Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/mF50Eteb80FNAFTyit8spbTMyww.roa
File: mF50Eteb80FNAFTyit8spbTMyww.roa (raw, json)
Hash identifier: NU4WBVftD3cTR/9FkSNNuzU2l4WwGiLw2ego8iO2obI=
Subject key identifier: 98:5E:74:12:D7:9B:F3:41:4D:00:54:F2:8A:DF:2C:A5:B4:CC:CB:0C
Certificate issuer: /CN=93a229e266b2558899f3547ee63d84ed6594768b
Certificate serial: 1416E552
Authority key identifier: 93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/mF50Eteb80FNAFTyit8spbTMyww.roa
Signing time: Thu 07 Apr 2022 07:23:04 +0000
ROA not before: Thu 07 Apr 2022 07:23:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58110
IP address blocks: 45.88.202.0/24 maxlen: 24
2a0c:2c40::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337044818 (0x1416e552)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93a229e266b2558899f3547ee63d84ed6594768b
Validity
Not Before: Apr 7 07:23:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=985e7412d79bf3414d0054f28adf2ca5b4cccb0c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:98:b3:87:00:c7:8d:b4:0c:44:e0:29:25:b3:
c9:ed:8f:3d:43:f8:36:34:07:f9:cd:1c:5f:28:d5:
ff:37:71:67:63:40:fe:7e:9e:d5:de:ad:66:bd:52:
69:9c:dd:40:f7:db:13:b2:3a:6f:45:71:53:aa:71:
96:c3:5b:67:2e:94:6c:92:1b:97:9f:98:fe:b7:78:
f1:0a:53:2c:b0:45:5e:54:ce:2f:09:39:e0:86:c0:
0b:17:2e:02:6d:04:36:28:9b:d8:ba:04:b3:55:31:
5b:59:a3:33:6b:3d:ef:08:9e:f8:b4:41:c7:71:0e:
0a:c8:64:d3:00:d0:fd:d8:ce:ae:94:af:79:f1:27:
b0:fb:f9:9c:41:6b:b7:78:ee:cf:3f:a8:2d:d3:0c:
4d:11:67:07:e9:c6:dc:6a:81:05:48:08:65:6f:59:
67:8f:5f:3d:66:44:7e:5f:0e:7f:6d:ca:56:46:e9:
9f:ed:8f:fd:10:54:14:7c:f2:dd:df:e9:b0:62:b7:
e9:f2:13:e0:91:ed:2f:20:5d:2b:58:b0:4b:31:74:
d0:db:99:b2:48:d5:64:40:fb:4c:56:8d:a8:9a:f7:
9f:13:b9:83:e7:5b:b8:4f:3f:ea:5b:8f:a0:7d:fb:
b4:e2:4d:2c:78:8f:4f:8c:da:0b:1f:f3:0a:3c:a8:
e0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:5E:74:12:D7:9B:F3:41:4D:00:54:F2:8A:DF:2C:A5:B4:CC:CB:0C
X509v3 Authority Key Identifier:
keyid:93:A2:29:E2:66:B2:55:88:99:F3:54:7E:E6:3D:84:ED:65:94:76:8B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k6Ip4mayVYiZ81R-5j2E7WWUdos.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/mF50Eteb80FNAFTyit8spbTMyww.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/c4073a-923b-4ecf-9566-4d777cacd9a4/1/k6Ip4mayVYiZ81R-5j2E7WWUdos.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.202.0/24
IPv6:
2a0c:2c40::/32
Signature Algorithm: sha256WithRSAEncryption
aa:7d:5a:07:4d:0e:4e:be:8f:1a:47:97:ff:06:de:ab:cf:55:
ba:b3:1a:8e:60:59:3a:2f:50:00:e7:ce:23:13:f9:8b:8a:cf:
ff:3b:35:9a:94:c5:96:ae:a7:29:56:5c:4e:99:b2:a0:1c:28:
ea:ca:67:f2:c1:b2:9a:37:eb:de:65:88:09:db:db:ab:6f:aa:
5f:64:21:86:41:81:e0:61:af:22:1b:5a:7c:68:d7:87:67:d7:
19:5e:10:9a:5c:75:5b:e4:8d:b5:e9:2c:b1:0b:ea:d7:c4:7d:
39:45:6a:9a:12:9c:2c:45:fe:a0:1e:2c:9d:f5:b5:94:34:28:
08:49:ed:ac:42:a9:da:ef:00:d4:12:5a:bd:e0:50:1d:c4:40:
9c:b5:9d:cf:9b:14:c6:5e:3f:45:86:bf:09:08:2e:85:bf:b3:
fd:f2:7d:ad:97:d3:5b:1c:7c:27:88:3a:2c:a9:25:bd:be:99:
f0:5f:a8:8b:0c:49:07:e3:8b:b5:3e:8b:ce:1c:c8:fc:c5:52:
8b:ee:83:5e:73:c9:c2:7f:10:df:09:48:fd:4f:88:e4:0c:d7:
2d:a5:98:bb:19:ba:63:d1:9c:01:bd:e9:25:9e:bf:b3:93:cc:
52:83:2f:18:af:7f:52:a9:62:ef:7a:4a:8f:48:15:ad:20:14:
b0:7b:ea:44
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEFBblUjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
M2EyMjllMjY2YjI1NTg4OTlmMzU0N2VlNjNkODRlZDY1OTQ3NjhiMB4XDTIyMDQw
NzA3MjMwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTg1ZTc0MTJkNzli
ZjM0MTRkMDA1NGYyOGFkZjJjYTViNGNjY2IwYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6Ys4cAx420DETgKSWzye2PPUP4NjQH+c0cXyjV/zdxZ2NA
/n6e1d6tZr1SaZzdQPfbE7I6b0VxU6pxlsNbZy6UbJIbl5+Y/rd48QpTLLBFXlTO
Lwk54IbACxcuAm0ENiib2LoEs1UxW1mjM2s97wie+LRBx3EOCshk0wDQ/djOrpSv
efEnsPv5nEFrt3juzz+oLdMMTRFnB+nG3GqBBUgIZW9ZZ49fPWZEfl8Of23KVkbp
n+2P/RBUFHzy3d/psGK36fIT4JHtLyBdK1iwSzF00NuZskjVZED7TFaNqJr3nxO5
g+dbuE8/6luPoH37tOJNLHiPT4zaCx/zCjyo4PsCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSYXnQS15vzQU0AVPKK3yyltMzLDDAfBgNVHSMEGDAWgBSToiniZrJViJnz
VH7mPYTtZZR2izAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2s2SXA0bWF5VllpWjgxUi01ajJFN1dXVWRvcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTQvYzQwNzNhLTkyM2ItNGVjZi05NTY2LTRkNzc3Y2FjZDlhNC8x
L21GNTBFdGViODBGTkFGVHlpdDhzcGJUTXl3dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTQv
YzQwNzNhLTkyM2ItNGVjZi05NTY2LTRkNzc3Y2FjZDlhNC8xL2s2SXA0bWF5Vllp
WjgxUi01ajJFN1dXVWRvcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAC1YyjANBAIAAjAHAwUAKgwsQDAN
BgkqhkiG9w0BAQsFAAOCAQEAqn1aB00OTr6PGkeX/wbeq89VurMajmBZOi9QAOfO
IxP5i4rP/zs1mpTFlq6nKVZcTpmyoBwo6spn8sGymjfr3mWICdvbq2+qX2QhhkGB
4GGvIhtafGjXh2fXGV4Qmlx1W+SNtekssQvq18R9OUVqmhKcLEX+oB4snfW1lDQo
CEntrEKp2u8A1BJaveBQHcRAnLWdz5sUxl4/RYa/CQguhb+z/fJ9rZfTWxx8J4g6
LKklvb6Z8F+oiwxJB+OLtT6LzhzI/MVSi+6DXnPJwn8Q3wlI/U+I5AzXLaWYuxm6
Y9GcAb3pJZ6/s5PMUoMvGK9/Uqli73pKj0gVrSAUsHvqRA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:36:30 2024 by rpki-client on console-ams.rpki-client.org