Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/cEDtduISrv9bTqFkO-z2g2p_YOc.roa
File: cEDtduISrv9bTqFkO-z2g2p_YOc.roa (raw, json)
Hash identifier: Kx9iQwV/5u+/Uj1Aokm4p/ODWG7SupAAJUwrMNn8IV0=
Subject key identifier: 70:40:ED:76:E2:12:AE:FF:5B:4E:A1:64:3B:EC:F6:83:6A:7F:60:E7
Certificate issuer: /CN=a4aa9bcd06ea6c565dd907ca04e5077d68c0664f
Certificate serial: 077F084A
Authority key identifier: A4:AA:9B:CD:06:EA:6C:56:5D:D9:07:CA:04:E5:07:7D:68:C0:66:4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/cEDtduISrv9bTqFkO-z2g2p_YOc.roa
Signing time: Sat 01 Jan 2022 10:56:37 +0000
ROA not before: Sat 01 Jan 2022 10:56:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208246
IP address blocks: 45.150.88.0/22 maxlen: 22
45.150.88.0/23 maxlen: 23
45.150.88.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125765706 (0x77f084a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4aa9bcd06ea6c565dd907ca04e5077d68c0664f
Validity
Not Before: Jan 1 10:56:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7040ed76e212aeff5b4ea1643becf6836a7f60e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:17:e5:e8:4c:f3:a6:5b:5b:fb:67:f6:24:fa:
f7:2a:e9:a8:40:78:64:0c:f2:8c:8e:8e:92:28:7f:
ab:71:b4:00:de:31:40:20:a1:f4:c1:b7:1d:7e:37:
ec:b1:4e:95:5a:25:8d:ab:a4:cb:f3:34:58:6c:c1:
70:ba:6d:73:db:24:2b:11:a7:a9:23:6a:bd:f2:66:
34:c3:60:98:8f:40:37:82:63:87:91:c0:cb:20:50:
c4:b1:47:94:23:57:06:ad:02:1a:d2:20:83:eb:ed:
8a:6e:a7:24:14:21:a9:29:39:da:59:39:96:3b:4b:
74:95:9a:9b:b1:81:88:75:f5:42:6e:5d:e5:36:ce:
a3:b5:9a:06:de:a1:89:24:d1:94:8d:f1:98:77:a7:
9f:26:9b:29:8e:b5:68:b1:c2:2f:80:e1:e7:58:00:
e6:d4:49:84:4a:58:9c:25:49:e5:3a:d5:43:9d:73:
c6:df:ce:4c:c6:bb:48:eb:62:68:40:f7:f3:df:42:
f4:c2:a4:38:03:71:45:a9:ed:0e:73:52:b1:ed:bc:
1a:27:f2:31:68:9b:6d:c3:13:1c:b8:9b:d8:a3:6c:
3b:95:c4:0a:d6:a7:95:28:aa:81:36:b0:c8:93:b9:
4d:a1:b0:5b:78:6f:df:90:ef:98:15:61:3d:03:df:
3a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:40:ED:76:E2:12:AE:FF:5B:4E:A1:64:3B:EC:F6:83:6A:7F:60:E7
X509v3 Authority Key Identifier:
keyid:A4:AA:9B:CD:06:EA:6C:56:5D:D9:07:CA:04:E5:07:7D:68:C0:66:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKqbzQbqbFZd2QfKBOUHfWjAZk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/cEDtduISrv9bTqFkO-z2g2p_YOc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/052f4c-be3c-4d19-aa04-0ab8dd9ebab1/1/pKqbzQbqbFZd2QfKBOUHfWjAZk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.88.0/22
Signature Algorithm: sha256WithRSAEncryption
89:a7:d3:6e:82:7c:94:72:ec:c5:6f:7f:a4:d0:36:4e:45:6c:
3f:6b:a6:fd:19:fd:75:43:0e:45:ad:18:70:3d:dc:86:f1:81:
88:c5:7e:fd:3c:1a:68:3a:48:c6:19:88:bf:9b:6d:c8:dc:26:
0f:fa:55:0f:f9:ba:55:38:2f:cf:a9:18:76:cb:7b:10:f7:14:
6a:bd:36:24:32:f3:91:1f:db:e4:9a:5d:61:7c:ef:17:d0:88:
b7:f5:f6:59:56:6f:75:e1:eb:01:cc:1c:de:13:37:dc:c8:a3:
41:aa:7a:20:bb:02:e0:bf:26:be:c4:c0:13:22:92:e5:6d:de:
d8:3a:24:40:fb:1f:34:d1:e5:3d:a7:bf:10:77:55:bd:5b:e4:
db:80:e9:ea:aa:a2:08:0d:bf:8b:c8:dd:db:ee:85:7e:eb:36:
9a:26:d1:dd:14:f0:ac:a4:fe:cc:8c:4f:d4:fa:76:1b:9e:c8:
45:37:6e:74:b9:4d:6d:d5:bc:b4:2c:7b:56:ea:77:ac:6a:14:
ef:21:c1:e4:a0:ed:b4:d1:4d:fb:b2:e5:7d:db:d7:23:a4:07:
53:88:f5:28:b5:a4:6a:74:0c:43:01:a1:bc:3f:af:96:50:9a:
af:a4:96:6f:d8:cd:4b:49:4e:4f:3b:2d:39:2c:b0:86:ba:27:
14:ee:3d:18
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB38ISjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NGFhOWJjZDA2ZWE2YzU2NWRkOTA3Y2EwNGU1MDc3ZDY4YzA2NjRmMB4XDTIyMDEw
MTEwNTYzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzA0MGVkNzZlMjEy
YWVmZjViNGVhMTY0M2JlY2Y2ODM2YTdmNjBlNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAOMX5ehM86ZbW/tn9iT69yrpqEB4ZAzyjI6Okih/q3G0AN4x
QCCh9MG3HX437LFOlVoljauky/M0WGzBcLptc9skKxGnqSNqvfJmNMNgmI9AN4Jj
h5HAyyBQxLFHlCNXBq0CGtIgg+vtim6nJBQhqSk52lk5ljtLdJWam7GBiHX1Qm5d
5TbOo7WaBt6hiSTRlI3xmHennyabKY61aLHCL4Dh51gA5tRJhEpYnCVJ5TrVQ51z
xt/OTMa7SOtiaED3899C9MKkOANxRantDnNSse28GifyMWibbcMTHLib2KNsO5XE
CtanlSiqgTawyJO5TaGwW3hv35DvmBVhPQPfOtsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRwQO124hKu/1tOoWQ77PaDan9g5zAfBgNVHSMEGDAWgBSkqpvNBupsVl3Z
B8oE5Qd9aMBmTzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BLcWJ6UWJxYkZaZDJRZktCT1VIZldqQVprOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTUvMDUyZjRjLWJlM2MtNGQxOS1hYTA0LTBhYjhkZDllYmFiMS8x
L2NFRHRkdUlTcnY5YlRxRmtPLXoyZzJwX1lPYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTUv
MDUyZjRjLWJlM2MtNGQxOS1hYTA0LTBhYjhkZDllYmFiMS8xL3BLcWJ6UWJxYkZa
ZDJRZktCT1VIZldqQVprOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2WWDANBgkqhkiG9w0BAQsFAAOC
AQEAiafTboJ8lHLsxW9/pNA2TkVsP2um/Rn9dUMORa0YcD3chvGBiMV+/TwaaDpI
xhmIv5ttyNwmD/pVD/m6VTgvz6kYdst7EPcUar02JDLzkR/b5JpdYXzvF9CIt/X2
WVZvdeHrAcwc3hM33MijQap6ILsC4L8mvsTAEyKS5W3e2DokQPsfNNHlPae/EHdV
vVvk24Dp6qqiCA2/i8jd2+6Ffus2mibR3RTwrKT+zIxP1Pp2G57IRTdudLlNbdW8
tCx7Vup3rGoU7yHB5KDttNFN+7LlfdvXI6QHU4j1KLWkanQMQwGhvD+vllCar6SW
b9jNS0lOTzstOSywhronFO49GA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:20:18 2024 by rpki-client on console-fra.rpki-client.org