Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/UsvQGtUyA2tv6AmoWzeXRomyrS8.roa
File: UsvQGtUyA2tv6AmoWzeXRomyrS8.roa (raw, json)
Hash identifier: mBCFy89hwuUQiFtkgB/ghG5ln2r4yeYC8JQ20kaABAI=
Subject key identifier: 52:CB:D0:1A:D5:32:03:6B:6F:E8:09:A8:5B:37:97:46:89:B2:AD:2F
Certificate issuer: /CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Certificate serial: 01840E3E0AB6D8AEEDEF5512FE1DB250B0AC
Authority key identifier: AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/UsvQGtUyA2tv6AmoWzeXRomyrS8.roa
Signing time: Tue 25 Oct 2022 08:24:17 +0000
ROA not before: Tue 25 Oct 2022 08:24:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211804
IP address blocks: 45.143.97.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:0e:3e:0a:b6:d8:ae:ed:ef:55:12:fe:1d:b2:50:b0:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad0da43b4a5d3db78ba3f774e5b31b77037202d5
Validity
Not Before: Oct 25 08:24:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=52cbd01ad532036b6fe809a85b37974689b2ad2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:d6:32:b6:8e:62:e6:a5:60:4c:bb:8e:9c:30:
dd:e8:c1:49:c7:a7:b7:60:81:f3:8d:c5:46:de:10:
b1:3b:5e:49:a6:55:5e:52:64:12:ae:b8:6e:a6:0d:
24:90:23:fc:d6:f6:0f:a6:60:2e:8e:1a:a9:c6:f7:
77:0d:f9:b8:5c:f2:14:1d:0f:2a:e4:25:9d:56:ba:
a7:6e:0e:14:ad:9b:57:da:ee:e2:39:e2:50:b9:0e:
81:a3:9b:cd:24:36:86:bc:a8:44:52:c3:83:13:b5:
d0:a1:7f:90:e4:ce:44:c9:ee:f8:06:3f:cf:5b:ab:
84:c3:1e:7a:4c:a9:f5:95:e6:2d:2b:be:71:01:e3:
24:f9:4d:f0:7c:34:02:6c:1f:7b:20:40:0c:1c:57:
78:96:9c:a3:56:f4:bf:17:70:fa:86:e8:f2:67:fb:
62:39:dc:aa:55:ff:2f:44:a6:e0:f4:d3:ed:f6:2e:
99:87:c8:1f:e1:e2:49:f3:21:17:2d:8f:47:d2:61:
58:f9:dc:a5:46:84:54:e3:da:e8:b9:29:6a:ec:2c:
8f:d1:8b:e3:0a:d5:05:ba:7b:c9:5d:b2:62:f9:6b:
a6:66:71:36:40:77:cb:7b:5d:c7:45:1b:f6:7c:32:
1f:7a:24:d8:fe:41:63:8e:ea:91:aa:d6:52:3b:20:
27:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:CB:D0:1A:D5:32:03:6B:6F:E8:09:A8:5B:37:97:46:89:B2:AD:2F
X509v3 Authority Key Identifier:
keyid:AD:0D:A4:3B:4A:5D:3D:B7:8B:A3:F7:74:E5:B3:1B:77:03:72:02:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rQ2kO0pdPbeLo_d05bMbdwNyAtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/UsvQGtUyA2tv6AmoWzeXRomyrS8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/dd8096-14cc-488d-9257-c515f354cc5a/1/rQ2kO0pdPbeLo_d05bMbdwNyAtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.97.0/24
Signature Algorithm: sha256WithRSAEncryption
0e:30:53:ae:d9:50:2d:30:82:af:e5:f4:01:7c:54:89:b3:84:
0d:fc:9f:36:13:21:a5:cd:87:54:b9:99:2e:f3:8e:a4:38:a5:
33:e8:c7:96:99:f4:9a:ce:8b:a1:ad:ee:6b:fa:6d:12:c7:40:
e3:97:23:84:33:04:43:d7:e5:dd:95:c7:fe:55:7d:23:fd:a0:
e4:84:ea:53:92:67:aa:1b:8e:c1:42:d0:a9:3d:9a:f1:6e:6d:
3a:48:42:12:8b:cf:8f:42:07:5b:40:42:3c:74:b8:40:ed:92:
01:13:95:14:19:48:44:8c:ba:c9:3a:3b:79:20:09:88:f5:83:
d6:5d:44:d1:3a:91:cd:9f:3c:89:5c:38:5f:a5:3a:86:51:6e:
89:fe:34:1e:31:63:c0:43:8c:36:33:f8:f1:e1:70:37:0f:69:
b3:54:7a:97:f4:ab:87:b3:8f:eb:be:3c:c4:d7:54:75:ee:75:
6b:12:af:b6:3b:0a:0b:03:6a:4f:ac:c9:8f:ec:fd:49:99:ff:
b7:d7:0f:1f:3c:6e:38:ae:a2:2d:4b:64:3e:42:06:5a:74:8e:
5f:0c:20:f2:b1:24:96:3e:0e:14:c9:20:97:11:6f:49:fb:e3:
2b:cb:0e:28:f0:f5:50:00:9e:4e:00:a6:98:f6:90:55:ba:e9:
11:eb:ac:52
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYQOPgq22K7t71US/h2yULCsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkMGRhNDNiNGE1ZDNkYjc4YmEzZjc3NGU1YjMxYjc3MDM3
MjAyZDUwHhcNMjIxMDI1MDgyNDE3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg1MmNiZDAxYWQ1MzIwMzZiNmZlODA5YTg1YjM3OTc0Njg5YjJhZDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjtYyto5i5qVgTLuOnDDd6MFJx6e3
YIHzjcVG3hCxO15JplVeUmQSrrhupg0kkCP81vYPpmAujhqpxvd3Dfm4XPIUHQ8q
5CWdVrqnbg4UrZtX2u7iOeJQuQ6Bo5vNJDaGvKhEUsODE7XQoX+Q5M5Eye74Bj/P
W6uEwx56TKn1leYtK75xAeMk+U3wfDQCbB97IEAMHFd4lpyjVvS/F3D6hujyZ/ti
OdyqVf8vRKbg9NPt9i6Zh8gf4eJJ8yEXLY9H0mFY+dylRoRU49rouSlq7CyP0Yvj
CtUFunvJXbJi+WumZnE2QHfLe13HRRv2fDIfeiTY/kFjjuqRqtZSOyAnvQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFFLL0BrVMgNrb+gJqFs3l0aJsq0vMB8GA1UdIwQY
MBaAFK0NpDtKXT23i6P3dOWzG3cDcgLVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTct
YzUxNWYzNTRjYzVhLzEvVXN2UUd0VXlBMnR2NkFtb1d6ZVhSb215clM4LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC9kZDgwOTYtMTRjYy00ODhkLTkyNTctYzUxNWYzNTRjYzVh
LzEvclEya08wcGRQYmVMb19kMDViTWJkd055QXRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY9hMA0G
CSqGSIb3DQEBCwUAA4IBAQAOMFOu2VAtMIKv5fQBfFSJs4QN/J82EyGlzYdUuZku
846kOKUz6MeWmfSazouhre5r+m0Sx0DjlyOEMwRD1+Xdlcf+VX0j/aDkhOpTkmeq
G47BQtCpPZrxbm06SEISi8+PQgdbQEI8dLhA7ZIBE5UUGUhEjLrJOjt5IAmI9YPW
XUTROpHNnzyJXDhfpTqGUW6J/jQeMWPAQ4w2M/jx4XA3D2mzVHqX9KuHs4/rvjzE
11R17nVrEq+2OwoLA2pPrMmP7P1Jmf+31w8fPG44rqItS2Q+QgZadI5fDCDysSSW
Pg4UySCXEW9J++Mryw4o8PVQAJ5OAKaY9pBVuukR66xS
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:47:36 2023 by rpki-client on console-ams.rpki-client.org