Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8cWc1uJkB9or3ANG3zjEuHIYSnc.roa
File: 8cWc1uJkB9or3ANG3zjEuHIYSnc.roa (raw, json)
Hash identifier: IX3o6q/lYosF8zw2W1GVG4Nt2633KWZBnBjnkpfRV/E=
Subject key identifier: F1:C5:9C:D6:E2:64:07:DA:2B:DC:03:46:DF:38:C4:B8:72:18:4A:77
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01839D5CCFBB92EE48E08F519F67BA219FE9
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8cWc1uJkB9or3ANG3zjEuHIYSnc.roa
Signing time: Mon 03 Oct 2022 10:20:48 +0000
ROA not before: Mon 03 Oct 2022 10:20:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49519
IP address blocks: 45.133.73.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:9d:5c:cf:bb:92:ee:48:e0:8f:51:9f:67:ba:21:9f:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Oct 3 10:20:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f1c59cd6e26407da2bdc0346df38c4b872184a77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:c5:15:aa:ba:22:c9:71:79:0f:dc:f9:24:97:
8a:7c:b3:f2:81:6c:a7:99:b6:dd:c5:c2:59:9c:99:
58:b3:18:8d:b0:69:df:a3:a1:13:91:6c:82:a3:89:
27:eb:cd:94:5e:7c:97:60:15:07:bc:f0:cf:eb:31:
39:a6:63:36:6b:24:92:20:d2:b8:42:3c:34:86:0a:
60:ef:76:30:a0:0d:d1:e4:be:77:79:ed:2c:a1:3f:
71:40:34:cb:e2:65:ad:93:8b:52:e1:e9:96:38:0b:
41:bd:35:28:4a:99:c0:8e:d2:b5:af:12:ee:6d:a8:
ab:a4:00:da:2b:7e:f6:f1:d2:07:9c:b4:33:5e:ea:
ee:c3:62:10:17:63:06:7f:6b:4a:56:5e:f7:93:cd:
31:c6:a5:ab:2d:01:40:b1:52:46:f8:3e:d4:36:c9:
db:bd:5c:0c:2a:e3:6a:b1:6a:e0:21:09:6a:95:37:
e5:8b:1a:a7:07:e8:ee:15:0e:6d:9d:cd:16:52:35:
74:04:19:6f:f8:f8:f9:b9:fb:49:3e:91:69:0d:8e:
6c:30:e3:cf:45:f8:fe:64:b4:9a:f7:d8:6e:5a:79:
81:47:c0:81:9f:4a:a5:ef:8d:74:36:62:7d:7e:6a:
ec:94:c9:f5:b6:e7:57:b9:29:14:bf:27:1f:98:a7:
d6:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:C5:9C:D6:E2:64:07:DA:2B:DC:03:46:DF:38:C4:B8:72:18:4A:77
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/8cWc1uJkB9or3ANG3zjEuHIYSnc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.133.73.0/24
Signature Algorithm: sha256WithRSAEncryption
54:bb:74:64:a1:65:a9:33:95:46:f5:1e:fb:07:3e:60:1d:a3:
01:6b:f4:b3:ee:3e:30:cc:c4:19:c2:d7:36:50:c7:12:cb:9b:
af:0f:6b:9c:cb:1e:58:7a:b4:ba:26:26:f8:1d:bf:d4:f6:ae:
8a:11:cb:88:a5:dd:3e:b5:c8:89:55:5c:29:36:e2:af:fe:b0:
2c:9b:73:ed:6b:8a:16:e1:f4:2e:8c:6b:c9:08:2d:dd:21:c8:
7a:55:80:00:13:68:e2:b4:7d:f3:b1:5a:d0:5c:f1:40:6a:a8:
27:3f:77:83:f5:75:d9:3f:45:b1:ce:5c:13:e1:5c:98:ea:0e:
60:c6:dd:a1:81:a9:dc:14:56:88:e4:56:b2:50:7b:b5:cc:45:
50:c9:50:d0:e9:2c:4b:41:f2:f2:ea:5f:9d:d0:2c:2c:73:0a:
7b:9e:90:52:31:23:f9:eb:32:38:eb:d1:26:47:eb:59:7c:f3:
6c:55:03:6d:1a:11:d3:32:2d:5c:20:04:69:af:c4:b0:0e:da:
34:c7:84:f3:98:f5:dc:85:a2:03:3f:18:7a:85:be:55:df:ca:
fa:e9:6a:36:06:7a:eb:09:ec:71:f1:3a:53:15:1c:f8:82:8e:
35:8d:ce:c1:49:c6:22:66:0e:9f:fe:de:2d:3b:90:af:f4:cd:
f8:b9:dc:ac
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYOdXM+7ku5I4I9Rn2e6IZ/pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjIxMDAzMTAyMDQ4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmMWM1OWNkNmUyNjQwN2RhMmJkYzAzNDZkZjM4YzRiODcyMTg0YTc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjcUVqroiyXF5D9z5JJeKfLPygWyn
mbbdxcJZnJlYsxiNsGnfo6ETkWyCo4kn682UXnyXYBUHvPDP6zE5pmM2aySSINK4
Qjw0hgpg73YwoA3R5L53ee0soT9xQDTL4mWtk4tS4emWOAtBvTUoSpnAjtK1rxLu
bairpADaK3728dIHnLQzXuruw2IQF2MGf2tKVl73k80xxqWrLQFAsVJG+D7UNsnb
vVwMKuNqsWrgIQlqlTflixqnB+juFQ5tnc0WUjV0BBlv+Pj5uftJPpFpDY5sMOPP
Rfj+ZLSa99huWnmBR8CBn0ql7410NmJ9fmrslMn1tudXuSkUvycfmKfWgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFPHFnNbiZAfaK9wDRt84xLhyGEp3MB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEvOGNXYzF1SmtCOW9yM0FORzN6akV1SElZU25jLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYVJMA0G
CSqGSIb3DQEBCwUAA4IBAQBUu3RkoWWpM5VG9R77Bz5gHaMBa/Sz7j4wzMQZwtc2
UMcSy5uvD2ucyx5YerS6Jib4Hb/U9q6KEcuIpd0+tciJVVwpNuKv/rAsm3Pta4oW
4fQujGvJCC3dIch6VYAAE2jitH3zsVrQXPFAaqgnP3eD9XXZP0WxzlwT4VyY6g5g
xt2hgancFFaI5FayUHu1zEVQyVDQ6SxLQfLy6l+d0Cwscwp7npBSMSP56zI469Em
R+tZfPNsVQNtGhHTMi1cIARpr8SwDto0x4TzmPXchaIDPxh6hb5V38r66Wo2Bnrr
Cexx8TpTFRz4go41jc7BScYiZg6f/t4tO5Cv9M34udys
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org