Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-vGcN8tay-M2rvVM0plsnRCJxr8.roa
File: 1-vGcN8tay-M2rvVM0plsnRCJxr8.roa (raw, json)
Hash identifier: FY9Bx19qW1CZJCY16eh5szHGvLYxnj7bwtsyU+fYEwI=
Subject key identifier: FA:F1:9C:37:CB:5A:CB:E3:36:AE:F5:4C:D2:99:6C:9D:10:89:C6:BF
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 0185297B28CA69E7DDA0873611254CDBE009
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-vGcN8tay-M2rvVM0plsnRCJxr8.roa
Signing time: Mon 19 Dec 2022 08:23:35 +0000
ROA not before: Mon 19 Dec 2022 08:23:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 270385
IP address blocks: 45.151.91.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:29:7b:28:ca:69:e7:dd:a0:87:36:11:25:4c:db:e0:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Dec 19 08:23:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=faf19c37cb5acbe336aef54cd2996c9d1089c6bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:ab:79:4b:c4:3f:90:96:4f:8f:7e:9b:d4:56:
cc:30:0f:89:5f:83:39:fd:03:80:d4:1b:8f:95:e8:
71:f5:44:92:d0:31:3a:55:13:7c:18:cb:b4:06:1a:
df:9a:a2:d0:de:7a:c5:de:0d:e5:25:e3:d0:f1:d5:
8f:f9:fb:af:49:c4:63:2d:51:4c:fe:28:ee:1d:54:
06:1b:6b:a3:22:ff:ed:f7:71:f6:ad:cc:b5:10:72:
58:76:c5:82:d5:90:08:93:cb:b9:41:bc:cf:cc:90:
9e:f5:af:78:96:76:e9:f8:14:0e:f3:d4:a4:2d:d4:
26:7d:b1:bc:0c:0d:fe:5d:b4:f3:16:0c:9a:6d:e2:
2a:ba:8e:14:be:46:48:80:e0:c9:5d:58:f3:05:63:
4d:b2:dc:1c:19:98:74:e1:9e:ea:15:34:10:c6:dc:
71:c7:fe:0b:c3:78:01:16:cc:90:56:0d:86:82:4f:
9f:44:42:e3:72:24:b3:6e:f2:a5:ca:b2:2c:30:d6:
9f:b7:bd:43:53:0d:62:b5:63:54:74:4c:a0:67:b7:
91:e7:ec:e3:92:5c:2d:10:96:ca:c9:15:bd:48:fe:
fa:6b:b6:a9:46:56:10:09:b5:09:36:d6:10:e8:0c:
93:71:58:ff:96:c4:ff:e2:86:b6:28:52:72:21:36:
71:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:F1:9C:37:CB:5A:CB:E3:36:AE:F5:4C:D2:99:6C:9D:10:89:C6:BF
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/1-vGcN8tay-M2rvVM0plsnRCJxr8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.91.0/24
Signature Algorithm: sha256WithRSAEncryption
19:8b:92:8e:07:ea:54:e5:5a:63:ba:bc:f9:49:c1:e2:1a:8a:
7b:2f:c2:e8:35:9e:cb:c7:c6:3c:98:da:c2:10:a0:3e:1b:2d:
ef:da:47:62:36:43:6b:95:6e:8e:58:5d:14:20:34:53:1b:a1:
96:9e:4d:10:a6:b4:91:e2:1e:4a:84:33:43:46:3c:4a:16:2b:
23:33:f8:66:41:b8:94:05:e6:c5:71:df:1c:54:1c:4b:fd:e9:
b3:e9:71:a3:25:84:b0:0b:eb:96:54:44:fa:c4:0e:4d:f2:04:
36:0f:8d:fc:2b:b5:bb:61:99:50:13:65:37:88:41:bb:36:01:
80:b1:50:5f:86:df:30:7b:e2:2e:26:2d:5d:81:b5:9a:5c:5d:
13:19:65:06:c7:70:7f:92:28:ab:d5:4f:d3:88:92:ef:45:27:
db:22:c9:4f:9a:a6:e4:74:4b:69:44:87:a5:ae:9b:27:80:f7:
0e:68:f6:75:2d:c7:c1:58:6f:bc:3b:f7:68:d3:30:5b:c2:63:
b7:13:f8:92:db:b0:f4:a4:6a:a3:28:78:3c:bb:47:b3:85:bc:
e6:52:83:e6:d1:21:a9:80:33:d5:4d:50:f8:8e:cb:75:aa:af:
5e:50:d7:7e:40:3d:0d:2a:f0:2d:c5:80:43:3d:da:fe:77:69:
bd:93:4f:fa
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYUpeyjKaefdoIc2ESVM2+AJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDIyYzRhYzNlM2M0M2Q3MGQwNTM0OWM4MTViYWFkZDM4YWQ3
NzVlOWQwHhcNMjIxMjE5MDgyMzM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYWYxOWMzN2NiNWFjYmUzMzZhZWY1NGNkMjk5NmM5ZDEwODljNmJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnKt5S8Q/kJZPj36b1FbMMA+JX4M5
/QOA1BuPlehx9USS0DE6VRN8GMu0BhrfmqLQ3nrF3g3lJePQ8dWP+fuvScRjLVFM
/ijuHVQGG2ujIv/t93H2rcy1EHJYdsWC1ZAIk8u5QbzPzJCe9a94lnbp+BQO89Sk
LdQmfbG8DA3+XbTzFgyabeIquo4UvkZIgODJXVjzBWNNstwcGZh04Z7qFTQQxtxx
x/4Lw3gBFsyQVg2Ggk+fRELjciSzbvKlyrIsMNaft71DUw1itWNUdEygZ7eR5+zj
klwtEJbKyRW9SP76a7apRlYQCbUJNtYQ6AyTcVj/lsT/4oa2KFJyITZxRQIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPrxnDfLWsvjNq71TNKZbJ0Qica/MB8GA1UdIwQY
MBaAFCLErD48Q9cNBTScgVuq3Titd16dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSXNTc1BqeEQxdzBGTkp5Qlc2cmRPSzEzWHAwLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMy85MTNhM2EtZjU1MC00NmYwLWFjYzct
Y2QzY2E1OTc1NzEyLzEvMS12R2NOOHRheS1NMnJ2Vk0wcGxzblJDSnhyOC5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvMDMvOTEzYTNhLWY1NTAtNDZmMC1hY2M3LWNkM2NhNTk3NTcx
Mi8xL0lzU3NQanhEMXcwRk5KeUJXNnJkT0sxM1hwMC5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2XWzAN
BgkqhkiG9w0BAQsFAAOCAQEAGYuSjgfqVOVaY7q8+UnB4hqKey/C6DWey8fGPJja
whCgPhst79pHYjZDa5VujlhdFCA0Uxuhlp5NEKa0keIeSoQzQ0Y8ShYrIzP4ZkG4
lAXmxXHfHFQcS/3ps+lxoyWEsAvrllRE+sQOTfIENg+N/Cu1u2GZUBNlN4hBuzYB
gLFQX4bfMHviLiYtXYG1mlxdExllBsdwf5Ioq9VP04iS70Un2yLJT5qm5HRLaUSH
pa6bJ4D3Dmj2dS3HwVhvvDv3aNMwW8JjtxP4ktuw9KRqoyh4PLtHs4W85lKD5tEh
qYAz1U1Q+I7LdaqvXlDXfkA9DSrwLcWAQz3a/ndpvZNP+g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:22 2024 by rpki-client on console-ams.rpki-client.org