Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3oQkPCX4ePJushKt79y1tv57Vx4.roa
File: 3oQkPCX4ePJushKt79y1tv57Vx4.roa (raw, json)
Hash identifier: 96+JwXskljk0XDhBkmb8eIMc3RLZjv9yqL64LN5wuXY=
Subject key identifier: DE:84:24:3C:25:F8:78:F2:6E:B2:12:AD:EF:DC:B5:B6:FE:7B:57:1E
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 01831C4D2E4B00F1C10FD2C906BD52289D9F
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3oQkPCX4ePJushKt79y1tv57Vx4.roa
Signing time: Thu 08 Sep 2022 08:52:43 +0000
ROA not before: Thu 08 Sep 2022 08:52:43 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 41327
IP address blocks: 45.154.236.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:1c:4d:2e:4b:00:f1:c1:0f:d2:c9:06:bd:52:28:9d:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: Sep 8 08:52:43 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=de84243c25f878f26eb212adefdcb5b6fe7b571e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:4c:a3:13:9d:af:87:d6:4e:85:7e:ce:a1:fe:
79:4d:b1:f8:d1:c8:82:de:7a:72:90:6e:6b:fa:8b:
74:ca:0d:9d:1d:3e:b3:c4:4d:4d:62:dd:cf:9f:cc:
9f:33:ea:71:31:10:1a:48:30:f4:ce:34:f1:91:b4:
97:8e:a6:b2:c7:39:09:ef:b7:eb:ac:0e:a0:3e:b6:
1d:3d:bb:33:e8:e0:00:38:11:02:5b:a7:c6:cc:0d:
d6:0c:34:97:02:7f:a2:19:f3:21:ec:b9:22:9c:9d:
7a:7e:87:26:5e:13:5b:1b:0d:a4:89:a3:2a:9d:5b:
1c:1a:61:48:8c:cc:28:3f:83:e6:15:db:e4:b1:bb:
5c:6f:39:ef:80:2e:1d:98:7e:eb:9a:d2:c4:f2:1a:
90:3f:bc:f9:3f:2e:c8:41:5a:44:b0:8c:31:01:de:
ec:42:ad:6b:f7:4f:48:dd:ea:29:d9:f1:5c:ea:54:
48:2f:eb:e0:09:b0:7d:8f:b2:0b:90:3f:29:4c:4d:
73:7b:70:7d:54:e5:62:7c:94:19:b1:3e:21:d7:b5:
6a:ef:ec:da:8e:71:8e:22:b3:6a:bf:48:45:6c:8f:
41:6c:89:fd:ea:fd:c5:7e:6b:22:f0:ef:04:25:f5:
e1:cc:52:0b:6c:44:be:fc:2b:ec:9c:87:32:2c:69:
85:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:84:24:3C:25:F8:78:F2:6E:B2:12:AD:EF:DC:B5:B6:FE:7B:57:1E
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/3oQkPCX4ePJushKt79y1tv57Vx4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.236.0/24
Signature Algorithm: sha256WithRSAEncryption
1a:c6:eb:c8:d5:90:dc:fc:cd:1a:88:e4:22:a6:e5:ae:fb:7f:
60:68:b4:cd:63:bd:f9:9f:4f:47:03:ba:63:e5:d7:7c:ad:43:
4f:8b:bc:01:2b:f8:14:1a:f4:68:ba:33:40:a4:69:5a:82:ec:
33:cd:a5:f1:71:8d:96:e9:5d:19:99:23:45:7b:68:b3:d9:2a:
38:ca:ac:f8:34:40:bb:4f:86:ce:b1:0a:1f:dc:4d:61:a5:55:
55:01:d3:74:08:39:f9:57:a4:45:b3:2f:c8:61:94:d1:b7:ed:
50:e0:23:1c:69:7d:64:4d:41:64:25:cf:33:e6:76:59:f4:77:
77:90:8b:24:38:65:00:e1:f2:96:e4:6f:7b:15:d1:0c:76:7e:
ba:b9:9a:b2:4f:38:c8:72:ee:91:dd:cd:03:85:64:a7:fd:25:
ae:bb:bd:18:87:4f:6b:1c:16:0b:0d:da:7c:da:5c:6d:19:77:
23:fe:b5:44:9d:5f:eb:33:f7:72:b9:58:0c:79:df:54:99:6d:
78:99:25:c5:6a:0f:80:fc:45:63:b1:50:00:6f:ab:31:9f:c9:
13:8d:cc:de:a5:18:96:74:07:97:6a:2d:e5:47:d9:d5:73:c3:
1a:c4:ca:bd:b5:3a:cb:61:45:bb:ba:78:54:3c:3d:4f:92:40:
23:b2:4f:f4
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMcTS5LAPHBD9LJBr1SKJ2fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjIwOTA4MDg1MjQzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkZTg0MjQzYzI1Zjg3OGYyNmViMjEyYWRlZmRjYjViNmZlN2I1NzFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEyjE52vh9ZOhX7Oof55TbH40ciC
3npykG5r+ot0yg2dHT6zxE1NYt3Pn8yfM+pxMRAaSDD0zjTxkbSXjqayxzkJ77fr
rA6gPrYdPbsz6OAAOBECW6fGzA3WDDSXAn+iGfMh7LkinJ16focmXhNbGw2kiaMq
nVscGmFIjMwoP4PmFdvksbtcbznvgC4dmH7rmtLE8hqQP7z5Py7IQVpEsIwxAd7s
Qq1r909I3eop2fFc6lRIL+vgCbB9j7ILkD8pTE1ze3B9VOVifJQZsT4h17Vq7+za
jnGOIrNqv0hFbI9BbIn96v3Ffmsi8O8EJfXhzFILbES+/CvsnIcyLGmFLwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFN6EJDwl+HjybrISre/ctbb+e1ceMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvM29Ra1BDWDRlUEp1c2hLdDc5eTF0djU3Vng0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZrsMA0G
CSqGSIb3DQEBCwUAA4IBAQAaxuvI1ZDc/M0aiOQipuWu+39gaLTNY735n09HA7pj
5dd8rUNPi7wBK/gUGvRoujNApGlaguwzzaXxcY2W6V0ZmSNFe2iz2So4yqz4NEC7
T4bOsQof3E1hpVVVAdN0CDn5V6RFsy/IYZTRt+1Q4CMcaX1kTUFkJc8z5nZZ9Hd3
kIskOGUA4fKW5G97FdEMdn66uZqyTzjIcu6R3c0DhWSn/SWuu70Yh09rHBYLDdp8
2lxtGXcj/rVEnV/rM/dyuVgMed9UmW14mSXFag+A/EVjsVAAb6sxn8kTjczepRiW
dAeXai3lR9nVc8MaxMq9tTrLYUW7unhUPD1PkkAjsk/0
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org