Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/30dhUC2rZ8ucTRAM8z1JkECyqnQ.roa
File: 30dhUC2rZ8ucTRAM8z1JkECyqnQ.roa (raw, json)
Hash identifier: cPvb4hwrdxRkbOEl3247Cn09ylw+Y+4q0uyeul/H8xg=
Subject key identifier: DF:47:61:50:2D:AB:67:CB:9C:4D:10:0C:F3:3D:49:90:40:B2:AA:74
Certificate issuer: /CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Certificate serial: 38855921
Authority key identifier: AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/30dhUC2rZ8ucTRAM8z1JkECyqnQ.roa
Signing time: Sat 01 Jan 2022 05:54:20 +0000
ROA not before: Sat 01 Jan 2022 05:54:20 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44242
IP address blocks: 159.148.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 948263201 (0x38855921)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ab0952c8ba8dadb1d34de6c6a93864a609fc41ec
Validity
Not Before: Jan 1 05:54:20 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df4761502dab67cb9c4d100cf33d499040b2aa74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:f5:d4:bc:bd:5a:6d:10:65:83:8a:03:bd:ab:
81:d2:7e:de:5e:a3:e3:d3:66:e4:1c:48:2c:b0:c7:
e8:6c:61:3b:00:a0:44:02:13:2f:a2:ff:fa:04:e2:
09:c5:2a:43:00:eb:a7:b8:16:59:33:dd:86:c9:77:
d0:3a:cc:47:74:25:58:a2:60:1d:8a:c4:3d:47:7b:
0f:0d:f0:1d:85:31:4e:b4:30:82:e8:34:f2:d7:4e:
f4:c0:87:8a:d5:95:a0:cb:b4:00:0d:bd:56:c7:ea:
4c:c9:cc:ec:ff:1e:b3:70:fd:73:e7:09:1b:a9:79:
43:f0:44:e1:8e:e3:d0:26:b5:d0:11:82:e6:13:cd:
d3:1b:65:93:98:ab:06:7a:60:d7:5f:cd:0c:08:03:
f6:90:94:81:31:7f:8c:89:82:e5:1c:13:7f:50:ad:
cd:e0:d6:2e:70:96:8d:2a:46:66:ea:a3:33:39:89:
1f:bc:b0:36:50:83:83:e9:72:59:c1:fb:54:7a:c6:
1f:bc:9f:cf:04:02:d4:5d:b3:5e:92:5d:02:b1:6e:
03:f2:bc:06:d6:16:60:a8:57:ef:77:fc:33:9c:ed:
22:37:28:3f:9e:3e:74:17:75:0a:1a:85:06:a8:ef:
de:66:dc:55:80:c0:9b:ce:c8:d2:38:02:7b:dd:8e:
f0:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:47:61:50:2D:AB:67:CB:9C:4D:10:0C:F3:3D:49:90:40:B2:AA:74
X509v3 Authority Key Identifier:
keyid:AB:09:52:C8:BA:8D:AD:B1:D3:4D:E6:C6:A9:38:64:A6:09:FC:41:EC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qwlSyLqNrbHTTebGqThkpgn8Qew.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/30dhUC2rZ8ucTRAM8z1JkECyqnQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/3555fe-12cd-402a-a810-5554d6e1686f/1/qwlSyLqNrbHTTebGqThkpgn8Qew.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
159.148.30.0/24
Signature Algorithm: sha256WithRSAEncryption
13:84:37:58:e7:7d:f8:de:14:0c:bb:df:87:73:06:db:a8:cb:
07:10:a7:e6:84:6f:42:8f:1d:88:0a:e4:81:ec:76:cd:aa:01:
4a:3b:f2:77:94:ef:31:e8:56:f7:79:73:29:df:b5:f6:92:e6:
5a:8b:f7:7e:ad:89:e2:fc:42:93:64:09:8f:74:f8:1a:7c:9e:
26:0b:eb:e9:f0:92:11:c3:21:73:71:00:fc:ad:ff:1b:12:a2:
98:69:1d:69:78:95:af:d5:a1:8b:c7:e7:45:ec:c7:bd:dd:96:
5d:09:b8:7e:24:cd:9e:76:92:84:22:48:c2:48:8f:bf:ac:a0:
93:8a:89:62:5a:08:6c:6c:8b:45:e7:81:84:4b:62:6f:f8:2f:
02:7d:2a:42:96:0c:1c:75:dc:59:92:b8:9e:93:7a:d2:5e:68:
fd:cf:f3:92:93:a4:b8:c5:3c:6a:29:ec:4b:3d:15:c3:30:46:
2c:06:bf:d4:0d:1c:2d:c4:71:66:f9:0d:78:09:e5:c2:20:e9:
85:29:4d:b5:f8:b5:fd:27:eb:c1:8a:a9:15:0a:93:45:b1:5d:
91:78:d3:7a:53:e6:87:85:45:a4:52:2a:51:f1:37:f6:42:e0:
b7:6b:21:c7:8e:b7:18:db:4f:79:ff:94:73:3c:8f:42:0b:99:
c5:2d:d1:76
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEOIVZITANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
YjA5NTJjOGJhOGRhZGIxZDM0ZGU2YzZhOTM4NjRhNjA5ZmM0MWVjMB4XDTIyMDEw
MTA1NTQyMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGY0NzYxNTAyZGFi
NjdjYjljNGQxMDBjZjMzZDQ5OTA0MGIyYWE3NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANv11Ly9Wm0QZYOKA72rgdJ+3l6j49Nm5BxILLDH6GxhOwCg
RAITL6L/+gTiCcUqQwDrp7gWWTPdhsl30DrMR3QlWKJgHYrEPUd7Dw3wHYUxTrQw
gug08tdO9MCHitWVoMu0AA29VsfqTMnM7P8es3D9c+cJG6l5Q/BE4Y7j0Ca10BGC
5hPN0xtlk5irBnpg11/NDAgD9pCUgTF/jImC5RwTf1CtzeDWLnCWjSpGZuqjMzmJ
H7ywNlCDg+lyWcH7VHrGH7yfzwQC1F2zXpJdArFuA/K8BtYWYKhX73f8M5ztIjco
P54+dBd1ChqFBqjv3mbcVYDAm87I0jgCe92O8DsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTfR2FQLatny5xNEAzzPUmQQLKqdDAfBgNVHSMEGDAWgBSrCVLIuo2tsdNN
5sapOGSmCfxB7DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3F3bFN5THFOcmJIVFRlYkdxVGhrcGduOFFldy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMGUvMzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8x
LzMwZGhVQzJyWjh1Y1RSQU04ejFKa0VDeXFuUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGUv
MzU1NWZlLTEyY2QtNDAyYS1hODEwLTU1NTRkNmUxNjg2Zi8xL3F3bFN5THFOcmJI
VFRlYkdxVGhrcGduOFFldy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAJ+UHjANBgkqhkiG9w0BAQsFAAOC
AQEAE4Q3WOd9+N4UDLvfh3MG26jLBxCn5oRvQo8diArkgex2zaoBSjvyd5TvMehW
93lzKd+19pLmWov3fq2J4vxCk2QJj3T4GnyeJgvr6fCSEcMhc3EA/K3/GxKimGkd
aXiVr9Whi8fnRezHvd2WXQm4fiTNnnaShCJIwkiPv6ygk4qJYloIbGyLReeBhEti
b/gvAn0qQpYMHHXcWZK4npN60l5o/c/zkpOkuMU8ainsSz0VwzBGLAa/1A0cLcRx
ZvkNeAnlwiDphSlNtfi1/SfrwYqpFQqTRbFdkXjTelPmh4VFpFIqUfE39kLgt2sh
x463GNtPef+UczyPQguZxS3Rdg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:43:45 2023 by rpki-client on console-fra.rpki-client.org