Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/ToTLgqP3VTi7xkr7SRqn-RJowUY.roa
File: ToTLgqP3VTi7xkr7SRqn-RJowUY.roa (raw, json)
Hash identifier: c0Ij5Hn9yqPRgW7aEh7LisI68BCXt8JY5Xzouw/HijY=
Subject key identifier: 4E:84:CB:82:A3:F7:55:38:BB:C6:4A:FB:49:1A:A7:F9:12:68:C1:46
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 0AE1711C
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/ToTLgqP3VTi7xkr7SRqn-RJowUY.roa
Signing time: Sat 15 Jan 2022 11:23:02 +0000
ROA not before: Sat 15 Jan 2022 11:23:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211114
IP address blocks: 45.143.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 182546716 (0xae1711c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Jan 15 11:23:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e84cb82a3f75538bbc64afb491aa7f91268c146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:d3:87:7b:39:cb:e3:00:d3:6d:f1:bc:50:58:
1f:01:eb:62:56:b2:b4:57:22:51:5f:99:ee:15:13:
24:90:c5:ea:04:d8:24:3c:d9:bd:cd:0d:8f:55:eb:
3a:9b:7e:37:5b:bc:48:57:ac:2d:96:b6:db:c0:a0:
26:20:40:f6:86:84:23:0f:27:f9:de:5e:74:73:63:
db:50:a5:8e:6f:4e:a5:d5:63:7c:6d:b1:9d:60:7e:
c5:37:b6:35:98:9f:af:fe:d8:1a:d5:16:81:77:26:
42:89:67:df:85:fe:09:1b:74:3e:de:32:b9:83:b7:
f9:ed:a6:2c:e7:fa:1e:b1:b2:f4:90:f7:05:3b:00:
09:49:52:1f:c0:2d:e3:90:2c:f2:88:e0:b9:1d:39:
7e:ec:76:1c:eb:09:e3:6f:d6:31:95:c9:f9:41:4f:
ca:a5:d0:f5:44:65:32:30:39:3e:21:1a:dd:22:35:
37:33:0b:c5:99:7b:f6:89:12:89:18:e4:fb:ab:aa:
ef:fd:12:c9:62:b7:29:99:a7:47:0c:9d:b4:7e:50:
f6:e3:2f:9e:e6:a5:2a:7f:16:d0:c5:d1:fb:72:73:
88:28:b5:da:f0:87:0f:20:2b:10:84:3e:ae:bd:fe:
e3:fd:a7:86:82:3b:44:94:1e:cf:05:a5:ef:f1:55:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:84:CB:82:A3:F7:55:38:BB:C6:4A:FB:49:1A:A7:F9:12:68:C1:46
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/ToTLgqP3VTi7xkr7SRqn-RJowUY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.97.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:1e:4e:cc:a1:89:cf:76:2c:ed:3e:b4:03:88:9d:17:e6:7a:
ca:18:a9:d5:81:1b:7f:8c:5e:23:a3:cf:60:e8:ec:ab:0e:55:
a6:a0:9c:4c:5b:02:ed:26:2b:c6:98:43:ee:55:db:b8:ed:05:
f7:3c:63:e4:c6:58:67:d2:09:8c:f6:cf:dc:6c:ae:4d:75:4b:
8e:b5:d9:96:ce:11:fd:df:de:e6:36:bc:16:b9:70:4e:30:3f:
bf:cd:bb:71:fc:d1:9d:f5:48:ed:c9:cb:5c:47:5e:99:40:1e:
c6:4a:51:9e:db:73:9b:39:06:66:ba:02:e8:6c:d1:a8:d1:72:
66:57:54:d2:0c:07:4a:cb:66:cc:a3:f5:20:92:39:0a:f0:39:
6b:18:d1:df:09:13:04:33:36:c7:60:54:ed:5e:92:cb:bb:3b:
5e:ab:1b:d4:b7:c6:52:f6:f6:f5:a2:6f:33:c9:23:fb:14:11:
f9:ad:c7:1c:18:79:84:cf:16:7f:e0:08:25:da:9e:a5:7e:b6:
ef:f1:00:c0:29:1d:ca:0d:06:81:6e:af:d4:f0:89:5c:fe:e9:
c8:c2:ba:5f:ad:ff:dd:b1:95:2f:73:10:1f:af:b2:2d:b7:30:
9f:b8:4b:99:fa:8a:c2:e9:25:27:53:99:52:5c:4d:cd:ce:98:
0f:cc:4c:7a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECuFxHDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
ZDBkYTQzYjRhNWQzZGI3OGJhM2Y3NzRlNWIzMWI3NzAzNzIwMmQ1MB4XDTIyMDEx
NTExMjMwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU4NGNiODJhM2Y3
NTUzOGJiYzY0YWZiNDkxYWE3ZjkxMjY4YzE0NjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMHTh3s5y+MA023xvFBYHwHrYlaytFciUV+Z7hUTJJDF6gTY
JDzZvc0Nj1XrOpt+N1u8SFesLZa228CgJiBA9oaEIw8n+d5edHNj21Cljm9OpdVj
fG2xnWB+xTe2NZifr/7YGtUWgXcmQoln34X+CRt0Pt4yuYO3+e2mLOf6HrGy9JD3
BTsACUlSH8At45As8ojguR05fux2HOsJ42/WMZXJ+UFPyqXQ9URlMjA5PiEa3SI1
NzMLxZl79okSiRjk+6uq7/0SyWK3KZmnRwydtH5Q9uMvnualKn8W0MXR+3JziCi1
2vCHDyArEIQ+rr3+4/2nhoI7RJQezwWl7/FVZ3sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROhMuCo/dVOLvGSvtJGqf5EmjBRjAfBgNVHSMEGDAWgBStDaQ7Sl09t4uj
93Tlsxt3A3IC1TAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JRMmtPMHBkUGJlTG9fZDA1Yk1iZHdOeUF0VS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGQvZGQ4MDk2LTE0Y2MtNDg4ZC05MjU3LWM1MTVmMzU0Y2M1YS8x
L1RvVExncVAzVlRpN3hrcjdTUnFuLVJKb3dVWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQv
ZGQ4MDk2LTE0Y2MtNDg4ZC05MjU3LWM1MTVmMzU0Y2M1YS8xL3JRMmtPMHBkUGJl
TG9fZDA1Yk1iZHdOeUF0VS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2PYTANBgkqhkiG9w0BAQsFAAOC
AQEAxB5OzKGJz3Ys7T60A4idF+Z6yhip1YEbf4xeI6PPYOjsqw5VpqCcTFsC7SYr
xphD7lXbuO0F9zxj5MZYZ9IJjPbP3GyuTXVLjrXZls4R/d/e5ja8FrlwTjA/v827
cfzRnfVI7cnLXEdemUAexkpRnttzmzkGZroC6GzRqNFyZldU0gwHSstmzKP1IJI5
CvA5axjR3wkTBDM2x2BU7V6Sy7s7Xqsb1LfGUvb29aJvM8kj+xQR+a3HHBh5hM8W
f+AIJdqepX627/EAwCkdyg0GgW6v1PCJXP7pyMK6X63/3bGVL3MQH6+yLbcwn7hL
mfqKwuklJ1OZUlxNzc6YD8xMeg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-ams.rpki-client.org