Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XXxfDlOS0tDfsB9mGf9soAX4noI.roa
File: XXxfDlOS0tDfsB9mGf9soAX4noI.roa (raw, json)
Hash identifier: abYOIYkutRohEyPtsGXVPqUN6X+sx8Hrw4g3EBWLpcA=
Subject key identifier: 5D:7C:5F:0E:53:92:D2:D0:DF:B0:1F:66:19:FF:6C:A0:05:F8:9E:82
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 0A9A8755
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XXxfDlOS0tDfsB9mGf9soAX4noI.roa
Signing time: Wed 04 May 2022 13:19:06 +0000
ROA not before: Wed 04 May 2022 13:19:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44486
IP address blocks: 45.145.227.0/24 maxlen: 24
5.180.252.0/23 maxlen: 23
5.180.254.0/23 maxlen: 23
185.132.55.0/24 maxlen: 24
185.132.54.0/24 maxlen: 24
45.137.71.0/24 maxlen: 24
5.253.245.0/24 maxlen: 24
5.253.244.0/24 maxlen: 24
45.91.251.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 177899349 (0xa9a8755)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: May 4 13:19:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5d7c5f0e5392d2d0dfb01f6619ff6ca005f89e82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:00:97:43:bd:38:e8:11:51:9a:b1:9a:bf:68:
0e:ba:c6:b3:55:9e:30:fb:db:e8:5a:ad:46:dd:03:
99:d7:1b:52:be:7d:f2:7c:bb:43:ff:6f:73:c1:49:
c2:db:d9:e3:8d:f0:3c:cd:3c:30:6a:e0:de:d0:17:
9e:e7:13:66:f1:66:19:12:3f:f0:83:dd:56:99:cc:
dd:2a:cf:ce:75:67:60:69:dc:3f:0d:ef:bf:26:92:
07:19:55:ff:2d:aa:83:8a:37:f1:17:33:5e:1e:02:
38:71:86:06:e4:24:e6:57:2b:4b:40:51:71:e2:78:
90:ef:c5:83:24:80:07:15:64:3a:d0:03:fc:5e:17:
a1:25:72:a1:53:e0:96:be:71:a2:80:b0:59:f2:65:
c6:9e:ed:5b:41:15:5d:37:b6:67:87:4f:c4:d3:c2:
70:82:21:88:3f:c5:ea:7d:89:30:e1:b9:d0:1c:6a:
09:c0:d6:ef:b5:b9:b2:18:74:89:b8:4c:c0:e9:54:
5a:cb:f5:3c:c0:ec:52:86:8a:18:33:cb:c2:d5:f6:
03:5c:19:89:62:34:6c:15:0a:6b:f0:45:08:91:bc:
f0:95:25:bf:5b:1a:a0:71:3b:03:8e:91:c1:fa:9b:
16:e1:d1:5d:f4:6f:30:b7:57:08:99:86:2b:7c:d1:
8c:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:7C:5F:0E:53:92:D2:D0:DF:B0:1F:66:19:FF:6C:A0:05:F8:9E:82
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/XXxfDlOS0tDfsB9mGf9soAX4noI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.180.252.0/22
5.253.244.0/23
45.91.251.0/24
45.137.71.0/24
45.145.227.0/24
185.132.54.0/23
Signature Algorithm: sha256WithRSAEncryption
41:4b:2c:30:59:2d:d6:54:57:34:e8:44:21:67:2b:7e:a9:22:
e2:f6:83:a3:9e:19:fc:46:f6:39:6a:6d:17:f5:b1:07:27:5f:
cb:d6:de:c4:11:98:16:04:c5:0c:d7:7e:34:70:f8:50:72:58:
e0:60:2d:ce:b0:93:1d:3f:95:26:e1:dd:0a:6a:a3:53:86:bc:
3c:3f:e0:8d:34:d2:dd:5f:b9:59:03:59:38:70:d8:29:c0:3f:
e3:0e:4b:f7:f2:15:b6:0f:70:95:ca:cc:23:2b:03:de:d4:fd:
a8:48:0e:b5:61:0e:00:83:3d:ac:6c:3e:9a:18:0f:c1:70:f1:
70:5a:ee:4c:a0:cd:56:96:ea:7c:4d:e9:e9:a9:42:68:f8:41:
ef:f4:c1:22:6d:e9:f1:fb:2b:45:41:3a:ce:75:1c:aa:a7:ef:
29:84:94:0f:a3:30:ce:10:c0:57:d2:87:b5:0c:55:c7:6f:94:
d7:57:05:4a:d7:0c:46:fc:a0:dd:8b:39:b6:df:22:bb:d8:58:
81:85:1b:ab:5c:68:e3:38:d0:1e:b1:fc:b9:20:56:78:47:3a:
0d:89:c7:6c:71:e1:75:4c:e5:f5:8d:7a:24:a7:24:5e:d9:b3:
97:7f:15:88:fe:a2:ba:43:f6:fe:b2:cd:6a:b3:c6:28:92:b2:
27:7b:3e:96
-----BEGIN CERTIFICATE-----
MIIFDTCCA/WgAwIBAgIECpqHVTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YjA0MTViZmM0M2IzOGU5Y2ZkMWExMjk5NTIwMmU4NzYzNzUyZmRlMB4XDTIyMDUw
NDEzMTkwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWQ3YzVmMGU1Mzky
ZDJkMGRmYjAxZjY2MTlmZjZjYTAwNWY4OWU4MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK8Al0O9OOgRUZqxmr9oDrrGs1WeMPvb6FqtRt0DmdcbUr59
8ny7Q/9vc8FJwtvZ443wPM08MGrg3tAXnucTZvFmGRI/8IPdVpnM3SrPznVnYGnc
Pw3vvyaSBxlV/y2qg4o38RczXh4COHGGBuQk5lcrS0BRceJ4kO/FgySABxVkOtAD
/F4XoSVyoVPglr5xooCwWfJlxp7tW0EVXTe2Z4dPxNPCcIIhiD/F6n2JMOG50Bxq
CcDW77W5shh0ibhMwOlUWsv1PMDsUoaKGDPLwtX2A1wZiWI0bBUKa/BFCJG88JUl
v1saoHE7A46RwfqbFuHRXfRvMLdXCJmGK3zRjJ8CAwEAAaOCAicwggIjMB0GA1Ud
DgQWBBRdfF8OU5LS0N+wH2YZ/2ygBfiegjAfBgNVHSMEGDAWgBQbBBW/xDs46c/R
oSmVIC6HY3Uv3jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0d3UVZ2OFE3T09uUDBhRXBsU0F1aDJOMUw5NC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTYvMDk0MDgxLThhZWItNDJiZi1hNTc4LWEzY2EwZGI4MzI1NC8x
L1hYeGZEbE9TMHREZnNCOW1HZjlzb0FYNG5vSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTYv
MDk0MDgxLThhZWItNDJiZi1hNTc4LWEzY2EwZGI4MzI1NC8xL0d3UVZ2OFE3T09u
UDBhRXBsU0F1aDJOMUw5NC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA9
BggrBgEFBQcBBwEB/wQuMCwwKgQCAAEwJAMEAgW0/AMEAQX99AMEAC1b+wMEAC2J
RwMEAC2R4wMEAbmENjANBgkqhkiG9w0BAQsFAAOCAQEAQUssMFkt1lRXNOhEIWcr
fqki4vaDo54Z/Eb2OWptF/WxBydfy9bexBGYFgTFDNd+NHD4UHJY4GAtzrCTHT+V
JuHdCmqjU4a8PD/gjTTS3V+5WQNZOHDYKcA/4w5L9/IVtg9wlcrMIysD3tT9qEgO
tWEOAIM9rGw+mhgPwXDxcFruTKDNVpbqfE3p6alCaPhB7/TBIm3p8fsrRUE6znUc
qqfvKYSUD6MwzhDAV9KHtQxVx2+U11cFStcMRvyg3Ys5tt8iu9hYgYUbq1xo4zjQ
HrH8uSBWeEc6DYnHbHHhdUzl9Y16JKckXtmzl38ViP6iukP2/rLNarPGKJKyJ3s+
lg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org