Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/VnfXqyenxDW4k5gc_P6p-8llEHI.roa
File: VnfXqyenxDW4k5gc_P6p-8llEHI.roa (raw, json)
Hash identifier: 99/bqZP7fB88RM2H3Gu3AiLK15Sn4KaPMGBSAatYWg0=
Subject key identifier: 56:77:D7:AB:27:A7:C4:35:B8:93:98:1C:FC:FE:A9:FB:C9:65:10:72
Certificate issuer: /CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Certificate serial: 0AB5E832
Authority key identifier: 7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/VnfXqyenxDW4k5gc_P6p-8llEHI.roa
Signing time: Tue 29 Mar 2022 20:34:44 +0000
ROA not before: Tue 29 Mar 2022 20:34:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 45.11.172.0/23 maxlen: 23
45.11.174.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 179693618 (0xab5e832)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d5695786f8450d1041dc88ad892cbb570d5972b
Validity
Not Before: Mar 29 20:34:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5677d7ab27a7c435b893981cfcfea9fbc9651072
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:42:b4:3e:8e:22:5b:52:fb:f9:fb:c9:18:c9:
7d:ce:d2:77:0c:c4:05:e4:6c:9b:2b:c2:2a:1b:90:
bc:92:40:c9:24:9f:ed:ca:32:07:65:ca:ee:65:b3:
ed:2b:58:f6:62:b2:fa:28:4b:5e:8b:1e:a1:bb:53:
e9:fa:c6:7f:e1:85:69:32:92:0f:15:ba:f2:54:b9:
9f:68:4a:a9:9e:db:13:3d:ae:2e:7d:22:83:c8:56:
c2:1e:70:aa:a4:f7:8f:00:f0:7e:c6:d4:fd:04:99:
af:2b:5a:ab:99:ec:ec:95:d4:e5:70:30:f5:e1:4c:
d1:87:55:9c:ae:ea:e0:1b:0c:97:b0:06:26:49:85:
9d:4c:f5:57:fc:a9:8c:94:10:97:19:a0:5d:b7:55:
bd:72:4d:01:8b:3d:77:4f:03:9b:de:f2:73:b7:61:
13:88:9c:b4:b1:86:36:08:ac:3a:c1:76:58:f2:7f:
49:84:67:25:02:ee:6a:65:6a:d0:66:00:16:99:28:
66:d3:25:2a:88:84:a6:95:6e:7d:ff:b6:0e:ff:31:
2d:ee:49:6d:94:15:fe:a1:79:4b:94:6d:63:29:f1:
24:c4:a9:1a:51:9e:94:f1:22:ce:87:ab:9a:27:91:
9c:f7:5e:ee:fd:67:6c:a6:c2:f4:28:3b:ce:09:e3:
44:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:77:D7:AB:27:A7:C4:35:B8:93:98:1C:FC:FE:A9:FB:C9:65:10:72
X509v3 Authority Key Identifier:
keyid:7D:56:95:78:6F:84:50:D1:04:1D:C8:8A:D8:92:CB:B5:70:D5:97:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fVaVeG-EUNEEHciK2JLLtXDVlys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/VnfXqyenxDW4k5gc_P6p-8llEHI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/317aa7-e2ad-4a85-b3d2-63b33808a6a8/1/fVaVeG-EUNEEHciK2JLLtXDVlys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.172.0/22
Signature Algorithm: sha256WithRSAEncryption
5c:c0:02:ae:f9:9f:e8:f3:3a:13:ee:a2:53:e1:01:3a:83:2b:
d4:fb:2c:b1:67:2c:30:6f:69:fa:f5:ff:eb:76:7c:d7:5a:63:
ec:84:21:86:71:4e:8c:8a:f0:e2:12:b0:7a:67:9c:1f:c7:00:
0d:c0:9d:a2:30:bb:5d:45:40:7a:df:62:92:82:6f:83:3c:c3:
3b:85:ec:56:8d:5c:db:4f:fc:d2:ac:ee:c2:b7:6f:84:47:57:
f5:86:38:c6:88:04:31:84:5e:62:fb:be:6e:8a:da:0d:d8:7c:
30:c1:a9:42:8a:65:c0:23:f5:fb:1d:5a:3f:1f:6b:72:86:97:
4c:6c:94:68:23:8c:f5:ce:88:e2:05:51:6e:dd:6b:b6:41:d1:
68:f6:cd:f4:75:b1:fc:4e:e6:07:f9:0d:57:5a:02:40:af:3e:
51:71:a2:90:09:e2:a8:df:11:64:69:eb:07:a5:f1:8b:1a:af:
a6:f5:93:84:e0:d0:3a:7b:a5:29:52:4d:4b:ef:a0:d2:be:22:
0b:12:11:3e:d5:7a:1b:46:43:9d:b8:53:b1:a5:5d:aa:2c:52:
87:1a:3b:bc:15:65:ca:54:28:ba:7e:09:3e:93:03:f0:f0:20:
34:50:9d:3f:4d:68:8c:81:e6:48:e7:52:57:c2:cf:12:29:c5:
11:6a:6e:16
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECrXoMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
ZDU2OTU3ODZmODQ1MGQxMDQxZGM4OGFkODkyY2JiNTcwZDU5NzJiMB4XDTIyMDMy
OTIwMzQ0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTY3N2Q3YWIyN2E3
YzQzNWI4OTM5ODFjZmNmZWE5ZmJjOTY1MTA3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL1CtD6OIltS+/n7yRjJfc7SdwzEBeRsmyvCKhuQvJJAySSf
7coyB2XK7mWz7StY9mKy+ihLXoseobtT6frGf+GFaTKSDxW68lS5n2hKqZ7bEz2u
Ln0ig8hWwh5wqqT3jwDwfsbU/QSZrytaq5ns7JXU5XAw9eFM0YdVnK7q4BsMl7AG
JkmFnUz1V/ypjJQQlxmgXbdVvXJNAYs9d08Dm97yc7dhE4ictLGGNgisOsF2WPJ/
SYRnJQLuamVq0GYAFpkoZtMlKoiEppVuff+2Dv8xLe5JbZQV/qF5S5RtYynxJMSp
GlGelPEizoermieRnPde7v1nbKbC9Cg7zgnjRIkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRWd9erJ6fENbiTmBz8/qn7yWUQcjAfBgNVHSMEGDAWgBR9VpV4b4RQ0QQd
yIrYksu1cNWXKzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZWYVZlRy1FVU5FRUhjaUsySkxMdFhEVmx5cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTQvMzE3YWE3LWUyYWQtNGE4NS1iM2QyLTYzYjMzODA4YTZhOC8x
L1ZuZlhxeWVueERXNGs1Z2NfUDZwLThsbEVISS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTQv
MzE3YWE3LWUyYWQtNGE4NS1iM2QyLTYzYjMzODA4YTZhOC8xL2ZWYVZlRy1FVU5F
RUhjaUsySkxMdFhEVmx5cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi0LrDANBgkqhkiG9w0BAQsFAAOC
AQEAXMACrvmf6PM6E+6iU+EBOoMr1PsssWcsMG9p+vX/63Z811pj7IQhhnFOjIrw
4hKwemecH8cADcCdojC7XUVAet9ikoJvgzzDO4XsVo1c20/80qzuwrdvhEdX9YY4
xogEMYReYvu+boraDdh8MMGpQoplwCP1+x1aPx9rcoaXTGyUaCOM9c6I4gVRbt1r
tkHRaPbN9HWx/E7mB/kNV1oCQK8+UXGikAniqN8RZGnrB6XxixqvpvWThODQOnul
KVJNS++g0r4iCxIRPtV6G0ZDnbhTsaVdqixShxo7vBVlylQoun4JPpMD8PAgNFCd
P01ojIHmSOdSV8LPEinFEWpuFg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:54:42 2024 by rpki-client on console-ams.rpki-client.org