Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/Fi-cDbdD5T4H_zLEL4GEtj2a4VE.roa
File: Fi-cDbdD5T4H_zLEL4GEtj2a4VE.roa (raw, json)
Hash identifier: rZtuEiP34AB7oGh0bc0x/R/hFi3lSLYIgUezM1E6loI=
Subject key identifier: 16:2F:9C:0D:B7:43:E5:3E:07:FF:32:C4:2F:81:84:B6:3D:9A:E1:51
Certificate issuer: /CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Certificate serial: 01AEE040
Authority key identifier: 78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/Fi-cDbdD5T4H_zLEL4GEtj2a4VE.roa
Signing time: Fri 21 Jan 2022 19:45:41 +0000
ROA not before: Fri 21 Jan 2022 19:45:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 204397
IP address blocks: 45.86.35.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28237888 (0x1aee040)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=788f5b210f3c3eb42065960e85d061e9d9d63ab8
Validity
Not Before: Jan 21 19:45:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=162f9c0db743e53e07ff32c42f8184b63d9ae151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:f8:ef:f1:8c:cd:df:23:2e:f6:60:f6:5d:93:
69:76:ea:da:dc:db:00:d2:12:b0:f4:73:28:9f:37:
f3:15:af:39:46:93:ba:b8:29:d3:a3:5d:bf:ab:ee:
73:b1:f3:ca:e2:e4:21:9b:84:74:44:73:eb:f5:89:
7c:86:b6:c6:1f:1d:e3:8b:8b:fc:60:37:fa:55:c3:
9e:62:a0:4c:fd:40:45:0c:e2:6c:83:56:b5:53:96:
db:33:34:95:5e:69:1f:fa:fe:b2:d5:4a:43:2d:a1:
e0:5e:24:9b:7c:c1:f8:d1:ae:82:79:9e:98:3f:42:
5b:86:bc:7c:e7:3c:2f:28:dc:f0:7a:ac:27:84:36:
85:c6:fe:bc:1b:5d:25:56:69:12:65:e3:a5:80:49:
d2:f9:e4:af:6d:ff:aa:87:a7:6d:49:23:f9:ba:ff:
2a:b4:36:5c:29:4e:36:8e:de:cd:06:05:d9:13:07:
14:9f:c6:f0:87:6a:50:6e:0a:df:d8:ff:e8:df:f4:
91:b5:a6:46:a4:9e:51:56:f7:07:11:2d:85:c6:01:
e3:67:82:de:53:6c:2d:63:30:77:a5:e2:71:47:c1:
10:bc:4b:60:d0:90:00:78:bd:3b:34:1b:5f:7e:ed:
db:88:bc:6d:3c:c1:15:ed:d1:0d:a4:13:fd:eb:c2:
be:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:2F:9C:0D:B7:43:E5:3E:07:FF:32:C4:2F:81:84:B6:3D:9A:E1:51
X509v3 Authority Key Identifier:
keyid:78:8F:5B:21:0F:3C:3E:B4:20:65:96:0E:85:D0:61:E9:D9:D6:3A:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eI9bIQ88PrQgZZYOhdBh6dnWOrg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/Fi-cDbdD5T4H_zLEL4GEtj2a4VE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/df/e100b5-6f0a-4fe9-befb-c4acb8969c49/1/eI9bIQ88PrQgZZYOhdBh6dnWOrg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.86.35.0/24
Signature Algorithm: sha256WithRSAEncryption
72:81:36:9a:99:dd:82:d6:d5:2f:ef:6e:f2:5e:da:52:88:fd:
5c:9d:ac:d0:2c:d9:08:34:33:1c:22:56:84:04:46:57:2a:87:
a5:36:68:06:eb:44:c6:43:81:60:ff:ef:c2:61:20:95:48:bb:
08:8f:6b:aa:c1:75:72:68:6f:c1:68:9d:0a:a0:83:6b:9c:77:
fc:4e:01:18:a3:c8:b7:eb:5b:6e:83:74:ef:97:d3:d2:82:40:
8b:ff:f4:08:e0:7c:78:86:df:cb:3c:69:5a:f2:6e:ae:6d:95:
1a:4c:9a:41:82:b3:1b:52:e9:7e:a3:71:68:5b:4c:27:7c:73:
ca:54:61:58:f9:65:82:68:f7:14:23:bd:4b:bf:1f:e6:3b:57:
cb:35:13:a6:a4:e8:81:f1:9b:4a:50:08:89:90:2b:6f:09:ac:
dc:1e:1d:e0:d4:5d:8d:f8:9e:a6:a8:c6:5c:21:a3:90:6b:1c:
58:3d:b3:84:af:fb:a8:a8:0a:17:02:72:19:ff:9b:44:cd:92:
a9:2a:20:87:27:63:62:1c:52:2b:ab:f5:07:32:e1:f2:3f:f3:
f6:a6:a1:1b:ef:d1:7d:c4:7d:6a:e1:3d:e6:f4:21:52:68:02:
10:02:82:d6:32:6d:cc:93:61:54:88:19:40:bd:a2:42:9c:c8:
dd:0e:df:33
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAa7gQDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ODhmNWIyMTBmM2MzZWI0MjA2NTk2MGU4NWQwNjFlOWQ5ZDYzYWI4MB4XDTIyMDEy
MTE5NDU0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTYyZjljMGRiNzQz
ZTUzZTA3ZmYzMmM0MmY4MTg0YjYzZDlhZTE1MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMn47/GMzd8jLvZg9l2TaXbq2tzbANISsPRzKJ838xWvOUaT
urgp06Ndv6vuc7HzyuLkIZuEdERz6/WJfIa2xh8d44uL/GA3+lXDnmKgTP1ARQzi
bINWtVOW2zM0lV5pH/r+stVKQy2h4F4km3zB+NGugnmemD9CW4a8fOc8Lyjc8Hqs
J4Q2hcb+vBtdJVZpEmXjpYBJ0vnkr23/qoenbUkj+br/KrQ2XClONo7ezQYF2RMH
FJ/G8IdqUG4K39j/6N/0kbWmRqSeUVb3BxEthcYB42eC3lNsLWMwd6XicUfBELxL
YNCQAHi9OzQbX37t24i8bTzBFe3RDaQT/evCvokCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQWL5wNt0PlPgf/MsQvgYS2PZrhUTAfBgNVHSMEGDAWgBR4j1shDzw+tCBl
lg6F0GHp2dY6uDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2VJOWJJUTg4UHJRZ1paWU9oZEJoNmRuV09yZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZGYvZTEwMGI1LTZmMGEtNGZlOS1iZWZiLWM0YWNiODk2OWM0OS8x
L0ZpLWNEYmRENVQ0SF96TEVMNEdFdGoyYTRWRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZGYv
ZTEwMGI1LTZmMGEtNGZlOS1iZWZiLWM0YWNiODk2OWM0OS8xL2VJOWJJUTg4UHJR
Z1paWU9oZEJoNmRuV09yZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1WIzANBgkqhkiG9w0BAQsFAAOC
AQEAcoE2mpndgtbVL+9u8l7aUoj9XJ2s0CzZCDQzHCJWhARGVyqHpTZoButExkOB
YP/vwmEglUi7CI9rqsF1cmhvwWidCqCDa5x3/E4BGKPIt+tbboN075fT0oJAi//0
COB8eIbfyzxpWvJurm2VGkyaQYKzG1LpfqNxaFtMJ3xzylRhWPllgmj3FCO9S78f
5jtXyzUTpqTogfGbSlAIiZArbwms3B4d4NRdjfiepqjGXCGjkGscWD2zhK/7qKgK
FwJyGf+bRM2SqSoghydjYhxSK6v1BzLh8j/z9qahG+/RfcR9auE95vQhUmgCEAKC
1jJtzJNhVIgZQL2iQpzI3Q7fMw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:44 2024 by rpki-client on console-fra.rpki-client.org