Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/Y6_PxhOS3faBSYaaQcLIgj1MY4c.roa
File: Y6_PxhOS3faBSYaaQcLIgj1MY4c.roa (raw, json)
Hash identifier: B9MvSGmeQxz3gKymEdFhCMButjam/05c+oFD1yE20LM=
Subject key identifier: 63:AF:CF:C6:13:92:DD:F6:81:49:86:9A:41:C2:C8:82:3D:4C:63:87
Certificate issuer: /CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Certificate serial: 0185116A8BC44DFCE2E3BE083ACB25099CF9
Authority key identifier: D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/Y6_PxhOS3faBSYaaQcLIgj1MY4c.roa
Signing time: Wed 14 Dec 2022 16:14:33 +0000
ROA not before: Wed 14 Dec 2022 16:14:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 45.81.253.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:11:6a:8b:c4:4d:fc:e2:e3:be:08:3a:cb:25:09:9c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5e6733fa239c5fb0c438c82f7c230f55d478cb1
Validity
Not Before: Dec 14 16:14:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=63afcfc61392ddf68149869a41c2c8823d4c6387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:3e:d2:57:78:d9:99:77:09:0a:18:d3:2d:59:
75:5d:20:9f:bd:9a:9a:a6:70:e6:3c:dd:88:b0:8a:
37:9e:d3:77:cc:c2:79:8a:75:13:0c:f9:fb:2c:59:
c2:3f:e9:bb:81:e2:2f:aa:d3:29:5f:02:38:cf:6e:
d1:d3:f8:ef:4d:5f:5c:41:aa:64:7a:07:20:66:15:
72:64:f5:c1:57:3a:db:4f:e0:3c:ae:26:c7:56:16:
6b:c2:68:b0:34:39:dd:84:67:10:fb:0c:99:72:4d:
e7:8b:db:52:74:64:f9:14:a9:11:dd:ba:a6:d5:34:
42:16:0e:3c:06:dd:4e:70:0b:65:0d:1a:b2:ab:a2:
f3:9e:7c:89:e5:03:a8:84:6f:51:17:4b:1b:7b:95:
a3:4e:b2:81:e1:79:44:5c:1e:90:f0:5c:2c:4d:42:
1e:db:ae:0e:0b:a2:37:8a:3d:e5:2e:bc:9e:1e:0e:
81:93:c7:e7:ab:73:7d:cc:23:ca:2f:d7:83:5b:2b:
75:0f:32:e7:bd:fb:24:e3:08:f3:90:a0:97:ad:83:
b4:3d:74:8d:08:eb:8e:ee:18:77:13:40:c8:7c:2f:
8e:27:59:19:d1:22:e5:b4:ec:b4:01:8d:33:ae:d8:
cf:30:fd:ee:fe:c6:1d:59:8d:79:56:ab:85:c6:fb:
84:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:AF:CF:C6:13:92:DD:F6:81:49:86:9A:41:C2:C8:82:3D:4C:63:87
X509v3 Authority Key Identifier:
keyid:D5:E6:73:3F:A2:39:C5:FB:0C:43:8C:82:F7:C2:30:F5:5D:47:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/Y6_PxhOS3faBSYaaQcLIgj1MY4c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/25c95e-7f27-4d69-856d-a38b6795fb24/1/1eZzP6I5xfsMQ4yC98Iw9V1HjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.81.253.0/24
Signature Algorithm: sha256WithRSAEncryption
93:8f:cf:38:ab:6a:89:37:bc:34:bc:0b:04:ee:be:1a:90:4d:
84:9d:57:b7:5b:fb:eb:dd:bb:47:4b:f7:04:8a:6f:12:74:47:
66:f5:bb:8b:c3:d8:a1:1b:88:af:55:26:55:5f:1a:ff:fe:2e:
0c:c1:df:b5:55:d8:22:f4:e5:1d:5c:ee:c0:91:48:d1:0a:6d:
09:a9:12:69:cd:79:04:a1:64:ab:3b:6e:3d:38:b7:c6:b8:d9:
47:4f:de:1a:4e:4e:f7:5e:bc:23:a3:da:79:1c:f1:f7:4b:2a:
5e:df:7a:92:34:2c:29:81:6d:d9:1e:f2:ad:f3:26:63:c1:60:
f3:07:eb:96:5e:ac:a1:af:fc:19:68:06:64:4a:06:5c:5f:01:
d1:7d:21:f1:ae:3d:4f:6c:e5:c1:09:54:ba:44:8a:20:1a:96:
4d:57:e3:65:ec:16:1e:02:3d:a1:f3:18:ad:9c:f1:7e:71:8e:
46:59:56:c0:d3:09:51:af:2e:57:04:29:56:e4:85:1b:f9:92:
49:a9:a7:90:95:24:4f:6c:31:27:e0:68:b6:12:12:79:8b:7c:
c2:af:df:93:63:d0:8b:7e:dc:4b:4b:fc:e3:b7:02:5a:ee:34:
53:cc:9b:86:16:2b:14:ec:61:3d:29:d9:b5:ce:1f:f1:91:73:
69:3c:fb:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYURaovETfzi474IOsslCZz5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1ZTY3MzNmYTIzOWM1ZmIwYzQzOGM4MmY3YzIzMGY1NWQ0
NzhjYjEwHhcNMjIxMjE0MTYxNDMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2M2FmY2ZjNjEzOTJkZGY2ODE0OTg2OWE0MWMyYzg4MjNkNGM2Mzg3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtj7SV3jZmXcJChjTLVl1XSCfvZqa
pnDmPN2IsIo3ntN3zMJ5inUTDPn7LFnCP+m7geIvqtMpXwI4z27R0/jvTV9cQapk
egcgZhVyZPXBVzrbT+A8ribHVhZrwmiwNDndhGcQ+wyZck3ni9tSdGT5FKkR3bqm
1TRCFg48Bt1OcAtlDRqyq6LznnyJ5QOohG9RF0sbe5WjTrKB4XlEXB6Q8FwsTUIe
264OC6I3ij3lLryeHg6Bk8fnq3N9zCPKL9eDWyt1DzLnvfsk4wjzkKCXrYO0PXSN
COuO7hh3E0DIfC+OJ1kZ0SLltOy0AY0zrtjPMP3u/sYdWY15VquFxvuEjwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGOvz8YTkt32gUmGmkHCyII9TGOHMB8GA1UdIwQY
MBaAFNXmcz+iOcX7DEOMgvfCMPVdR4yxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWVaelA2STV4ZnNNUTR5Qzk4SXc5VjFIakxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS8yNWM5NWUtN2YyNy00ZDY5LTg1NmQt
YTM4YjY3OTVmYjI0LzEvWTZfUHhoT1MzZmFCU1lhYVFjTElnajFNWTRjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS8yNWM5NWUtN2YyNy00ZDY5LTg1NmQtYTM4YjY3OTVmYjI0
LzEvMWVaelA2STV4ZnNNUTR5Qzk4SXc5VjFIakxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVH9MA0G
CSqGSIb3DQEBCwUAA4IBAQCTj884q2qJN7w0vAsE7r4akE2EnVe3W/vr3btHS/cE
im8SdEdm9buLw9ihG4ivVSZVXxr//i4Mwd+1Vdgi9OUdXO7AkUjRCm0JqRJpzXkE
oWSrO249OLfGuNlHT94aTk73Xrwjo9p5HPH3Sype33qSNCwpgW3ZHvKt8yZjwWDz
B+uWXqyhr/wZaAZkSgZcXwHRfSHxrj1PbOXBCVS6RIogGpZNV+Nl7BYeAj2h8xit
nPF+cY5GWVbA0wlRry5XBClW5IUb+ZJJqaeQlSRPbDEn4Gi2EhJ5i3zCr9+TY9CL
ftxLS/zjtwJa7jRTzJuGFisU7GE9Kdm1zh/xkXNpPPuQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:56:35 2024 by rpki-client on console-ams.rpki-client.org