Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/_vWWhamtavZs5UyXSnWR3Mg54Rw.roa
File: _vWWhamtavZs5UyXSnWR3Mg54Rw.roa (raw, json)
Hash identifier: zV6rzOD4Gs1zipGHq9hMnEHrH79exb7w2kn9prIgFXY=
Subject key identifier: FE:F5:96:85:A9:AD:6A:F6:6C:E5:4C:97:4A:75:91:DC:C8:39:E1:1C
Certificate issuer: /CN=9eec34baf922028c3432f8f8f22bda6af86b77b2
Certificate serial: 077B6739
Authority key identifier: 9E:EC:34:BA:F9:22:02:8C:34:32:F8:F8:F2:2B:DA:6A:F8:6B:77:B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nuw0uvkiAow0Mvj48ivaavhrd7I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/_vWWhamtavZs5UyXSnWR3Mg54Rw.roa
Signing time: Sat 01 Jan 2022 04:01:35 +0000
ROA not before: Sat 01 Jan 2022 04:01:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3459
IP address blocks: 45.150.212.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125527865 (0x77b6739)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9eec34baf922028c3432f8f8f22bda6af86b77b2
Validity
Not Before: Jan 1 04:01:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fef59685a9ad6af66ce54c974a7591dcc839e11c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:ef:e7:af:0a:e0:34:db:fa:f4:8c:47:cc:d2:
7c:8d:b9:04:0d:96:06:3a:f2:6d:2e:9f:a6:f4:7a:
64:61:82:42:72:0f:f7:18:d2:56:55:e6:84:25:3a:
d9:75:59:65:3d:75:4d:93:88:97:16:18:07:3b:07:
39:f7:ca:a8:14:a9:80:2c:de:1b:46:ad:53:52:05:
8d:ee:67:42:a6:50:01:29:4d:b9:9e:7f:69:f7:90:
78:08:61:bc:16:9f:1e:b4:89:bb:7d:68:84:f7:12:
76:1c:c0:9c:e2:64:02:98:37:18:5a:ca:47:90:84:
5e:75:9c:25:c0:72:02:d7:e8:dc:68:c2:7f:36:91:
62:02:9f:ce:bb:bd:80:9d:ff:f4:af:5c:d6:a8:a1:
71:cf:28:d5:11:1f:0e:96:9c:cb:23:3a:78:59:07:
e7:e4:a8:f9:11:50:8c:66:35:a4:83:18:44:b5:ed:
5e:ba:50:4e:30:4d:10:88:1c:3a:af:af:79:b1:87:
70:cc:ed:50:7e:a3:41:c9:0f:6d:ef:03:dc:5d:10:
87:e9:09:bf:f9:b9:5e:0b:87:eb:79:82:2e:03:dc:
7e:5c:9d:fc:c3:d7:09:49:d2:0d:d5:f5:9e:9b:d3:
fe:9d:41:de:74:51:a0:5a:8b:00:96:39:f7:64:ce:
30:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F5:96:85:A9:AD:6A:F6:6C:E5:4C:97:4A:75:91:DC:C8:39:E1:1C
X509v3 Authority Key Identifier:
keyid:9E:EC:34:BA:F9:22:02:8C:34:32:F8:F8:F2:2B:DA:6A:F8:6B:77:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nuw0uvkiAow0Mvj48ivaavhrd7I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/_vWWhamtavZs5UyXSnWR3Mg54Rw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/6ea8f7-cb4a-4e4e-ad79-ac87171f4e5c/1/nuw0uvkiAow0Mvj48ivaavhrd7I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.212.0/23
Signature Algorithm: sha256WithRSAEncryption
9d:38:f8:a9:ca:e6:d2:99:bb:5e:d1:9b:b9:09:ab:57:56:71:
cf:d3:6b:f6:ae:f7:05:c9:29:32:36:18:8d:52:41:7b:87:ac:
bb:bb:ec:ca:50:93:00:be:60:e4:4f:d8:da:84:15:3b:8d:ba:
ca:2d:62:af:e2:7c:ea:be:98:b5:a0:4d:ce:1c:ff:9a:4c:93:
c0:29:67:3c:ac:f1:80:4b:3f:67:cb:3e:77:8f:ab:4a:bd:f2:
bf:ea:2c:eb:08:0b:2d:39:45:0b:49:1b:59:59:27:7e:8e:d3:
a3:dc:a2:c5:72:66:d6:b8:03:ee:92:32:7b:33:59:f8:4e:5a:
6e:93:7b:55:a7:6b:f9:3f:c6:a9:23:63:60:03:d1:61:b3:31:
95:9b:dd:68:ec:bd:bb:41:07:4d:b4:84:ca:27:c8:ef:ea:2f:
57:c1:b5:0e:b2:6f:cb:db:eb:ad:0d:05:14:f6:47:60:06:f5:
ac:d4:60:53:ab:a8:b8:eb:43:26:49:22:e0:d1:24:93:86:d6:
be:00:d9:f7:2f:d9:57:00:47:9d:ae:3c:99:bf:87:f5:66:2e:
0b:7f:f3:37:38:df:11:a8:e2:7b:7e:f5:fa:9f:78:f6:63:44:
0e:5e:77:75:c7:41:f7:8c:6f:bb:4e:44:fa:ba:8c:09:42:e3:
65:c3:5f:35
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB3tnOTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
ZWVjMzRiYWY5MjIwMjhjMzQzMmY4ZjhmMjJiZGE2YWY4NmI3N2IyMB4XDTIyMDEw
MTA0MDEzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmVmNTk2ODVhOWFk
NmFmNjZjZTU0Yzk3NGE3NTkxZGNjODM5ZTExYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAO3v568K4DTb+vSMR8zSfI25BA2WBjrybS6fpvR6ZGGCQnIP
9xjSVlXmhCU62XVZZT11TZOIlxYYBzsHOffKqBSpgCzeG0atU1IFje5nQqZQASlN
uZ5/afeQeAhhvBafHrSJu31ohPcSdhzAnOJkApg3GFrKR5CEXnWcJcByAtfo3GjC
fzaRYgKfzru9gJ3/9K9c1qihcc8o1REfDpacyyM6eFkH5+So+RFQjGY1pIMYRLXt
XrpQTjBNEIgcOq+vebGHcMztUH6jQckPbe8D3F0Qh+kJv/m5XguH63mCLgPcflyd
/MPXCUnSDdX1npvT/p1B3nRRoFqLAJY592TOMKMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT+9ZaFqa1q9mzlTJdKdZHcyDnhHDAfBgNVHSMEGDAWgBSe7DS6+SICjDQy
+PjyK9pq+Gt3sjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L251dzB1dmtpQW93ME12ajQ4aXZhYXZocmQ3SS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzQvNmVhOGY3LWNiNGEtNGU0ZS1hZDc5LWFjODcxNzFmNGU1Yy8x
L192V1doYW10YXZaczVVeVhTbldSM01nNTRSdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQv
NmVhOGY3LWNiNGEtNGU0ZS1hZDc5LWFjODcxNzFmNGU1Yy8xL251dzB1dmtpQW93
ME12ajQ4aXZhYXZocmQ3SS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2W1DANBgkqhkiG9w0BAQsFAAOC
AQEAnTj4qcrm0pm7XtGbuQmrV1Zxz9Nr9q73BckpMjYYjVJBe4esu7vsylCTAL5g
5E/Y2oQVO426yi1ir+J86r6YtaBNzhz/mkyTwClnPKzxgEs/Z8s+d4+rSr3yv+os
6wgLLTlFC0kbWVknfo7To9yixXJm1rgD7pIyezNZ+E5abpN7Vadr+T/GqSNjYAPR
YbMxlZvdaOy9u0EHTbSEyifI7+ovV8G1DrJvy9vrrQ0FFPZHYAb1rNRgU6uouOtD
Jkki4NEkk4bWvgDZ9y/ZVwBHna48mb+H9WYuC3/zNzjfEajie371+p949mNEDl53
dcdB94xvu05E+rqMCULjZcNfNQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:59 2024 by rpki-client on console-fra.rpki-client.org