA0G
CSqGSIb3DQEBCwUAA4IBAQCuyYtHUa79DxVBYJVlE925/momzdHeDggLS0nhQoip
uPrxGLrpuZy3UAmLRO4ukukw4Jw9uSOMNjDuzSRxd2wMASq4mpiNensS0LkeJev+
3+7NzFkjt4v6UJBEAGRI8G3Cpemwtd6/Qu5CBfo9ujoptvKN+8ICRFyZ8fQ21Avd
iikrcq1t6eKihOxDozzTac5xpBEetUXCP/bso7+6bw081BoTdz5Kn2mmPLTZTxEA
9vjqFjWytowF0PDfxX4sA7Cz/0TyTicIO/BDP0Z2JLMOxFRN7Xxw12gvmNm+UM45
ZyojtEbgdW81uoowjiIVwl2OOnYByHBf+e+qejOfn2V+
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org