Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/rI1dVTw_6DqufmFiEO3U7X2uQH8.roa
File: rI1dVTw_6DqufmFiEO3U7X2uQH8.roa (raw, json)
Hash identifier: yFmTKnbID9jgG6cAGvpwiWd31vAe0zN04byWMG4Syy4=
Subject key identifier: AC:8D:5D:55:3C:3F:E8:3A:AE:7E:61:62:10:ED:D4:ED:7D:AE:40:7F
Certificate issuer: /CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Certificate serial: 07E304D3
Authority key identifier: 1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/rI1dVTw_6DqufmFiEO3U7X2uQH8.roa
Signing time: Sat 29 Jan 2022 16:48:03 +0000
ROA not before: Sat 29 Jan 2022 16:48:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 133973
IP address blocks: 45.95.205.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132318419 (0x7e304d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1f61aa5d1befd7a0fe3e4dfe3aa8da73efcfba34
Validity
Not Before: Jan 29 16:48:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ac8d5d553c3fe83aae7e616210edd4ed7dae407f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:87:3d:d0:7f:49:dc:5d:47:e7:41:a1:ce:af:
82:72:94:a1:0e:d1:51:35:1f:f4:31:27:bf:dd:e3:
80:71:0d:24:14:7e:f8:62:fc:c0:b4:f1:4c:eb:92:
5f:33:cd:6b:dd:17:75:79:d8:f3:b1:8b:21:61:45:
94:99:95:79:ac:31:01:7b:0e:db:c9:98:36:e5:f3:
3f:14:ba:37:52:e5:bd:a4:5d:57:8f:22:2d:67:25:
14:ab:b6:de:cf:5b:61:15:fa:2b:e7:4c:8d:92:1e:
dd:c4:2d:e2:82:fb:c5:3e:5c:f8:64:09:51:b9:11:
e3:81:ad:28:a0:85:ab:75:91:cc:58:e5:db:d1:6d:
ea:d6:46:6c:14:45:15:7b:d7:5b:61:be:6a:90:67:
43:3b:e5:d6:b8:c2:a4:d6:f7:7f:19:8e:03:e0:47:
0e:4d:d7:57:d3:f2:bf:fd:b5:44:39:48:78:1a:dd:
89:73:c0:c1:cd:7c:db:90:0e:ea:9c:54:03:71:a0:
23:d6:ba:81:9a:8f:dd:ac:54:ae:14:c3:46:78:a5:
31:a1:c0:20:9c:7e:56:58:56:c7:a9:81:d2:de:0e:
f6:42:87:ce:f3:b4:91:8f:fd:75:09:21:25:50:cb:
8a:2a:29:75:28:1c:af:2e:29:f0:5a:9a:1b:f1:cd:
ce:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:8D:5D:55:3C:3F:E8:3A:AE:7E:61:62:10:ED:D4:ED:7D:AE:40:7F
X509v3 Authority Key Identifier:
keyid:1F:61:AA:5D:1B:EF:D7:A0:FE:3E:4D:FE:3A:A8:DA:73:EF:CF:BA:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/H2GqXRvv16D-Pk3-Oqjac-_PujQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/rI1dVTw_6DqufmFiEO3U7X2uQH8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/0ad414-3df1-4b38-869e-c621e8df95ff/1/H2GqXRvv16D-Pk3-Oqjac-_PujQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.95.205.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:51:4e:9d:f7:f5:4f:03:32:36:e7:6a:ab:5e:e9:fe:bc:ee:
36:3a:ac:67:58:ad:f3:39:68:f2:83:91:3c:91:2b:60:d3:25:
3c:30:15:97:89:31:e5:b7:1b:60:25:a9:08:c9:b6:4a:a0:d8:
ef:fa:85:9a:e0:7e:9e:ad:92:af:1e:e1:ca:3d:e1:b3:48:c9:
29:6b:11:2a:c7:e6:ca:b1:85:2f:b5:75:b8:38:53:a6:60:24:
9b:84:8a:cd:42:16:47:ed:9d:9c:db:9d:1e:39:b4:9e:74:bb:
2c:c9:2d:71:02:af:93:37:dd:2a:5c:8b:37:0f:42:4d:89:e7:
e8:82:4c:04:52:03:40:7a:a7:86:16:a9:37:2a:42:43:38:9d:
3d:3d:9f:d7:a2:28:4a:7d:97:3b:d4:c6:8b:8a:27:42:e1:80:
bd:b9:75:33:8a:e7:fc:04:e1:56:a4:55:f1:f4:66:72:e2:45:
f8:df:d5:e0:e0:54:a0:e3:15:1a:b8:8a:58:d5:a4:e0:14:a3:
c8:79:2a:bd:51:b3:c3:a8:da:24:0c:23:cc:77:e7:cb:b4:36:
e7:a3:0c:c1:98:09:ed:2b:03:63:cf:01:96:6b:21:2c:1f:ce:
0a:a2:2a:7f:48:97:6c:ec:13:b7:87:21:f8:9f:58:03:39:76:
84:27:62:20
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+ME0zANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZjYxYWE1ZDFiZWZkN2EwZmUzZTRkZmUzYWE4ZGE3M2VmY2ZiYTM0MB4XDTIyMDEy
OTE2NDgwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWM4ZDVkNTUzYzNm
ZTgzYWFlN2U2MTYyMTBlZGQ0ZWQ3ZGFlNDA3ZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMmHPdB/SdxdR+dBoc6vgnKUoQ7RUTUf9DEnv93jgHENJBR+
+GL8wLTxTOuSXzPNa90XdXnY87GLIWFFlJmVeawxAXsO28mYNuXzPxS6N1LlvaRd
V48iLWclFKu23s9bYRX6K+dMjZIe3cQt4oL7xT5c+GQJUbkR44GtKKCFq3WRzFjl
29Ft6tZGbBRFFXvXW2G+apBnQzvl1rjCpNb3fxmOA+BHDk3XV9Pyv/21RDlIeBrd
iXPAwc1825AO6pxUA3GgI9a6gZqP3axUrhTDRnilMaHAIJx+VlhWx6mB0t4O9kKH
zvO0kY/9dQkhJVDLiiopdSgcry4p8FqaG/HNzkECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSsjV1VPD/oOq5+YWIQ7dTtfa5AfzAfBgNVHSMEGDAWgBQfYapdG+/XoP4+
Tf46qNpz78+6NDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0gyR3FYUnZ2MTZELVBrMy1PcWphYy1fUHVqUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDcvMGFkNDE0LTNkZjEtNGIzOC04NjllLWM2MjFlOGRmOTVmZi8x
L3JJMWRWVHdfNkRxdWZtRmlFTzNVN1gydVFIOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcv
MGFkNDE0LTNkZjEtNGIzOC04NjllLWM2MjFlOGRmOTVmZi8xL0gyR3FYUnZ2MTZE
LVBrMy1PcWphYy1fUHVqUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1fzTANBgkqhkiG9w0BAQsFAAOC
AQEAX1FOnff1TwMyNudqq17p/rzuNjqsZ1it8zlo8oORPJErYNMlPDAVl4kx5bcb
YCWpCMm2SqDY7/qFmuB+nq2Srx7hyj3hs0jJKWsRKsfmyrGFL7V1uDhTpmAkm4SK
zUIWR+2dnNudHjm0nnS7LMktcQKvkzfdKlyLNw9CTYnn6IJMBFIDQHqnhhapNypC
QzidPT2f16IoSn2XO9TGi4onQuGAvbl1M4rn/AThVqRV8fRmcuJF+N/V4OBUoOMV
GriKWNWk4BSjyHkqvVGzw6jaJAwjzHfny7Q256MMwZgJ7SsDY88BlmshLB/OCqIq
f0iXbOwTt4ch+J9YAzl2hCdiIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:17:47 2024 by rpki-client on console-fra.rpki-client.org