Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kUstHVzAeuyPIpQyHUc33wua7kg.roa
File: kUstHVzAeuyPIpQyHUc33wua7kg.roa (raw, json)
Hash identifier: P52Jaeym0oUz9BMsrV1zuAhzNbEYknVbY4wauzEPROc=
Subject key identifier: 91:4B:2D:1D:5C:C0:7A:EC:8F:22:94:32:1D:47:37:DF:0B:9A:EE:48
Certificate issuer: /CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Certificate serial: 01847FA70B6EA8F48745B51B579D051E082F
Authority key identifier: 1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kUstHVzAeuyPIpQyHUc33wua7kg.roa
Signing time: Wed 16 Nov 2022 08:56:04 +0000
ROA not before: Wed 16 Nov 2022 08:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203363
IP address blocks: 45.67.84.0/24 maxlen: 24
45.67.85.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:a7:0b:6e:a8:f4:87:45:b5:1b:57:9d:05:1e:08:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b0415bfc43b38e9cfd1a12995202e8763752fde
Validity
Not Before: Nov 16 08:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=914b2d1d5cc07aec8f2294321d4737df0b9aee48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:8f:5b:22:2e:cd:de:0a:3b:12:a5:29:59:34:
91:da:93:ac:14:1b:9d:b2:99:0b:a3:12:6d:e3:cd:
31:8e:8b:47:58:75:1d:cf:09:03:c5:dc:3e:cc:4b:
c0:61:3a:89:36:7f:1c:38:ff:75:27:0b:4d:97:1a:
8d:69:d7:0c:3e:1c:48:47:a7:1a:22:fb:9d:70:c3:
35:af:81:d5:de:b1:7d:51:9b:89:22:29:68:a8:39:
89:f6:ae:f3:8d:9a:36:60:09:76:8f:ce:af:5c:ee:
16:2d:7b:64:3b:1b:b5:d3:ca:85:ff:80:ce:e4:6f:
f1:0b:3d:22:07:62:4d:5c:46:cb:9a:72:c8:ca:da:
2e:b0:ef:4e:19:2f:62:d1:98:90:4a:1e:c6:93:9a:
d9:d6:ec:56:d6:72:ec:44:e3:b5:20:65:c4:fe:d6:
67:af:12:11:c4:b7:e6:e0:e9:fe:d9:fe:62:bf:a6:
b3:b7:69:45:8f:68:b9:b0:5a:5d:10:40:39:54:a4:
06:98:2e:84:cc:89:11:46:e9:8b:99:1c:4e:2c:83:
5b:23:a1:2b:2a:8f:4e:55:05:08:2d:d9:8e:e0:4a:
07:48:d6:3c:1b:6b:95:98:93:38:e1:ff:ba:da:47:
81:02:b9:1b:b0:36:04:d0:9b:9f:ae:08:2f:63:4d:
96:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:4B:2D:1D:5C:C0:7A:EC:8F:22:94:32:1D:47:37:DF:0B:9A:EE:48
X509v3 Authority Key Identifier:
keyid:1B:04:15:BF:C4:3B:38:E9:CF:D1:A1:29:95:20:2E:87:63:75:2F:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GwQVv8Q7OOnP0aEplSAuh2N1L94.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/kUstHVzAeuyPIpQyHUc33wua7kg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/16/094081-8aeb-42bf-a578-a3ca0db83254/1/GwQVv8Q7OOnP0aEplSAuh2N1L94.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.84.0/23
Signature Algorithm: sha256WithRSAEncryption
75:a0:dd:79:d0:37:1e:1e:85:61:17:86:5d:cc:94:c5:b3:cb:
5e:81:4c:9c:5c:a7:5e:7d:de:23:d7:6c:1f:f9:ed:b8:78:0c:
07:50:0c:39:84:b3:53:0b:50:e4:a9:79:46:de:22:0c:57:d9:
78:14:6e:da:e3:a0:ec:1b:3b:96:74:cc:c1:bc:bc:24:5a:65:
c2:67:22:50:7e:b3:eb:a0:c1:8c:58:70:76:e2:f2:80:5f:b5:
4e:20:6c:e8:f4:52:26:34:82:db:a7:99:bc:ce:93:38:b5:f9:
a7:7f:73:a5:bf:e7:83:be:90:94:d2:6a:ce:77:75:5e:66:76:
cc:db:33:5b:53:6d:59:85:5f:47:dc:4d:09:14:78:af:8d:0d:
11:b7:69:cc:41:8d:56:7f:45:b5:16:55:b2:53:23:5a:a2:10:
5d:fb:eb:8f:94:c2:d3:e3:6e:8e:3a:e4:07:3e:7e:14:5d:47:
48:1b:1a:85:45:c8:cb:06:f0:69:4e:3e:13:e8:ee:45:9a:c5:
12:4b:60:46:30:30:d4:c1:5e:e2:71:6d:71:aa:e8:72:08:82:
1f:3f:00:63:e9:da:b8:7f:59:2c:af:17:35:c3:c2:ba:c9:79:
38:1d:a9:b1:b2:41:f4:61:e1:64:39:99:3d:1a:dc:10:61:9f:
4e:88:be:af
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR/pwtuqPSHRbUbV50FHggvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDQxNWJmYzQzYjM4ZTljZmQxYTEyOTk1MjAyZTg3NjM3
NTJmZGUwHhcNMjIxMTE2MDg1NjA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5MTRiMmQxZDVjYzA3YWVjOGYyMjk0MzIxZDQ3MzdkZjBiOWFlZTQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkI9bIi7N3go7EqUpWTSR2pOsFBud
spkLoxJt480xjotHWHUdzwkDxdw+zEvAYTqJNn8cOP91JwtNlxqNadcMPhxIR6ca
IvudcMM1r4HV3rF9UZuJIiloqDmJ9q7zjZo2YAl2j86vXO4WLXtkOxu108qF/4DO
5G/xCz0iB2JNXEbLmnLIytousO9OGS9i0ZiQSh7Gk5rZ1uxW1nLsROO1IGXE/tZn
rxIRxLfm4On+2f5iv6azt2lFj2i5sFpdEEA5VKQGmC6EzIkRRumLmRxOLINbI6Er
Ko9OVQUILdmO4EoHSNY8G2uVmJM44f+62keBArkbsDYE0JufrggvY02WdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJFLLR1cwHrsjyKUMh1HN98Lmu5IMB8GA1UdIwQY
MBaAFBsEFb/EOzjpz9GhKZUgLodjdS/eMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1Nzgt
YTNjYTBkYjgzMjU0LzEva1VzdEhWekFldXlQSXBReUhVYzMzd3VhN2tnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNi8wOTQwODEtOGFlYi00MmJmLWE1NzgtYTNjYTBkYjgzMjU0
LzEvR3dRVnY4UTdPT25QMGFFcGxTQXVoMk4xTDk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLUNUMA0G
CSqGSIb3DQEBCwUAA4IBAQB1oN150DceHoVhF4ZdzJTFs8tegUycXKdefd4j12wf
+e24eAwHUAw5hLNTC1DkqXlG3iIMV9l4FG7a46DsGzuWdMzBvLwkWmXCZyJQfrPr
oMGMWHB24vKAX7VOIGzo9FImNILbp5m8zpM4tfmnf3Olv+eDvpCU0mrOd3VeZnbM
2zNbU21ZhV9H3E0JFHivjQ0Rt2nMQY1Wf0W1FlWyUyNaohBd++uPlMLT426OOuQH
Pn4UXUdIGxqFRcjLBvBpTj4T6O5FmsUSS2BGMDDUwV7icW1xquhyCIIfPwBj6dq4
f1ksrxc1w8K6yXk4HamxskH0YeFkOZk9GtwQYZ9OiL6v
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:55:13 2024 by rpki-client on console-ams.rpki-client.org