Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/eu3RiUZaMKc3xgcicKpaWIoeb0Q.roa
File: eu3RiUZaMKc3xgcicKpaWIoeb0Q.roa (raw, json)
Hash identifier: DpUHx+1NKW4XzO90xV2/j0BOREasGY3JE7A2usCOWr0=
Subject key identifier: 7A:ED:D1:89:46:5A:30:A7:37:C6:07:22:70:AA:5A:58:8A:1E:6F:44
Certificate issuer: /CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Certificate serial: 018571B0BABDF0C60A11FE586ED81E5D4002
Authority key identifier: A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/eu3RiUZaMKc3xgcicKpaWIoeb0Q.roa
Signing time: Mon 02 Jan 2023 08:54:45 +0000
ROA not before: Mon 02 Jan 2023 08:54:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 208933
IP address blocks: 45.15.30.0/23 maxlen: 23
45.15.28.0/22 maxlen: 22
45.15.28.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:71:b0:ba:bd:f0:c6:0a:11:fe:58:6e:d8:1e:5d:40:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a33eec03ea122713278b4066ecf2bfeaa1563c0d
Validity
Not Before: Jan 2 08:54:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7aedd189465a30a737c6072270aa5a588a1e6f44
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:5b:3c:e0:da:a5:d1:25:76:6c:e0:a5:d2:d6:
e0:91:35:c8:ea:0e:ae:a6:f2:67:34:bd:4c:c0:58:
cf:5e:0f:e7:6c:61:a9:78:61:1e:50:4c:1e:6f:76:
fa:cb:1c:b5:ce:73:4d:7b:bc:cf:46:05:4f:08:dd:
5a:53:e9:26:8b:7b:a8:04:b3:2c:49:06:07:46:9a:
f1:17:8e:78:63:c6:35:5a:a9:4b:15:a6:92:18:38:
10:72:d5:52:a3:61:92:f1:a8:a3:56:31:5d:59:8c:
29:2f:af:e4:05:5c:77:9b:56:e7:37:82:73:c3:6d:
68:48:11:6c:2a:c5:32:83:f6:87:08:d7:ff:5e:e1:
7b:ec:a2:87:54:98:13:54:19:17:61:cf:32:5f:ed:
af:7b:40:2b:35:9d:cf:a5:fb:14:cb:92:f7:f5:d9:
de:7a:35:a4:b0:e4:e5:ac:d4:ec:0e:83:b4:9f:0d:
e7:d4:90:53:ad:66:d5:bc:77:08:16:5d:a5:f8:11:
3c:36:b4:a1:24:ed:a5:77:8b:ec:df:dd:92:13:48:
4c:0d:6f:32:f8:8c:eb:9f:ba:61:f7:48:d9:69:2f:
e4:ce:c8:06:c0:95:f4:55:a5:c1:fd:34:b4:2c:5d:
fd:52:7b:b7:83:a5:9e:49:71:1c:b9:76:65:23:d8:
03:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:ED:D1:89:46:5A:30:A7:37:C6:07:22:70:AA:5A:58:8A:1E:6F:44
X509v3 Authority Key Identifier:
keyid:A3:3E:EC:03:EA:12:27:13:27:8B:40:66:EC:F2:BF:EA:A1:56:3C:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oz7sA-oSJxMni0Bm7PK_6qFWPA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/eu3RiUZaMKc3xgcicKpaWIoeb0Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ee3ac0-be33-4a37-a0d7-59a5ee3ad9a8/1/oz7sA-oSJxMni0Bm7PK_6qFWPA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.28.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:ed:9a:ae:1c:37:9e:c4:36:78:bd:82:d7:72:3f:bd:6a:2a:
29:6c:46:09:04:17:6f:69:65:27:bf:94:85:49:0a:26:cf:51:
6b:1a:13:22:3d:9f:fd:3a:d7:ef:40:9c:53:23:2e:9a:0e:46:
ed:87:8c:32:99:e8:15:ff:73:fa:d9:4c:9f:9c:8b:9a:61:a1:
b6:36:40:48:a7:57:da:b4:90:eb:7f:96:54:8f:a2:47:75:89:
d7:92:0a:06:7f:91:13:b4:b5:dd:ca:f0:ac:8c:51:a2:a6:9d:
13:e3:13:20:f3:b9:e2:62:cd:f7:dd:07:b1:13:32:c0:e7:4d:
d7:62:bf:59:33:61:a4:c8:19:88:9b:42:c1:02:62:82:87:be:
5c:46:56:51:49:6a:74:d2:4a:5b:59:23:c8:85:51:3e:23:a4:
e4:07:aa:ab:4f:19:9b:a7:d1:93:2d:07:0b:f4:ad:09:9c:75:
73:96:55:2f:d8:3c:c4:37:18:21:13:51:ab:c3:62:99:7e:fe:
70:fe:92:ab:7f:56:a3:ca:b7:7b:95:76:26:60:f6:77:27:d4:
41:6a:db:5d:0f:98:11:4d:4b:9a:3d:8e:bc:a8:2f:21:9f:fa:
81:70:11:46:60:f0:74:4f:99:27:ce:c9:f5:8f:95:63:b9:6a:
55:7b:37:9c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVxsLq98MYKEf5YbtgeXUACMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGEzM2VlYzAzZWExMjI3MTMyNzhiNDA2NmVjZjJiZmVhYTE1
NjNjMGQwHhcNMjMwMTAyMDg1NDQ1WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YWVkZDE4OTQ2NWEzMGE3MzdjNjA3MjI3MGFhNWE1ODhhMWU2ZjQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnls84Nql0SV2bOCl0tbgkTXI6g6u
pvJnNL1MwFjPXg/nbGGpeGEeUEweb3b6yxy1znNNe7zPRgVPCN1aU+kmi3uoBLMs
SQYHRprxF454Y8Y1WqlLFaaSGDgQctVSo2GS8aijVjFdWYwpL6/kBVx3m1bnN4Jz
w21oSBFsKsUyg/aHCNf/XuF77KKHVJgTVBkXYc8yX+2ve0ArNZ3PpfsUy5L39dne
ejWksOTlrNTsDoO0nw3n1JBTrWbVvHcIFl2l+BE8NrShJO2ld4vs392SE0hMDW8y
+Izrn7ph90jZaS/kzsgGwJX0VaXB/TS0LF39Unu3g6WeSXEcuXZlI9gDzwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHrt0YlGWjCnN8YHInCqWliKHm9EMB8GA1UdIwQY
MBaAFKM+7APqEicTJ4tAZuzyv+qhVjwNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvb3o3c0Etb1NKeE1uaTBCbTdQS182cUZXUEEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9lZTNhYzAtYmUzMy00YTM3LWEwZDct
NTlhNWVlM2FkOWE4LzEvZXUzUmlVWmFNS2MzeGdjaWNLcGFXSW9lYjBRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9lZTNhYzAtYmUzMy00YTM3LWEwZDctNTlhNWVlM2FkOWE4
LzEvb3o3c0Etb1NKeE1uaTBCbTdQS182cUZXUEEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQ8cMA0G
CSqGSIb3DQEBCwUAA4IBAQB+7ZquHDeexDZ4vYLXcj+9aiopbEYJBBdvaWUnv5SF
SQomz1FrGhMiPZ/9OtfvQJxTIy6aDkbth4wymegV/3P62UyfnIuaYaG2NkBIp1fa
tJDrf5ZUj6JHdYnXkgoGf5ETtLXdyvCsjFGipp0T4xMg87niYs333QexEzLA503X
Yr9ZM2GkyBmIm0LBAmKCh75cRlZRSWp00kpbWSPIhVE+I6TkB6qrTxmbp9GTLQcL
9K0JnHVzllUv2DzENxghE1Grw2KZfv5w/pKrf1ajyrd7lXYmYPZ3J9RBattdD5gR
TUuaPY68qC8hn/qBcBFGYPB0T5knzsn1j5VjuWpVezec
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:15:01 2025 by rpki-client