Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/C0IwWReZsu3TmC4CylsB6K4y1cM.roa
File: C0IwWReZsu3TmC4CylsB6K4y1cM.roa (raw, json)
Hash identifier: JRupJO7ExDV+BYuraesfwn+Wpa1j7sjL55ozkfLWtDk=
Subject key identifier: 0B:42:30:59:17:99:B2:ED:D3:98:2E:02:CA:5B:01:E8:AE:32:D5:C3
Certificate issuer: /CN=4def5b8ffbaf7d56af5d39f2f94c946d72f770f3
Certificate serial: 031788AB
Authority key identifier: 4D:EF:5B:8F:FB:AF:7D:56:AF:5D:39:F2:F9:4C:94:6D:72:F7:70:F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Te9bj_uvfVavXTny-UyUbXL3cPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/C0IwWReZsu3TmC4CylsB6K4y1cM.roa
Signing time: Sat 01 Jan 2022 10:58:40 +0000
ROA not before: Sat 01 Jan 2022 10:58:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39305
IP address blocks: 45.93.144.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 51873963 (0x31788ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4def5b8ffbaf7d56af5d39f2f94c946d72f770f3
Validity
Not Before: Jan 1 10:58:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=0b4230591799b2edd3982e02ca5b01e8ae32d5c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:ea:ee:58:47:eb:65:a7:d1:a8:f7:63:18:fc:
38:cd:31:17:c9:98:6e:ec:f9:53:f4:45:fc:e5:8a:
18:df:52:a5:3c:69:42:f4:c1:6f:e9:11:24:5f:86:
e6:4b:91:87:94:fc:89:d8:93:6b:f8:6e:cf:74:d2:
e9:77:a2:05:26:c1:f3:0b:3e:85:b9:22:40:bb:ea:
16:a4:a7:ac:39:8f:04:6f:55:19:b7:71:a0:2c:6c:
23:a9:a3:76:fb:bb:55:e5:33:72:fc:d9:4f:af:17:
be:a1:24:6c:8f:54:2d:43:c6:a3:40:fc:7f:c3:87:
8a:ac:d2:b5:1e:21:f0:80:34:d5:82:38:ff:55:e4:
fe:86:79:9b:ec:c3:c8:27:f3:d4:87:4d:91:0e:e3:
a2:c3:28:98:d2:6b:da:60:a2:f8:11:45:ab:92:2c:
42:e2:d7:68:eb:64:02:a9:18:0c:23:b1:39:79:03:
24:a9:2d:2a:06:f4:69:0f:b1:a4:0e:75:2b:8e:7e:
37:1c:31:57:14:ee:08:4c:0a:79:cd:ba:17:01:40:
e5:b1:38:6f:43:01:0d:de:31:3e:fc:65:ad:dc:bd:
c0:45:a6:66:82:44:14:1b:43:2d:a2:cd:47:38:ab:
2f:f7:da:de:56:15:2f:26:ac:e3:f4:66:74:0a:e4:
c2:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:42:30:59:17:99:B2:ED:D3:98:2E:02:CA:5B:01:E8:AE:32:D5:C3
X509v3 Authority Key Identifier:
keyid:4D:EF:5B:8F:FB:AF:7D:56:AF:5D:39:F2:F9:4C:94:6D:72:F7:70:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Te9bj_uvfVavXTny-UyUbXL3cPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/C0IwWReZsu3TmC4CylsB6K4y1cM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/40427e-74fa-4a66-837d-a523bacdc2be/1/Te9bj_uvfVavXTny-UyUbXL3cPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.144.0/22
Signature Algorithm: sha256WithRSAEncryption
66:fb:da:e0:0d:50:fc:d9:53:c7:bf:bd:86:6d:19:fd:b9:8e:
61:ae:44:8d:6d:47:e8:4f:43:96:b0:de:46:81:c2:3a:ed:ac:
73:c6:e4:d5:c5:9b:ff:96:ac:37:58:e1:0c:bf:5d:21:3c:ce:
ef:3a:40:b9:37:83:db:19:41:74:1e:27:81:2f:2f:54:62:33:
10:fd:03:9a:92:e8:34:70:d8:83:44:fd:92:93:c7:da:a6:e8:
f8:d5:bc:be:30:2f:b4:a7:5b:35:00:88:3d:09:3e:97:5d:f8:
c6:f3:09:9f:64:5f:e7:d9:e8:b9:3d:c7:cf:24:6c:2b:54:b5:
d7:b6:fa:a9:88:ee:3b:92:23:f4:e9:5d:6a:26:9d:c8:09:bd:
06:01:c0:3b:36:b9:7c:fd:13:ca:75:ed:61:6d:4c:91:9c:3f:
8f:59:e7:88:d5:76:af:b7:fe:64:c3:23:e7:c2:13:f5:d8:87:
30:c2:2b:fb:cf:e8:33:0c:c9:50:39:03:c8:1a:1a:5c:bc:1b:
cb:fa:d2:7d:3c:de:9b:14:f7:81:98:bb:53:e8:3e:a9:39:fb:
a6:64:70:f5:f7:c3:09:14:2d:ad:6e:3e:ba:0e:01:28:3e:0a:
4c:c3:2b:6f:f1:7d:67:92:72:a9:8f:e5:b7:6d:8e:cf:04:a4:
29:cb:a3:7b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAxeIqzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
ZGVmNWI4ZmZiYWY3ZDU2YWY1ZDM5ZjJmOTRjOTQ2ZDcyZjc3MGYzMB4XDTIyMDEw
MTEwNTg0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMGI0MjMwNTkxNzk5
YjJlZGQzOTgyZTAyY2E1YjAxZThhZTMyZDVjMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANTq7lhH62Wn0aj3Yxj8OM0xF8mYbuz5U/RF/OWKGN9SpTxp
QvTBb+kRJF+G5kuRh5T8idiTa/huz3TS6XeiBSbB8ws+hbkiQLvqFqSnrDmPBG9V
GbdxoCxsI6mjdvu7VeUzcvzZT68XvqEkbI9ULUPGo0D8f8OHiqzStR4h8IA01YI4
/1Xk/oZ5m+zDyCfz1IdNkQ7josMomNJr2mCi+BFFq5IsQuLXaOtkAqkYDCOxOXkD
JKktKgb0aQ+xpA51K45+NxwxVxTuCEwKec26FwFA5bE4b0MBDd4xPvxlrdy9wEWm
ZoJEFBtDLaLNRzirL/fa3lYVLyas4/RmdArkwoMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQLQjBZF5my7dOYLgLKWwHorjLVwzAfBgNVHSMEGDAWgBRN71uP+699Vq9d
OfL5TJRtcvdw8zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1RlOWJqX3V2ZlZhdlhUbnktVXlVYlhMM2NQTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjIvNDA0MjdlLTc0ZmEtNGE2Ni04MzdkLWE1MjNiYWNkYzJiZS8x
L0MwSXdXUmVac3UzVG1DNEN5bHNCNks0eTFjTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjIv
NDA0MjdlLTc0ZmEtNGE2Ni04MzdkLWE1MjNiYWNkYzJiZS8xL1RlOWJqX3V2ZlZh
dlhUbnktVXlVYlhMM2NQTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1dkDANBgkqhkiG9w0BAQsFAAOC
AQEAZvva4A1Q/NlTx7+9hm0Z/bmOYa5EjW1H6E9DlrDeRoHCOu2sc8bk1cWb/5as
N1jhDL9dITzO7zpAuTeD2xlBdB4ngS8vVGIzEP0DmpLoNHDYg0T9kpPH2qbo+NW8
vjAvtKdbNQCIPQk+l134xvMJn2Rf59nouT3HzyRsK1S117b6qYjuO5Ij9Oldaiad
yAm9BgHAOza5fP0TynXtYW1MkZw/j1nniNV2r7f+ZMMj58IT9diHMMIr+8/oMwzJ
UDkDyBoaXLwby/rSfTzemxT3gZi7U+g+qTn7pmRw9ffDCRQtrW4+ug4BKD4KTMMr
b/F9Z5JyqY/lt22OzwSkKcujew==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:12:55 2025 by rpki-client