Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/m7row6d9LUb0JZbJGVIDkdTsOck.roa
File: m7row6d9LUb0JZbJGVIDkdTsOck.roa (raw, json)
Hash identifier: ircOWwohxnygvwOjWKWTLt/lXZHYUpwjvI3VoTcScjs=
Subject key identifier: 9B:BA:E8:C3:A7:7D:2D:46:F4:25:96:C9:19:52:03:91:D4:EC:39:C9
Certificate issuer: /CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Certificate serial: 0832E434
Authority key identifier: B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/m7row6d9LUb0JZbJGVIDkdTsOck.roa
Signing time: Sat 01 Jan 2022 10:57:41 +0000
ROA not before: Sat 01 Jan 2022 10:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207616
IP address blocks: 45.67.14.0/24 maxlen: 24
45.67.15.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137552948 (0x832e434)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b7c40a747e3ac1acc611a4c403b6007398e7d79f
Validity
Not Before: Jan 1 10:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9bbae8c3a77d2d46f42596c919520391d4ec39c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:cc:cf:8f:a6:9a:17:e0:8e:46:48:8a:f2:ec:
7e:47:30:61:12:06:3e:3b:0f:9e:48:35:02:19:0a:
07:cd:ac:ab:71:11:1a:1a:06:82:36:f4:ee:9f:ba:
20:6c:3b:b0:5e:05:1f:3f:85:a7:2f:c8:a5:7a:47:
64:77:ce:90:27:b6:03:5e:84:14:1b:42:89:ad:6a:
4c:18:b9:c0:79:9a:4e:06:e3:b1:90:d6:18:fb:da:
c3:c7:d5:6f:75:51:1d:50:48:08:63:4b:13:6d:db:
87:73:d6:a9:05:5c:a5:c1:ed:f3:f1:a7:a6:c1:fc:
d6:02:71:d3:9c:7b:00:7e:fc:39:e8:ef:e7:e4:4e:
f7:4d:2a:24:01:f5:89:08:9f:86:6d:32:f6:94:f0:
5d:d1:2e:f1:37:ce:2f:e4:97:d8:35:b2:e6:b7:a5:
76:29:45:7b:f2:eb:1d:bb:87:e8:2f:5d:21:2b:05:
7e:2a:1a:20:d5:72:95:21:d8:bc:62:8a:c7:35:6d:
fa:32:9e:6a:ef:cd:02:6c:c0:63:9e:1f:a3:fc:58:
42:da:a7:68:cb:2d:4e:64:b9:4c:75:33:9e:cf:06:
16:15:77:9b:28:9b:10:b8:c9:dd:59:a8:2a:5d:8b:
0b:8a:e8:7c:5b:01:f5:6f:c1:75:6e:53:1a:25:69:
84:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:BA:E8:C3:A7:7D:2D:46:F4:25:96:C9:19:52:03:91:D4:EC:39:C9
X509v3 Authority Key Identifier:
keyid:B7:C4:0A:74:7E:3A:C1:AC:C6:11:A4:C4:03:B6:00:73:98:E7:D7:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t8QKdH46wazGEaTEA7YAc5jn158.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/m7row6d9LUb0JZbJGVIDkdTsOck.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/375ebc-bafb-4e0b-b549-77635a22eb96/1/t8QKdH46wazGEaTEA7YAc5jn158.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.14.0/23
Signature Algorithm: sha256WithRSAEncryption
62:64:94:88:bf:dc:66:7b:ef:6a:5c:04:21:04:35:cb:e7:e4:
71:67:71:47:19:a8:24:bf:ec:6e:c7:37:3f:60:c3:47:73:b8:
e7:cc:3d:95:13:45:38:45:3f:05:c5:43:55:42:e5:37:48:37:
83:39:54:4d:40:6f:b5:54:09:9a:5b:7a:ea:93:a6:dd:16:ac:
80:89:b3:94:f6:df:29:48:15:31:ba:43:a9:df:6b:02:fe:17:
c6:dc:ae:4f:b2:16:36:48:71:68:c1:f7:62:6f:f6:8b:5c:0e:
9b:1f:6d:4b:77:d8:fa:75:98:90:54:ff:9e:e8:96:13:4e:72:
e8:ed:7f:e7:65:1e:fe:73:4f:8a:02:04:25:0c:4b:27:b1:42:
75:f7:06:a4:01:f2:3b:5f:ef:5c:48:7c:35:a0:8e:b1:4b:b4:
4e:13:89:c9:20:a9:7f:15:ec:20:81:cc:52:72:fc:46:9a:17:
57:16:ca:1b:de:26:e5:7a:6c:e9:1c:95:f0:e2:d6:d3:e0:ce:
33:30:49:2c:36:f8:f4:d8:24:60:49:c8:47:42:2f:27:a2:3f:
06:65:69:72:17:56:89:d2:9e:50:80:5e:0c:4f:be:70:17:6d:
8e:c6:84:4b:57:7f:87:8d:51:c4:de:2b:08:c2:cf:9c:f1:43:
1b:92:45:43
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECDLkNDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
N2M0MGE3NDdlM2FjMWFjYzYxMWE0YzQwM2I2MDA3Mzk4ZTdkNzlmMB4XDTIyMDEw
MTEwNTc0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWJiYWU4YzNhNzdk
MmQ0NmY0MjU5NmM5MTk1MjAzOTFkNGVjMzljOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ3Mz4+mmhfgjkZIivLsfkcwYRIGPjsPnkg1AhkKB82sq3ER
GhoGgjb07p+6IGw7sF4FHz+Fpy/IpXpHZHfOkCe2A16EFBtCia1qTBi5wHmaTgbj
sZDWGPvaw8fVb3VRHVBICGNLE23bh3PWqQVcpcHt8/GnpsH81gJx05x7AH78Oejv
5+RO900qJAH1iQifhm0y9pTwXdEu8TfOL+SX2DWy5reldilFe/LrHbuH6C9dISsF
fioaINVylSHYvGKKxzVt+jKeau/NAmzAY54fo/xYQtqnaMstTmS5THUzns8GFhV3
myibELjJ3VmoKl2LC4rofFsB9W/BdW5TGiVphL0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSbuujDp30tRvQllskZUgOR1Ow5yTAfBgNVHSMEGDAWgBS3xAp0fjrBrMYR
pMQDtgBzmOfXnzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Q4UUtkSDQ2d2F6R0VhVEVBN1lBYzVqbjE1OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMDgvMzc1ZWJjLWJhZmItNGUwYi1iNTQ5LTc3NjM1YTIyZWI5Ni8x
L203cm93NmQ5TFViMEpaYkpHVklEa2RUc09jay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgv
Mzc1ZWJjLWJhZmItNGUwYi1iNTQ5LTc3NjM1YTIyZWI5Ni8xL3Q4UUtkSDQ2d2F6
R0VhVEVBN1lBYzVqbjE1OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS1DDjANBgkqhkiG9w0BAQsFAAOC
AQEAYmSUiL/cZnvvalwEIQQ1y+fkcWdxRxmoJL/sbsc3P2DDR3O458w9lRNFOEU/
BcVDVULlN0g3gzlUTUBvtVQJmlt66pOm3RasgImzlPbfKUgVMbpDqd9rAv4Xxtyu
T7IWNkhxaMH3Ym/2i1wOmx9tS3fY+nWYkFT/nuiWE05y6O1/52Ue/nNPigIEJQxL
J7FCdfcGpAHyO1/vXEh8NaCOsUu0ThOJySCpfxXsIIHMUnL8RpoXVxbKG94m5Xps
6RyV8OLW0+DOMzBJLDb49NgkYEnIR0IvJ6I/BmVpchdWidKeUIBeDE++cBdtjsaE
S1d/h41RxN4rCMLPnPFDG5JFQw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:10 2023 by rpki-client on console-fra.rpki-client.org