Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Axd9QhojcxnUVZ8nyomS0YdmccA.roa
File: Axd9QhojcxnUVZ8nyomS0YdmccA.roa (raw, json)
Hash identifier: kV34L+4D1XqC0jwvEyOkCaI9mnwe0N8HR8vit8S+YQg=
Subject key identifier: 03:17:7D:42:1A:23:73:19:D4:55:9F:27:CA:89:92:D1:87:66:71:C0
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 08AD1FAC
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Axd9QhojcxnUVZ8nyomS0YdmccA.roa
Signing time: Fri 06 May 2022 13:30:28 +0000
ROA not before: Fri 06 May 2022 13:30:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48266
IP address blocks: 45.67.200.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145563564 (0x8ad1fac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: May 6 13:30:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=03177d421a237319d4559f27ca8992d1876671c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:83:4c:fb:24:31:6e:bb:c0:f8:4d:82:50:4e:
e6:d9:35:6b:da:e7:d7:b9:6b:77:75:6c:da:49:fb:
93:68:b2:73:2b:ee:27:0b:e3:e6:51:e9:19:a1:c8:
bf:1a:36:42:79:c3:e6:18:f2:21:bb:03:23:34:19:
02:89:70:11:f1:3c:f2:e9:ae:39:fc:2b:95:f3:2b:
38:99:2e:b9:42:ce:60:fc:32:c2:34:38:53:e4:8c:
af:1f:8b:d5:c7:bb:d0:4a:0e:08:61:d6:1b:01:47:
3a:d5:5f:41:65:43:78:1d:19:88:c4:87:35:ce:95:
74:f2:e3:8b:59:c8:d2:65:74:ab:2a:64:3c:cf:4c:
92:c8:a3:fd:e7:61:5c:2d:53:2f:fa:ca:dc:06:cf:
e0:80:3f:38:d4:c6:6a:bc:4b:e4:25:bf:fe:c6:ea:
cc:68:3d:f5:5c:35:38:52:1d:ad:c0:dd:f3:25:15:
f6:be:c3:5c:8b:dd:35:fb:8d:63:72:12:f5:98:4d:
80:d1:8b:9b:2c:e4:4f:f9:4c:6e:03:6d:d2:68:58:
59:e5:09:f4:36:da:4c:19:c8:06:b5:4e:09:80:dc:
4f:a7:13:be:fb:c7:2d:f8:53:a6:3b:57:13:24:10:
94:5d:e3:a0:d7:19:26:21:c7:7d:75:45:67:e0:0e:
42:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:17:7D:42:1A:23:73:19:D4:55:9F:27:CA:89:92:D1:87:66:71:C0
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Axd9QhojcxnUVZ8nyomS0YdmccA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.200.0/23
Signature Algorithm: sha256WithRSAEncryption
55:2f:31:b1:b6:63:66:83:7d:23:56:d3:c9:7f:7d:0a:70:03:
60:61:83:11:0c:15:5c:a7:f2:c6:38:0c:70:dd:94:4e:3f:ce:
a2:54:a7:20:26:dd:3d:a5:63:2a:a1:f9:1b:a1:dc:0a:62:2e:
48:f1:62:06:e4:e7:6a:b9:2e:1b:46:00:73:89:92:73:bb:a4:
a6:ee:06:93:81:1e:df:f4:b8:60:25:39:9a:02:5b:5a:d3:16:
a3:0e:11:83:9b:e1:a4:66:25:b3:13:99:ec:62:c9:6f:53:ab:
b1:df:65:fd:50:06:a9:c5:3f:2e:e4:91:43:d3:e4:39:af:d8:
13:cc:08:97:25:9a:8e:c5:23:7a:dd:e8:68:b6:37:ef:03:73:
9f:a6:f6:b4:0b:a8:3b:6e:67:f2:c5:a0:58:43:80:b3:7f:dd:
11:f4:4f:42:47:53:60:f3:c8:b0:76:ed:20:d5:eb:1b:cc:d5:
31:3e:b6:c9:f7:26:a8:c7:a3:9b:57:b4:5c:c1:a0:64:a9:6f:
5f:6c:05:2a:c0:45:47:db:84:8c:00:83:64:79:b9:09:ca:41:
44:2f:73:46:22:d9:78:9e:0b:cc:15:8d:7d:43:5b:f1:29:8c:
4c:d0:0b:ad:d0:f2:b9:50:a3:54:ed:b4:85:cc:5f:d3:c3:3f:
a1:23:b5:1d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECK0frDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzY3N2Q3Y2I5MjcxY2UzNjEyNTZlOTgzM2NjN2IxNGZkMDIzZWJlMB4XDTIyMDUw
NjEzMzAyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDMxNzdkNDIxYTIz
NzMxOWQ0NTU5ZjI3Y2E4OTkyZDE4NzY2NzFjMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALyDTPskMW67wPhNglBO5tk1a9rn17lrd3Vs2kn7k2iycyvu
Jwvj5lHpGaHIvxo2QnnD5hjyIbsDIzQZAolwEfE88umuOfwrlfMrOJkuuULOYPwy
wjQ4U+SMrx+L1ce70EoOCGHWGwFHOtVfQWVDeB0ZiMSHNc6VdPLji1nI0mV0qypk
PM9Mksij/edhXC1TL/rK3AbP4IA/ONTGarxL5CW//sbqzGg99Vw1OFIdrcDd8yUV
9r7DXIvdNfuNY3IS9ZhNgNGLmyzkT/lMbgNt0mhYWeUJ9DbaTBnIBrVOCYDcT6cT
vvvHLfhTpjtXEyQQlF3joNcZJiHHfXVFZ+AOQs8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQDF31CGiNzGdRVnyfKiZLRh2ZxwDAfBgNVHSMEGDAWgBSTZ318uScc42El
bpgzzHsU/QI+vjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syZDlmTGtuSE9OaEpXNllNOHg3RlAwQ1ByNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8x
L0F4ZDlRaG9qY3huVVZaOG55b21TMFlkbWNjQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8xL2syZDlmTGtuSE9O
aEpXNllNOHg3RlAwQ1ByNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1DyDANBgkqhkiG9w0BAQsFAAOC
AQEAVS8xsbZjZoN9I1bTyX99CnADYGGDEQwVXKfyxjgMcN2UTj/OolSnICbdPaVj
KqH5G6HcCmIuSPFiBuTnarkuG0YAc4mSc7ukpu4Gk4Ee3/S4YCU5mgJbWtMWow4R
g5vhpGYlsxOZ7GLJb1Orsd9l/VAGqcU/LuSRQ9PkOa/YE8wIlyWajsUjet3oaLY3
7wNzn6b2tAuoO25n8sWgWEOAs3/dEfRPQkdTYPPIsHbtINXrG8zVMT62yfcmqMej
m1e0XMGgZKlvX2wFKsBFR9uEjACDZHm5CcpBRC9zRiLZeJ4LzBWNfUNb8SmMTNAL
rdDyuVCjVO20hcxf08M/oSO1HQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org