Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/_EXdqYJR6bVz9OHzvFGPJnc6dps.roa
File: _EXdqYJR6bVz9OHzvFGPJnc6dps.roa (raw, json)
Hash identifier: SlZRispPHrKG+FWuR3bwysVWYtIsU4QViWFM2F0/ko0=
Subject key identifier: FC:45:DD:A9:82:51:E9:B5:73:F4:E1:F3:BC:51:8F:26:77:3A:76:9B
Certificate issuer: /CN=147341d30575144be32cd7c8e3ebd4c6329a3141
Certificate serial: 01837F5B0D0DB04131483FD5EA0A5D17F9DA
Authority key identifier: 14:73:41:D3:05:75:14:4B:E3:2C:D7:C8:E3:EB:D4:C6:32:9A:31:41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/FHNB0wV1FEvjLNfI4-vUxjKaMUE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/_EXdqYJR6bVz9OHzvFGPJnc6dps.roa
Signing time: Tue 27 Sep 2022 14:30:16 +0000
ROA not before: Tue 27 Sep 2022 14:30:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203434
IP address blocks: 185.134.164.0/22 maxlen: 24
45.66.232.0/22 maxlen: 24
2a00:b0a0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:7f:5b:0d:0d:b0:41:31:48:3f:d5:ea:0a:5d:17:f9:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=147341d30575144be32cd7c8e3ebd4c6329a3141
Validity
Not Before: Sep 27 14:30:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fc45dda98251e9b573f4e1f3bc518f26773a769b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:87:ea:45:80:bb:67:f2:27:a0:66:6c:c7:13:
ce:46:46:e9:8c:d9:6a:ef:0e:62:9e:02:87:57:e2:
da:0a:4e:28:23:20:47:31:c3:e0:9f:84:91:b7:0d:
c1:6a:b6:de:1b:0c:b8:d9:71:fb:b2:20:de:91:f4:
24:93:9b:2f:f3:f2:59:c3:25:7a:e9:a3:8f:21:3d:
3f:c2:38:55:36:01:ed:37:0f:87:ee:4a:fd:36:9a:
88:8d:13:7f:06:8f:5a:7a:77:a5:d5:24:2a:7b:9c:
c2:80:06:77:3c:fd:89:8f:42:9e:19:dc:3c:ce:71:
29:e6:f9:a5:28:84:63:ed:c1:19:7d:89:8d:de:ce:
cc:5a:d5:bc:cf:64:39:f0:77:f0:24:67:1c:25:00:
3b:29:da:7d:93:63:e7:6b:e8:f9:e7:fc:4d:30:7c:
3b:7f:34:98:ad:4d:82:a8:89:d9:cf:0f:e3:50:1a:
aa:8c:9a:9d:73:aa:b3:f9:ba:3a:1f:ea:b3:c6:e0:
ba:b1:26:cc:54:01:4f:2a:29:c7:3d:ea:59:ed:e2:
bf:95:7b:27:fb:c2:d7:b2:5e:52:4f:ce:df:d0:7c:
e5:5d:56:3b:7f:86:0c:ac:ca:3d:94:0a:9b:20:ad:
12:b3:c9:d9:46:9a:59:a8:6a:cb:9b:9f:87:ba:aa:
e2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:45:DD:A9:82:51:E9:B5:73:F4:E1:F3:BC:51:8F:26:77:3A:76:9B
X509v3 Authority Key Identifier:
keyid:14:73:41:D3:05:75:14:4B:E3:2C:D7:C8:E3:EB:D4:C6:32:9A:31:41
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/FHNB0wV1FEvjLNfI4-vUxjKaMUE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/_EXdqYJR6bVz9OHzvFGPJnc6dps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/662070-3677-4712-a4cf-a2b7b0396bd6/1/FHNB0wV1FEvjLNfI4-vUxjKaMUE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.66.232.0/22
185.134.164.0/22
IPv6:
2a00:b0a0::/29
Signature Algorithm: sha256WithRSAEncryption
ba:ab:41:b8:bd:8d:23:4b:cd:cf:65:4e:76:f5:7e:d2:44:a3:
72:0c:ff:d8:eb:e1:1f:24:1a:02:7a:28:38:4c:28:29:03:05:
e7:66:28:31:9d:2b:95:68:8d:2b:e2:9f:63:a7:49:6f:bf:88:
eb:b7:25:87:83:e6:01:90:8e:23:77:a4:c6:a2:9c:8e:ab:df:
c3:1b:98:49:35:b6:89:ac:46:4a:b7:17:4c:bc:a6:33:33:39:
cd:10:32:01:06:08:41:5f:2a:6d:6b:9f:45:e5:b3:42:65:65:
89:e7:c3:22:5f:89:e1:50:be:18:3b:bf:cf:bf:fa:b0:93:ee:
3b:92:72:d4:7d:25:fa:b9:57:3f:32:fd:6a:19:c4:ab:9c:54:
2f:f9:d9:cd:0c:0f:53:ee:92:e8:f1:ff:b5:37:13:f5:ce:f1:
d4:4b:25:57:6f:59:cb:62:83:96:5b:88:92:4e:65:bd:ae:b7:
4a:8a:9c:1f:6d:b5:87:44:db:f6:af:7e:22:ed:00:c6:41:d6:
de:cb:c7:96:d4:c1:a0:dd:fd:0b:58:6d:4f:d8:2a:6a:e5:3b:
ae:6b:76:69:88:b3:d0:19:c9:4a:79:9a:b0:1f:ec:ea:86:b0:
05:09:fb:59:74:be:8c:82:b6:1e:5c:84:ef:2f:15:f4:09:dc:
41:54:1b:79
-----BEGIN CERTIFICATE-----
MIIFEjCCA/qgAwIBAgISAYN/Ww0NsEExSD/V6gpdF/naMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE0NzM0MWQzMDU3NTE0NGJlMzJjZDdjOGUzZWJkNGM2MzI5
YTMxNDEwHhcNMjIwOTI3MTQzMDE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYzQ1ZGRhOTgyNTFlOWI1NzNmNGUxZjNiYzUxOGYyNjc3M2E3NjliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4fqRYC7Z/InoGZsxxPORkbpjNlq
7w5ingKHV+LaCk4oIyBHMcPgn4SRtw3BarbeGwy42XH7siDekfQkk5sv8/JZwyV6
6aOPIT0/wjhVNgHtNw+H7kr9NpqIjRN/Bo9aenel1SQqe5zCgAZ3PP2Jj0KeGdw8
znEp5vmlKIRj7cEZfYmN3s7MWtW8z2Q58HfwJGccJQA7Kdp9k2Pna+j55/xNMHw7
fzSYrU2CqInZzw/jUBqqjJqdc6qz+bo6H+qzxuC6sSbMVAFPKinHPepZ7eK/lXsn
+8LXsl5ST87f0HzlXVY7f4YMrMo9lAqbIK0Ss8nZRppZqGrLm5+HuqriGQIDAQAB
o4ICHjCCAhowHQYDVR0OBBYEFPxF3amCUem1c/Th87xRjyZ3OnabMB8GA1UdIwQY
MBaAFBRzQdMFdRRL4yzXyOPr1MYymjFBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRkhOQjB3VjFGRXZqTE5mSTQtdlV4akthTVVFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi82NjIwNzAtMzY3Ny00NzEyLWE0Y2Yt
YTJiN2IwMzk2YmQ2LzEvX0VYZHFZSlI2YlZ6OU9IenZGR1BKbmM2ZHBzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi82NjIwNzAtMzY3Ny00NzEyLWE0Y2YtYTJiN2IwMzk2YmQ2
LzEvRkhOQjB3VjFGRXZqTE5mSTQtdlV4akthTVVFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLULoAwQC
uYakMA0EAgACMAcDBQMqALCgMA0GCSqGSIb3DQEBCwUAA4IBAQC6q0G4vY0jS83P
ZU529X7SRKNyDP/Y6+EfJBoCeig4TCgpAwXnZigxnSuVaI0r4p9jp0lvv4jrtyWH
g+YBkI4jd6TGopyOq9/DG5hJNbaJrEZKtxdMvKYzMznNEDIBBghBXypta59F5bNC
ZWWJ58MiX4nhUL4YO7/Pv/qwk+47knLUfSX6uVc/Mv1qGcSrnFQv+dnNDA9T7pLo
8f+1NxP1zvHUSyVXb1nLYoOWW4iSTmW9rrdKipwfbbWHRNv2r34i7QDGQdbey8eW
1MGg3f0LWG1P2Cpq5Tuua3ZpiLPQGclKeZqwH+zqhrAFCftZdL6MgrYeXITvLxX0
CdxBVBt5
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:55 2023 by rpki-client on console-ams.rpki-client.org