Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/X0qJ0GkxUyK6NbIt91kpe5yn6uM.roa
File: X0qJ0GkxUyK6NbIt91kpe5yn6uM.roa (raw, json)
Hash identifier: 89V0ol8N1rDDNKd1WXK5/1Ra2K1SetUwWK0Gcif2bH0=
Subject key identifier: 5F:4A:89:D0:69:31:53:22:BA:35:B2:2D:F7:59:29:7B:9C:A7:EA:E3
Certificate issuer: /CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Certificate serial: 0182441B687E74C88BDEEACFBC1D89BCA720
Authority key identifier: BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/X0qJ0GkxUyK6NbIt91kpe5yn6uM.roa
Signing time: Thu 28 Jul 2022 09:20:23 +0000
ROA not before: Thu 28 Jul 2022 09:20:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 45.132.224.0/24 maxlen: 24
45.132.225.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:44:1b:68:7e:74:c8:8b:de:ea:cf:bc:1d:89:bc:a7:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=baaa7b4c01e929c38923981ab51c9727a1f9f07e
Validity
Not Before: Jul 28 09:20:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5f4a89d069315322ba35b22df759297b9ca7eae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:cb:02:7f:53:84:bc:44:0f:4a:51:9e:2c:13:
06:6a:98:e6:1a:36:02:73:bd:30:ae:ec:99:55:1b:
62:c3:d0:89:a4:c3:3f:9e:08:a1:24:f0:f3:04:e4:
28:09:56:49:bf:5a:82:d4:b0:5d:53:d0:4f:6f:88:
57:d5:24:2c:13:da:ac:0b:4c:9c:ea:2f:1f:61:bc:
eb:aa:f2:a3:4c:34:70:49:4b:28:6b:b6:4b:f9:1f:
a9:08:69:ef:5b:e6:7b:e2:dc:a7:42:a9:a9:fa:4d:
41:40:20:b5:1c:15:d3:52:29:65:9d:1b:20:40:ac:
e3:f7:92:43:9a:ed:82:fd:b2:85:c4:c4:e1:df:f2:
37:42:73:43:65:ee:d0:7f:52:36:50:b4:d3:69:9f:
fa:69:81:34:94:f1:2e:eb:2c:fb:ce:4d:30:ef:9f:
b5:22:9b:7d:a4:1c:03:aa:f7:7c:3e:d3:ae:e2:cb:
54:e2:75:f8:3d:b4:86:ca:b8:53:ce:cb:f3:04:9e:
5f:cb:27:8f:4a:f4:c1:ae:f4:c3:d1:cb:9a:a0:5b:
39:22:1d:4a:55:39:c9:34:7b:3b:de:41:90:8e:7a:
e8:14:21:74:4d:93:5c:6a:f6:9c:c4:38:7c:fb:40:
84:d4:32:dd:b2:61:a6:b7:c0:35:01:7a:0d:ee:d6:
39:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:4A:89:D0:69:31:53:22:BA:35:B2:2D:F7:59:29:7B:9C:A7:EA:E3
X509v3 Authority Key Identifier:
keyid:BA:AA:7B:4C:01:E9:29:C3:89:23:98:1A:B5:1C:97:27:A1:F9:F0:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uqp7TAHpKcOJI5gatRyXJ6H58H4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/X0qJ0GkxUyK6NbIt91kpe5yn6uM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/ab9e70-489a-4088-b28e-e68f6cf2c0d2/1/uqp7TAHpKcOJI5gatRyXJ6H58H4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.224.0/23
Signature Algorithm: sha256WithRSAEncryption
43:d5:a3:b6:00:7e:d3:fd:4f:08:46:88:55:03:aa:33:66:ae:
b6:23:64:02:0e:92:1c:55:7a:8b:4e:8b:b8:2b:87:bd:e7:6f:
e6:b1:cf:d7:76:d0:0e:48:46:ce:6b:6a:a8:48:81:45:45:0f:
97:40:c0:54:b6:15:4f:66:d7:e1:cf:c0:da:8d:8c:83:12:9f:
16:37:fc:f6:8e:20:88:ae:3d:3f:cf:19:43:04:68:20:ad:c9:
c8:f7:66:a3:32:32:dd:4d:6f:ea:c4:d0:38:f6:95:ba:18:4f:
fc:a8:d4:24:12:f4:7e:cb:53:6a:8e:34:bc:06:66:c8:d2:34:
9e:95:44:ee:95:07:15:51:4b:60:5d:0f:e1:c8:07:d5:df:f2:
40:63:82:31:16:5f:7d:9d:dc:48:3f:38:a2:2a:bc:15:a6:3f:
e5:aa:fe:5f:a7:a4:be:8a:b3:79:33:84:80:96:5b:7d:6e:84:
83:b0:f2:e1:58:d3:ed:8c:ea:9e:4b:cc:fa:0f:c3:bd:e4:5e:
ed:e0:f5:63:88:12:07:5e:43:25:22:29:15:b8:2d:5d:d6:a1:
ab:c7:68:9c:af:81:e2:b6:e8:ee:1e:69:3d:6a:21:1e:8f:ef:
1b:36:85:4d:e0:73:6b:98:18:04:a6:f3:b3:32:48:48:d4:63:
97:cd:62:64
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJEG2h+dMiL3urPvB2JvKcgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhYWE3YjRjMDFlOTI5YzM4OTIzOTgxYWI1MWM5NzI3YTFm
OWYwN2UwHhcNMjIwNzI4MDkyMDIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1ZjRhODlkMDY5MzE1MzIyYmEzNWIyMmRmNzU5Mjk3YjljYTdlYWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqMsCf1OEvEQPSlGeLBMGapjmGjYC
c70wruyZVRtiw9CJpMM/ngihJPDzBOQoCVZJv1qC1LBdU9BPb4hX1SQsE9qsC0yc
6i8fYbzrqvKjTDRwSUsoa7ZL+R+pCGnvW+Z74tynQqmp+k1BQCC1HBXTUillnRsg
QKzj95JDmu2C/bKFxMTh3/I3QnNDZe7Qf1I2ULTTaZ/6aYE0lPEu6yz7zk0w75+1
Ipt9pBwDqvd8PtOu4stU4nX4PbSGyrhTzsvzBJ5fyyePSvTBrvTD0cuaoFs5Ih1K
VTnJNHs73kGQjnroFCF0TZNcavacxDh8+0CE1DLdsmGmt8A1AXoN7tY5mwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFF9KidBpMVMiujWyLfdZKXucp+rjMB8GA1UdIwQY
MBaAFLqqe0wB6SnDiSOYGrUclyeh+fB+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdXFwN1RBSHBLY09KSTVnYXRSeVhKNkg1OEg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9hYjllNzAtNDg5YS00MDg4LWIyOGUt
ZTY4ZjZjZjJjMGQyLzEvWDBxSjBHa3hVeUs2TmJJdDkxa3BlNXluNnVNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy9hYjllNzAtNDg5YS00MDg4LWIyOGUtZTY4ZjZjZjJjMGQy
LzEvdXFwN1RBSHBLY09KSTVnYXRSeVhKNkg1OEg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLYTgMA0G
CSqGSIb3DQEBCwUAA4IBAQBD1aO2AH7T/U8IRohVA6ozZq62I2QCDpIcVXqLTou4
K4e952/msc/XdtAOSEbOa2qoSIFFRQ+XQMBUthVPZtfhz8DajYyDEp8WN/z2jiCI
rj0/zxlDBGggrcnI92ajMjLdTW/qxNA49pW6GE/8qNQkEvR+y1NqjjS8BmbI0jSe
lUTulQcVUUtgXQ/hyAfV3/JAY4IxFl99ndxIPziiKrwVpj/lqv5fp6S+irN5M4SA
llt9boSDsPLhWNPtjOqeS8z6D8O95F7t4PVjiBIHXkMlIikVuC1d1qGrx2icr4Hi
tujuHmk9aiEej+8bNoVN4HNrmBgEpvOzMkhI1GOXzWJk
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:52:31 2024 by rpki-client on console-ams.rpki-client.org