Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/vIP0o7G5KFg7BJRX1ppiw6xY0Wk.roa
File: vIP0o7G5KFg7BJRX1ppiw6xY0Wk.roa (raw, json)
Hash identifier: HG4FR1iv1ENP1qnfvibWNIZyKs3yj0aCagH7bEpfcOk=
Subject key identifier: BC:83:F4:A3:B1:B9:28:58:3B:04:94:57:D6:9A:62:C3:AC:58:D1:69
Certificate issuer: /CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Certificate serial: 05F0B673
Authority key identifier: 6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/vIP0o7G5KFg7BJRX1ppiw6xY0Wk.roa
Signing time: Thu 31 Mar 2022 07:06:28 +0000
ROA not before: Thu 31 Mar 2022 07:06:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61102
IP address blocks: 45.150.108.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 99661427 (0x5f0b673)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d20ddd398dac8f62cc12526325f1821fb724f75
Validity
Not Before: Mar 31 07:06:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bc83f4a3b1b928583b049457d69a62c3ac58d169
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:36:20:29:6d:f7:a1:42:e2:d9:56:f0:e5:9a:
c6:90:e6:2f:98:56:b5:b7:fc:c5:8e:a1:2c:d2:cb:
c3:48:09:53:e4:2a:32:14:d8:36:99:18:a0:64:9e:
80:c1:2c:5d:9b:4d:76:92:12:23:f1:0e:f5:48:a1:
df:4e:a2:60:19:4f:23:c2:0e:de:f0:4f:96:a8:37:
8a:5a:1e:c3:e7:e6:3d:39:32:25:81:c3:0f:34:6a:
8a:74:16:87:d1:b0:ea:a6:04:21:fb:93:0e:4f:41:
ec:ba:cd:e3:cb:7b:30:6d:83:01:9c:7b:e6:b0:d1:
a1:3b:bc:1a:9f:31:58:1d:53:17:9c:f3:09:2e:a0:
c5:1b:78:72:65:3f:e6:07:95:20:5b:53:0c:97:6c:
d9:24:7a:70:5e:09:21:14:36:64:69:8d:bc:93:27:
85:97:cb:43:0f:ee:7a:47:45:e6:89:fc:67:e4:87:
b5:65:80:c8:21:5e:01:f0:de:d1:da:8a:a0:ad:95:
14:f7:7c:5e:d1:00:84:69:7e:a0:a7:a3:22:97:3f:
b8:4b:d5:1c:72:1c:9c:47:29:3c:c8:8a:59:86:cd:
95:31:6d:2b:17:ec:12:b4:09:22:ab:2f:dd:5f:72:
d6:9e:11:30:d8:1d:19:83:83:33:01:09:cf:24:f2:
02:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:83:F4:A3:B1:B9:28:58:3B:04:94:57:D6:9A:62:C3:AC:58:D1:69
X509v3 Authority Key Identifier:
keyid:6D:20:DD:D3:98:DA:C8:F6:2C:C1:25:26:32:5F:18:21:FB:72:4F:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSDd05jayPYswSUmMl8YIftyT3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/vIP0o7G5KFg7BJRX1ppiw6xY0Wk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/a1a88f-1dff-4eff-826b-36de657232be/1/bSDd05jayPYswSUmMl8YIftyT3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.108.0/24
Signature Algorithm: sha256WithRSAEncryption
54:04:c7:6c:f0:9a:07:fa:28:53:70:a4:dc:b9:1a:01:90:9a:
2e:7a:27:da:61:32:8d:b0:74:ca:28:f3:98:0f:71:e8:24:96:
a6:9c:99:99:c1:4f:ab:22:ee:70:f5:4a:a5:d1:bf:49:d2:b9:
ba:dd:77:f3:b2:d1:20:e3:2a:98:53:84:4b:db:7f:92:ed:4a:
c6:10:22:52:25:43:2d:b9:f0:cc:3c:6d:f4:55:7f:9a:59:7d:
5e:68:d7:40:22:76:97:6e:a3:d5:0a:79:6f:d7:0f:5b:2c:63:
6c:29:5f:41:5e:f9:5e:59:08:8d:3c:87:96:4f:2a:29:df:97:
2e:90:82:c2:1a:fb:5e:2b:39:1f:fd:db:7e:07:27:72:80:56:
75:95:38:f8:a4:c8:f1:62:aa:c7:cb:9f:64:87:8d:f0:54:0e:
72:9a:11:bf:d6:d8:f2:38:67:93:46:2d:08:c0:d5:bf:3f:67:
d8:82:82:d2:77:db:55:01:69:66:84:13:17:c0:17:e5:ef:6b:
82:59:6f:e7:1d:5b:05:eb:31:e0:5b:cc:3d:5f:52:6e:4c:a4:
e0:30:5a:1b:bb:22:42:a3:79:17:35:98:07:05:1c:0f:92:7f:
6e:7e:ae:db:27:f4:3c:8c:2a:2b:e4:8e:86:e8:28:bc:ec:c1:
48:85:41:f2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBfC2czANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
ZDIwZGRkMzk4ZGFjOGY2MmNjMTI1MjYzMjVmMTgyMWZiNzI0Zjc1MB4XDTIyMDMz
MTA3MDYyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmM4M2Y0YTNiMWI5
Mjg1ODNiMDQ5NDU3ZDY5YTYyYzNhYzU4ZDE2OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALo2IClt96FC4tlW8OWaxpDmL5hWtbf8xY6hLNLLw0gJU+Qq
MhTYNpkYoGSegMEsXZtNdpISI/EO9Uih306iYBlPI8IO3vBPlqg3iloew+fmPTky
JYHDDzRqinQWh9Gw6qYEIfuTDk9B7LrN48t7MG2DAZx75rDRoTu8Gp8xWB1TF5zz
CS6gxRt4cmU/5geVIFtTDJds2SR6cF4JIRQ2ZGmNvJMnhZfLQw/uekdF5on8Z+SH
tWWAyCFeAfDe0dqKoK2VFPd8XtEAhGl+oKejIpc/uEvVHHIcnEcpPMiKWYbNlTFt
KxfsErQJIqsv3V9y1p4RMNgdGYODMwEJzyTyAkECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS8g/SjsbkoWDsElFfWmmLDrFjRaTAfBgNVHSMEGDAWgBRtIN3TmNrI9izB
JSYyXxgh+3JPdTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JTRGQwNWpheVBZc3dTVW1NbDhZSWZ0eVQzVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDEvYTFhODhmLTFkZmYtNGVmZi04MjZiLTM2ZGU2NTcyMzJiZS8x
L3ZJUDBvN0c1S0ZnN0JKUlgxcHBpdzZ4WTBXay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEv
YTFhODhmLTFkZmYtNGVmZi04MjZiLTM2ZGU2NTcyMzJiZS8xL2JTRGQwNWpheVBZ
c3dTVW1NbDhZSWZ0eVQzVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2WbDANBgkqhkiG9w0BAQsFAAOC
AQEAVATHbPCaB/ooU3Ck3LkaAZCaLnon2mEyjbB0yijzmA9x6CSWppyZmcFPqyLu
cPVKpdG/SdK5ut1387LRIOMqmFOES9t/ku1KxhAiUiVDLbnwzDxt9FV/mll9XmjX
QCJ2l26j1Qp5b9cPWyxjbClfQV75XlkIjTyHlk8qKd+XLpCCwhr7Xis5H/3bfgcn
coBWdZU4+KTI8WKqx8ufZIeN8FQOcpoRv9bY8jhnk0YtCMDVvz9n2IKC0nfbVQFp
ZoQTF8AX5e9rgllv5x1bBesx4FvMPV9Sbkyk4DBaG7siQqN5FzWYBwUcD5J/bn6u
2yf0PIwqK+SOhugovOzBSIVB8g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:16:37 2024 by rpki-client on console-fra.rpki-client.org