Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/M_aa1LXcFgDBcMsYjrcXXJr0jcE.roa
File: M_aa1LXcFgDBcMsYjrcXXJr0jcE.roa (raw, json)
Hash identifier: yZThx318g+ume0hZFTYr9Hhquw95Uj+bZr1E1O6KiV4=
Subject key identifier: 33:F6:9A:D4:B5:DC:16:00:C1:70:CB:18:8E:B7:17:5C:9A:F4:8D:C1
Certificate issuer: /CN=070483d3d62f19c0835746dcb721c8832c3b7926
Certificate serial: 02FDC064
Authority key identifier: 07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/M_aa1LXcFgDBcMsYjrcXXJr0jcE.roa
Signing time: Wed 16 Feb 2022 07:12:32 +0000
ROA not before: Wed 16 Feb 2022 07:12:32 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 12679
IP address blocks: 45.85.204.0/22 maxlen: 22
45.134.92.0/22 maxlen: 22
45.90.48.0/22 maxlen: 22
45.131.12.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50184292 (0x2fdc064)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=070483d3d62f19c0835746dcb721c8832c3b7926
Validity
Not Before: Feb 16 07:12:32 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=33f69ad4b5dc1600c170cb188eb7175c9af48dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ee:bd:e5:63:6f:f6:17:5b:63:58:91:56:15:
1e:c4:bd:b6:fd:c2:2f:b8:9c:18:22:e3:e6:69:13:
00:e4:02:36:d8:f5:1f:c3:b7:b4:aa:1a:e0:18:69:
b1:b8:85:dd:e3:3e:d3:38:77:35:71:f5:91:91:33:
86:31:2e:9d:ee:b3:4b:38:9d:ca:98:42:21:6d:c7:
72:75:d6:ac:18:1d:d5:41:e0:55:aa:c9:f3:57:92:
6c:1e:28:81:a6:7b:4b:73:57:80:5a:35:f5:6b:5e:
c3:1e:23:94:fa:f3:67:f7:cc:2c:2b:b3:27:21:3d:
6d:9c:0b:52:56:d4:3e:c7:7a:c7:43:2e:ed:cb:d2:
f3:49:e2:55:c8:b1:ca:4d:fa:36:61:2c:98:3a:75:
5d:01:9a:64:95:e7:28:dd:67:ca:d0:2f:51:90:84:
be:0c:19:b0:4a:4b:e7:ab:aa:90:89:e5:0d:81:0d:
b4:00:aa:8f:13:b1:70:41:ad:14:36:42:45:be:ae:
3e:1a:9d:67:e6:5c:0c:8d:78:eb:63:b6:bf:a8:37:
ba:65:cf:5c:ea:51:d2:77:68:f6:93:48:66:9a:e6:
7b:11:63:52:b3:94:4d:9a:c7:60:47:b6:04:b8:19:
4e:ca:61:57:78:3d:55:92:7c:0e:e5:91:da:85:4e:
33:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:F6:9A:D4:B5:DC:16:00:C1:70:CB:18:8E:B7:17:5C:9A:F4:8D:C1
X509v3 Authority Key Identifier:
keyid:07:04:83:D3:D6:2F:19:C0:83:57:46:DC:B7:21:C8:83:2C:3B:79:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BwSD09YvGcCDV0bctyHIgyw7eSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/M_aa1LXcFgDBcMsYjrcXXJr0jcE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/6451c1-2bcd-4463-a700-d442c4f9e9bd/1/BwSD09YvGcCDV0bctyHIgyw7eSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.204.0/22
45.90.48.0/22
45.131.12.0/22
45.134.92.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:7b:a8:f0:99:0c:10:61:35:a3:62:65:1a:a7:07:b6:20:a4:
f3:18:30:fd:af:38:06:2e:6f:c0:19:76:dc:1c:49:94:c8:87:
e8:85:49:75:02:63:19:ef:1d:cc:9c:77:a9:cf:c3:50:f3:39:
8b:cc:61:2f:80:00:7b:6e:33:3d:b0:4f:f0:59:85:7c:35:93:
4f:23:26:50:2d:85:07:e1:92:b3:b3:ee:fd:a5:e5:5e:5b:0b:
e6:71:ae:7e:cb:45:31:6e:a5:57:08:7b:19:ed:7c:b1:8a:04:
57:ef:d5:aa:ad:fe:dc:9b:be:98:cd:70:3d:4c:41:05:42:03:
a2:b4:c9:44:b0:6e:11:f4:9f:9e:6c:99:f3:3a:39:d5:b6:b6:
59:35:bd:85:42:30:fb:03:81:c8:44:c7:df:b8:2b:13:2b:02:
ee:3b:63:41:4d:c1:50:1f:0c:52:48:85:ae:9e:5f:da:5c:70:
ef:5b:a0:05:56:3b:be:ec:26:1e:f4:a2:a7:7a:9d:41:f2:69:
5d:3a:5a:25:26:a4:5c:92:52:df:07:18:1d:a3:f4:a6:8a:2d:
14:5d:c0:88:a3:b6:25:3a:85:b1:5f:32:2c:8a:21:0c:e7:f1:
e8:05:a0:08:d8:5b:68:90:a5:d9:d0:00:c2:4c:83:01:f3:14:
1b:83:b2:20
-----BEGIN CERTIFICATE-----
MIIFATCCA+mgAwIBAgIEAv3AZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NzA0ODNkM2Q2MmYxOWMwODM1NzQ2ZGNiNzIxYzg4MzJjM2I3OTI2MB4XDTIyMDIx
NjA3MTIzMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzNmNjlhZDRiNWRj
MTYwMGMxNzBjYjE4OGViNzE3NWM5YWY0OGRjMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTuveVjb/YXW2NYkVYVHsS9tv3CL7icGCLj5mkTAOQCNtj1
H8O3tKoa4BhpsbiF3eM+0zh3NXH1kZEzhjEune6zSzidyphCIW3HcnXWrBgd1UHg
VarJ81eSbB4ogaZ7S3NXgFo19Wtewx4jlPrzZ/fMLCuzJyE9bZwLUlbUPsd6x0Mu
7cvS80niVcixyk36NmEsmDp1XQGaZJXnKN1nytAvUZCEvgwZsEpL56uqkInlDYEN
tACqjxOxcEGtFDZCRb6uPhqdZ+ZcDI1462O2v6g3umXPXOpR0ndo9pNIZprmexFj
UrOUTZrHYEe2BLgZTsphV3g9VZJ8DuWR2oVOM8UCAwEAAaOCAhswggIXMB0GA1Ud
DgQWBBQz9prUtdwWAMFwyxiOtxdcmvSNwTAfBgNVHSMEGDAWgBQHBIPT1i8ZwINX
Rty3IciDLDt5JjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0J3U0QwOVl2R2NDRFYwYmN0eUhJZ3l3N2VTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMTkvNjQ1MWMxLTJiY2QtNDQ2My1hNzAwLWQ0NDJjNGY5ZTliZC8x
L01fYWExTFhjRmdEQmNNc1lqcmNYWEpyMGpjRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTkv
NjQ1MWMxLTJiY2QtNDQ2My1hNzAwLWQ0NDJjNGY5ZTliZC8xL0J3U0QwOVl2R2ND
RFYwYmN0eUhJZ3l3N2VTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAx
BggrBgEFBQcBBwEB/wQiMCAwHgQCAAEwGAMEAi1VzAMEAi1aMAMEAi2DDAMEAi2G
XDANBgkqhkiG9w0BAQsFAAOCAQEAGnuo8JkMEGE1o2JlGqcHtiCk8xgw/a84Bi5v
wBl23BxJlMiH6IVJdQJjGe8dzJx3qc/DUPM5i8xhL4AAe24zPbBP8FmFfDWTTyMm
UC2FB+GSs7Pu/aXlXlsL5nGufstFMW6lVwh7Ge18sYoEV+/Vqq3+3Ju+mM1wPUxB
BUIDorTJRLBuEfSfnmyZ8zo51ba2WTW9hUIw+wOByETH37grEysC7jtjQU3BUB8M
UkiFrp5f2lxw71ugBVY7vuwmHvSip3qdQfJpXTpaJSakXJJS3wcYHaP0pootFF3A
iKO2JTqFsV8yLIohDOfx6AWgCNhbaJCl2dAAwkyDAfMUG4OyIA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:21:02 2024 by rpki-client on console-fra.rpki-client.org