Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/i8i28iOrcXCWlWP63Or35ecBRKk.roa
File: i8i28iOrcXCWlWP63Or35ecBRKk.roa (raw, json)
Hash identifier: F2KeSv64ai3m9rNwBFPw2X1gZ230mbZWSSZvrVBtUaY=
Subject key identifier: 8B:C8:B6:F2:23:AB:71:70:96:95:63:FA:DC:EA:F7:E5:E7:01:44:A9
Certificate issuer: /CN=c68c65e699b576ab113a79be8828948f1e6cc260
Certificate serial: 07E32770
Authority key identifier: C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/i8i28iOrcXCWlWP63Or35ecBRKk.roa
Signing time: Sat 01 Jan 2022 15:02:35 +0000
ROA not before: Sat 01 Jan 2022 15:02:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212864
IP address blocks: 45.140.208.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132327280 (0x7e32770)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c68c65e699b576ab113a79be8828948f1e6cc260
Validity
Not Before: Jan 1 15:02:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8bc8b6f223ab7170969563fadceaf7e5e70144a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:89:c4:8c:7c:46:a6:ff:7e:fa:aa:7d:21:79:
f5:e9:14:d3:91:7b:7f:51:de:a4:6d:d6:71:07:bc:
3c:db:7f:28:1a:aa:25:64:93:37:23:9c:fa:cd:fc:
5d:2f:77:b3:0c:2e:c9:99:35:74:fc:ba:31:b4:96:
70:61:f8:17:15:49:79:a5:43:a6:87:28:09:20:07:
96:f8:02:d8:e1:71:36:e2:58:36:d9:25:e8:a0:e2:
a4:7a:e0:e2:91:77:9f:23:40:08:ce:33:cf:5b:44:
fc:df:95:44:59:be:0e:dc:4a:46:53:ca:25:03:50:
d4:e6:dc:0e:77:63:75:27:6e:99:2e:86:d2:65:b3:
3d:e7:9e:57:12:4b:ea:ad:67:7b:ad:d5:de:fe:c1:
9f:d5:a8:67:37:5f:56:29:5e:2a:b0:37:a5:87:99:
e1:20:a0:3a:d7:58:19:dd:fc:21:81:a0:a9:44:5b:
d1:35:2c:9b:48:45:59:81:9d:6a:de:c5:08:0a:70:
ab:b3:b1:36:a1:8a:ba:01:76:25:3a:21:d8:05:37:
db:22:ea:11:05:88:b9:0a:e1:60:a6:24:15:bc:98:
6c:39:c2:69:60:f9:da:28:75:73:e7:38:ef:81:95:
b2:86:5f:ab:8e:2d:8a:de:92:e1:5c:a9:85:84:76:
55:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:C8:B6:F2:23:AB:71:70:96:95:63:FA:DC:EA:F7:E5:E7:01:44:A9
X509v3 Authority Key Identifier:
keyid:C6:8C:65:E6:99:B5:76:AB:11:3A:79:BE:88:28:94:8F:1E:6C:C2:60
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xoxl5pm1dqsROnm-iCiUjx5swmA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/i8i28iOrcXCWlWP63Or35ecBRKk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/340c73-79ee-4926-8e4f-607d4f37f59f/1/xoxl5pm1dqsROnm-iCiUjx5swmA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.208.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:26:f6:74:51:0e:3b:dd:c7:16:61:77:3d:05:37:d9:a1:45:
86:12:9f:9c:75:7d:29:94:93:dd:88:c3:ba:e3:dc:b0:28:10:
88:7e:76:e7:be:1a:26:77:ee:86:05:95:b7:a7:ab:7b:5a:48:
11:26:fc:8f:34:63:68:52:f3:b5:3d:ce:19:96:80:89:b9:7e:
36:5a:38:3a:2f:6a:8a:49:10:8d:4c:29:47:ab:e0:0a:9c:78:
05:c5:36:2d:b0:1c:42:b8:49:49:72:07:5e:5e:7f:a8:bc:cf:
5d:7f:3a:5c:f6:26:6b:05:77:cd:59:30:cc:29:41:09:c5:ab:
8d:41:8f:f5:4a:15:e1:1f:bd:26:c4:59:3f:2b:3b:78:05:38:
4e:4f:4e:3a:c6:24:d9:53:4e:e7:d3:4c:b3:b6:57:16:07:8c:
5c:e7:c6:0b:7b:36:f5:32:e5:3a:a8:03:f1:97:0c:68:92:bd:
02:6e:2c:f6:06:65:47:6f:b8:1f:83:a0:bb:a3:d9:04:31:ed:
41:20:5b:5e:35:50:bc:fd:3f:a5:ff:1f:14:21:6d:37:9e:b4:
e2:0a:f2:70:26:2e:bd:7a:03:fa:31:54:bd:15:28:b6:ef:ef:
12:da:bd:73:af:43:83:6f:bd:f6:0e:8c:12:7b:4b:97:8a:6d:
81:8a:04:dd
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+MncDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NjhjNjVlNjk5YjU3NmFiMTEzYTc5YmU4ODI4OTQ4ZjFlNmNjMjYwMB4XDTIyMDEw
MTE1MDIzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGJjOGI2ZjIyM2Fi
NzE3MDk2OTU2M2ZhZGNlYWY3ZTVlNzAxNDRhOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMKJxIx8Rqb/fvqqfSF59ekU05F7f1HepG3WcQe8PNt/KBqq
JWSTNyOc+s38XS93swwuyZk1dPy6MbSWcGH4FxVJeaVDpocoCSAHlvgC2OFxNuJY
Ntkl6KDipHrg4pF3nyNACM4zz1tE/N+VRFm+DtxKRlPKJQNQ1ObcDndjdSdumS6G
0mWzPeeeVxJL6q1ne63V3v7Bn9WoZzdfVileKrA3pYeZ4SCgOtdYGd38IYGgqURb
0TUsm0hFWYGdat7FCApwq7OxNqGKugF2JToh2AU32yLqEQWIuQrhYKYkFbyYbDnC
aWD52ih1c+c474GVsoZfq44tit6S4VyphYR2VU0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSLyLbyI6txcJaVY/rc6vfl5wFEqTAfBgNVHSMEGDAWgBTGjGXmmbV2qxE6
eb6IKJSPHmzCYDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hveGw1cG0xZHFzUk9ubS1pQ2lVang1c3dtQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvMzQwYzczLTc5ZWUtNDkyNi04ZTRmLTYwN2Q0ZjM3ZjU5Zi8x
L2k4aTI4aU9yY1hDV2xXUDYzT3IzNWVjQlJLay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
MzQwYzczLTc5ZWUtNDkyNi04ZTRmLTYwN2Q0ZjM3ZjU5Zi8xL3hveGw1cG0xZHFz
Uk9ubS1pQ2lVang1c3dtQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2M0DANBgkqhkiG9w0BAQsFAAOC
AQEAXib2dFEOO93HFmF3PQU32aFFhhKfnHV9KZST3YjDuuPcsCgQiH52574aJnfu
hgWVt6ere1pIESb8jzRjaFLztT3OGZaAibl+Nlo4Oi9qikkQjUwpR6vgCpx4BcU2
LbAcQrhJSXIHXl5/qLzPXX86XPYmawV3zVkwzClBCcWrjUGP9UoV4R+9JsRZPys7
eAU4Tk9OOsYk2VNO59NMs7ZXFgeMXOfGC3s29TLlOqgD8ZcMaJK9Am4s9gZlR2+4
H4Ogu6PZBDHtQSBbXjVQvP0/pf8fFCFtN5604grycCYuvXoD+jFUvRUotu/vEtq9
c69Dg2+99g6MEntLl4ptgYoE3Q==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:00 2024 by rpki-client on console-fra.rpki-client.org