Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/GuieRuzRZQ1k6xBFrv7NhGDGKTw.roa
File: GuieRuzRZQ1k6xBFrv7NhGDGKTw.roa (raw, json)
Hash identifier: HqZ3dnqWA6ji6w8FnxtAwaJAj4FJmNJOJ7SQdWO+U/Y=
Subject key identifier: 1A:E8:9E:46:EC:D1:65:0D:64:EB:10:45:AE:FE:CD:84:60:C6:29:3C
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1ADFE37C
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/GuieRuzRZQ1k6xBFrv7NhGDGKTw.roa
Signing time: Wed 30 Mar 2022 05:09:11 +0000
ROA not before: Wed 30 Mar 2022 05:09:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212477
IP address blocks: 45.140.140.0/22 maxlen: 24
45.140.188.0/22 maxlen: 24
2a07:e345:100::/40 maxlen: 40
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 450880380 (0x1adfe37c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Mar 30 05:09:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1ae89e46ecd1650d64eb1045aefecd8460c6293c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fc:bb:ad:8e:9d:62:07:2d:c7:96:81:18:2b:
95:14:98:48:55:ce:6b:a9:65:75:72:56:8a:e6:47:
db:f4:1c:8b:13:04:a7:a3:c1:2b:61:77:e6:94:69:
f7:e6:cb:86:c4:25:d4:03:0d:ad:73:5a:a1:88:ce:
92:ad:5b:61:d5:11:84:d0:3c:d7:38:4e:41:8e:0d:
63:c5:f7:78:e6:a6:b1:a0:a9:a1:09:01:45:2f:2f:
ec:ff:bd:2a:0b:13:49:4f:38:00:ef:05:d1:a8:21:
49:b4:30:83:65:dc:78:5a:48:a8:65:c3:c4:13:a5:
af:a0:67:9c:3a:b6:f6:89:72:7b:f9:64:bf:63:67:
de:78:41:66:87:ac:89:b5:7d:4e:08:fc:9b:8c:88:
de:c5:43:44:8c:d2:bd:b2:a6:a4:50:f7:4a:72:87:
5e:a1:47:33:45:df:ac:d0:70:6b:3e:2e:83:ef:8e:
ff:49:9b:77:87:4d:f3:cc:59:d2:c5:8a:74:40:30:
d6:1d:f8:88:03:36:ec:bd:ad:9e:2e:3c:62:ce:81:
30:c8:f5:f2:e5:37:ed:27:d6:94:1e:5b:88:85:12:
6f:95:08:b7:66:e3:d0:5c:d5:0c:f3:21:65:37:2e:
75:22:25:7a:6a:70:91:ab:89:16:24:e8:a9:4b:27:
05:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:E8:9E:46:EC:D1:65:0D:64:EB:10:45:AE:FE:CD:84:60:C6:29:3C
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/GuieRuzRZQ1k6xBFrv7NhGDGKTw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.140.0/22
45.140.188.0/22
IPv6:
2a07:e345:100::/40
Signature Algorithm: sha256WithRSAEncryption
b5:78:a3:08:ac:f9:86:34:67:89:bf:da:a1:3e:3b:2f:84:6b:
05:f4:43:64:b3:b4:bc:11:f9:62:e3:e7:a5:2e:94:c3:42:85:
aa:23:d2:8f:63:4c:85:92:11:16:4f:d5:47:6a:1a:ef:62:25:
ac:bb:1a:6e:80:fb:14:58:8b:a0:f5:1a:26:13:86:fb:e7:5d:
2e:45:b3:70:35:e5:b9:32:02:38:68:6e:68:e2:f3:11:c9:78:
e4:d9:9a:64:e0:52:ac:d3:6b:21:a0:3f:82:3e:3a:db:55:a0:
e5:41:1a:bc:93:91:79:08:86:5e:a8:53:18:96:3a:47:9a:3f:
2f:23:7a:33:32:71:7d:36:88:4c:4a:11:81:ac:2d:a7:7e:49:
ef:75:8e:0b:de:20:f1:48:f8:dd:76:9b:b2:ac:94:ca:2c:87:
ea:ae:15:21:80:29:87:12:d5:96:4e:96:a8:f7:ab:30:48:a7:
66:75:4f:ba:b1:b8:d2:19:eb:53:41:7b:8e:34:ff:81:b3:ec:
d5:82:2b:1a:cd:05:54:86:1b:b7:e3:52:d5:98:22:12:a2:83:
d9:1b:d9:65:ac:25:5e:a5:96:b2:fa:8c:ca:b1:85:cc:38:a4:
a6:1b:bc:01:05:55:5c:81:35:f4:75:6a:1e:b7:2d:0e:12:a1:
3c:c6:4d:13
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIEGt/jfDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTU1MDA5YzNkZTQyMWNjNGU2N2I5YTlhZTQyM2JiMzVkZTBiOTI2MB4XDTIyMDMz
MDA1MDkxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWFlODllNDZlY2Qx
NjUwZDY0ZWIxMDQ1YWVmZWNkODQ2MGM2MjkzYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKX8u62OnWIHLceWgRgrlRSYSFXOa6lldXJWiuZH2/QcixME
p6PBK2F35pRp9+bLhsQl1AMNrXNaoYjOkq1bYdURhNA81zhOQY4NY8X3eOamsaCp
oQkBRS8v7P+9KgsTSU84AO8F0aghSbQwg2XceFpIqGXDxBOlr6BnnDq29olye/lk
v2Nn3nhBZoesibV9Tgj8m4yI3sVDRIzSvbKmpFD3SnKHXqFHM0XfrNBwaz4ug++O
/0mbd4dN88xZ0sWKdEAw1h34iAM27L2tni48Ys6BMMj18uU37SfWlB5biIUSb5UI
t2bj0FzVDPMhZTcudSIlempwkauJFiToqUsnBeECAwEAAaOCAh8wggIbMB0GA1Ud
DgQWBBQa6J5G7NFlDWTrEEWu/s2EYMYpPDAfBgNVHSMEGDAWgBSxVQCcPeQhzE5n
uamuQjuzXeC5JjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NWVUFuRDNrSWN4T1o3bXBya0k3czEzZ3VTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8x
L0d1aWVSdXpSWlExazZ4QkZydjdOaEdER0tUdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
ZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8xL3NWVUFuRDNrSWN4
T1o3bXBya0k3czEzZ3VTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA1
BggrBgEFBQcBBwEB/wQmMCQwEgQCAAEwDAMEAi2MjAMEAi2MvDAOBAIAAjAIAwYA
KgfjRQEwDQYJKoZIhvcNAQELBQADggEBALV4owis+YY0Z4m/2qE+Oy+EawX0Q2Sz
tLwR+WLj56UulMNChaoj0o9jTIWSERZP1UdqGu9iJay7Gm6A+xRYi6D1GiYThvvn
XS5Fs3A15bkyAjhobmji8xHJeOTZmmTgUqzTayGgP4I+OttVoOVBGryTkXkIhl6o
UxiWOkeaPy8jejMycX02iExKEYGsLad+Se91jgveIPFI+N12m7KslMosh+quFSGA
KYcS1ZZOlqj3qzBIp2Z1T7qxuNIZ61NBe440/4Gz7NWCKxrNBVSGG7fjUtWYIhKi
g9kb2WWsJV6llrL6jMqxhcw4pKYbvAEFVVyBNfR1ah63LQ4SoTzGTRM=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:32 2023 by rpki-client on console-fra.rpki-client.org