Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/7UvwPfMGU4huugQjxEpYBXccDy8.roa
File: 7UvwPfMGU4huugQjxEpYBXccDy8.roa (raw, json)
Hash identifier: Ee7kX21gGeYT7mBGrmmHsg+ycjcy7QkxV3ZV4AJG9XY=
Subject key identifier: ED:4B:F0:3D:F3:06:53:88:6E:BA:04:23:C4:4A:58:05:77:1C:0F:2F
Certificate issuer: /CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Certificate serial: 093DD047
Authority key identifier: B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/7UvwPfMGU4huugQjxEpYBXccDy8.roa
Signing time: Sat 01 Jan 2022 16:01:05 +0000
ROA not before: Sat 01 Jan 2022 16:01:05 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 213318
IP address blocks: 45.81.20.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 155045959 (0x93dd047)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1a7b0d8de8251d36d7c83faf6bc7efec73b5034
Validity
Not Before: Jan 1 16:01:05 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ed4bf03df30653886eba0423c44a5805771c0f2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e9:71:5c:68:d2:07:fe:3f:b9:6b:f8:69:9d:
db:07:b0:6c:54:4f:d0:1e:b4:e6:99:fe:74:a8:ff:
2b:b3:8d:36:8b:b7:7c:e4:4b:69:5a:78:83:5a:19:
89:4d:b3:e9:b3:2c:c5:ea:cf:1f:c5:20:9a:de:d3:
b0:3e:a3:bc:a9:db:c1:80:fa:dd:5d:14:70:9f:58:
8b:f4:e5:96:39:56:44:6e:bc:15:85:a5:aa:51:c3:
99:43:a7:2c:cb:c3:8b:22:87:84:29:ee:e4:f4:30:
fc:41:f5:26:1e:71:b4:b4:3f:1f:75:77:11:a8:3a:
06:d3:71:84:83:b2:db:8f:56:39:57:4c:10:ce:9d:
23:f2:79:da:59:0a:a2:43:f9:1a:a3:a4:33:2c:c6:
9d:52:fb:7b:22:99:73:6b:ad:8d:c6:0b:74:74:14:
95:b6:50:f1:b7:c0:63:cb:39:cc:72:5a:7c:8d:7c:
84:90:c8:f5:22:6b:12:9b:f6:b0:a7:a2:11:13:c0:
a3:e7:02:9e:33:8b:8c:ea:3e:0a:68:65:01:c9:d5:
35:25:5b:73:3f:13:12:b0:71:5f:e6:13:0d:00:cf:
f3:2c:29:98:6f:2f:f5:dd:f8:68:f4:31:ca:84:68:
72:83:22:ca:05:d7:83:98:44:c9:5f:90:fa:02:d0:
81:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:4B:F0:3D:F3:06:53:88:6E:BA:04:23:C4:4A:58:05:77:1C:0F:2F
X509v3 Authority Key Identifier:
keyid:B1:A7:B0:D8:DE:82:51:D3:6D:7C:83:FA:F6:BC:7E:FE:C7:3B:50:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/saew2N6CUdNtfIP69rx-_sc7UDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/7UvwPfMGU4huugQjxEpYBXccDy8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/f134c8-f814-4b71-957b-394acd21f39b/1/saew2N6CUdNtfIP69rx-_sc7UDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.20.0/24
Signature Algorithm: sha256WithRSAEncryption
41:97:9c:82:1a:80:de:3d:7a:15:4f:51:ab:12:6c:45:74:8e:
87:4f:c2:ba:84:b9:3c:d1:1b:f2:a2:f1:6e:be:d2:ac:39:53:
cd:bf:09:24:7e:d6:4c:1d:cf:4d:ca:8d:2a:54:03:3f:b8:3c:
cf:f5:78:43:a6:10:f9:32:a0:7d:2c:ee:28:5f:cc:cb:d1:85:
64:c2:97:92:af:b8:77:eb:03:4b:27:04:11:52:95:e6:4b:ab:
77:6c:35:e6:00:f9:ee:a2:ee:c0:bf:9b:a0:c4:e7:39:31:80:
0a:29:08:f8:e8:3f:89:c1:da:9e:d3:cd:34:8d:40:2a:b8:ba:
40:52:7b:93:cb:19:81:90:0f:c1:a5:81:4b:ca:97:7c:19:95:
5e:ab:ce:a5:2d:2e:56:39:14:d6:c5:e2:9d:66:05:02:11:3a:
af:d3:5c:e0:1a:2e:8d:31:24:b4:82:6f:95:96:61:a7:f9:92:
28:af:6a:1e:a4:8c:06:a2:04:dc:45:cc:f9:55:f3:fe:2e:8e:
c6:23:79:45:cf:79:bb:4e:63:33:20:96:fe:26:fb:5a:d8:c4:
5a:91:cc:4e:65:5b:b5:24:2e:1b:d6:22:f7:e8:0b:cf:1c:d8:
d7:d7:d0:b2:03:22:d1:a7:20:6a:45:f2:c7:33:7a:20:d1:73:
e7:8f:3d:90
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECT3QRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MWE3YjBkOGRlODI1MWQzNmQ3YzgzZmFmNmJjN2VmZWM3M2I1MDM0MB4XDTIyMDEw
MTE2MDEwNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWQ0YmYwM2RmMzA2
NTM4ODZlYmEwNDIzYzQ0YTU4MDU3NzFjMGYyZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALDpcVxo0gf+P7lr+Gmd2wewbFRP0B605pn+dKj/K7ONNou3
fORLaVp4g1oZiU2z6bMsxerPH8Ugmt7TsD6jvKnbwYD63V0UcJ9Yi/TlljlWRG68
FYWlqlHDmUOnLMvDiyKHhCnu5PQw/EH1Jh5xtLQ/H3V3Eag6BtNxhIOy249WOVdM
EM6dI/J52lkKokP5GqOkMyzGnVL7eyKZc2utjcYLdHQUlbZQ8bfAY8s5zHJafI18
hJDI9SJrEpv2sKeiERPAo+cCnjOLjOo+CmhlAcnVNSVbcz8TErBxX+YTDQDP8ywp
mG8v9d34aPQxyoRocoMiygXXg5hEyV+Q+gLQgfsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTtS/A98wZTiG66BCPESlgFdxwPLzAfBgNVHSMEGDAWgBSxp7DY3oJR0218
g/r2vH7+xztQNDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NhZXcyTjZDVWROdGZJUDY5cngtX3NjN1VEUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTcvZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8x
LzdVdndQZk1HVTRodXVnUWp4RXBZQlhjY0R5OC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcv
ZjEzNGM4LWY4MTQtNGI3MS05NTdiLTM5NGFjZDIxZjM5Yi8xL3NhZXcyTjZDVWRO
dGZJUDY5cngtX3NjN1VEUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1RFDANBgkqhkiG9w0BAQsFAAOC
AQEAQZecghqA3j16FU9RqxJsRXSOh0/CuoS5PNEb8qLxbr7SrDlTzb8JJH7WTB3P
TcqNKlQDP7g8z/V4Q6YQ+TKgfSzuKF/My9GFZMKXkq+4d+sDSycEEVKV5kurd2w1
5gD57qLuwL+boMTnOTGACikI+Og/icHantPNNI1AKri6QFJ7k8sZgZAPwaWBS8qX
fBmVXqvOpS0uVjkU1sXinWYFAhE6r9Nc4BoujTEktIJvlZZhp/mSKK9qHqSMBqIE
3EXM+VXz/i6OxiN5Rc95u05jMyCW/ib7WtjEWpHMTmVbtSQuG9Yi9+gLzxzY19fQ
sgMi0acgakXyxzN6INFz5489kA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:44:38 2023 by rpki-client on console-fra.rpki-client.org