Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/k9Bq3lGQtcA4Hw44i3sQmlwW46M.roa
File: k9Bq3lGQtcA4Hw44i3sQmlwW46M.roa (raw, json)
Hash identifier: FQDLYpboWUSlck2FwVbtT1Y8SfRA392ssUZdNq15A8I=
Subject key identifier: 93:D0:6A:DE:51:90:B5:C0:38:1F:0E:38:8B:7B:10:9A:5C:16:E3:A3
Certificate issuer: /CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Certificate serial: 0183C6036C01B892F1539C191156392B1E05
Authority key identifier: 74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/k9Bq3lGQtcA4Hw44i3sQmlwW46M.roa
Signing time: Tue 11 Oct 2022 07:47:36 +0000
ROA not before: Tue 11 Oct 2022 07:47:36 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202548
IP address blocks: 45.130.45.0/24 maxlen: 24
2a0f:a040::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:c6:03:6c:01:b8:92:f1:53:9c:19:11:56:39:2b:1e:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7488ac3ce7e91e240caff219cbe38fcf023bf2b6
Validity
Not Before: Oct 11 07:47:36 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=93d06ade5190b5c0381f0e388b7b109a5c16e3a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:4f:ac:1e:b5:c5:11:5a:92:97:68:54:01:d7:
e0:46:ea:0f:41:13:33:c3:d6:06:f0:44:17:08:e3:
06:82:fa:72:67:d7:52:b6:4b:55:46:05:5f:6c:f3:
32:8d:88:de:f3:ac:c2:b8:3e:7a:54:06:0b:81:94:
91:d9:22:73:fe:42:43:ab:29:a8:dd:92:12:e1:60:
15:9e:64:61:53:49:ec:e9:5c:b7:16:c1:ac:39:45:
21:2d:dc:fe:40:ce:d0:f4:ae:2b:b3:0c:c4:f9:b8:
8a:07:e7:e6:7a:4b:75:93:52:1b:00:15:96:0c:39:
6a:b9:aa:ac:b2:ff:79:da:65:00:2c:45:d8:54:9b:
f5:df:16:14:16:75:c0:a1:fa:54:41:fc:15:3c:c8:
1e:36:7c:ed:3e:fe:38:59:ac:81:40:38:35:5e:32:
2e:cb:be:83:2b:ed:f3:9a:d7:57:c0:6d:1c:00:8d:
81:3b:49:01:44:8d:72:5e:1e:16:64:7d:18:01:ff:
b3:53:e5:36:46:78:31:6c:91:19:38:ad:19:eb:25:
bf:6d:55:d6:d0:15:65:4c:bc:42:1e:51:b1:fc:91:
e4:40:57:26:5d:fa:a6:56:35:8a:78:56:0d:a7:5b:
97:76:f9:09:db:1d:bd:52:48:9d:68:ab:7b:db:92:
bd:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:D0:6A:DE:51:90:B5:C0:38:1F:0E:38:8B:7B:10:9A:5C:16:E3:A3
X509v3 Authority Key Identifier:
keyid:74:88:AC:3C:E7:E9:1E:24:0C:AF:F2:19:CB:E3:8F:CF:02:3B:F2:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dIisPOfpHiQMr_IZy-OPzwI78rY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/k9Bq3lGQtcA4Hw44i3sQmlwW46M.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/e2e3d6-f226-4a7e-840d-d5763fecd605/1/dIisPOfpHiQMr_IZy-OPzwI78rY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.45.0/24
IPv6:
2a0f:a040::/29
Signature Algorithm: sha256WithRSAEncryption
a2:2c:7c:8b:3b:f3:ed:c2:f6:c5:82:0a:dc:a7:7d:1b:a3:34:
69:98:d1:ae:5a:52:8f:d1:71:f7:6a:6b:32:35:8f:a3:62:8d:
77:34:0f:76:8c:36:f0:d1:cb:c5:49:29:db:54:e9:f1:54:42:
06:b8:8c:cb:a0:ca:9c:8a:a3:8c:09:29:42:9d:4e:6a:d6:1d:
dc:87:56:30:55:53:b5:4c:cd:ba:30:c0:79:e4:bd:25:72:f0:
26:42:a5:45:68:b5:9e:c1:47:64:3a:b3:6b:cb:5d:ad:5b:05:
7e:21:a4:da:79:97:d5:cf:cb:09:8d:e4:da:8e:62:42:27:b3:
df:05:27:50:ff:50:ff:1c:bf:49:66:b7:99:49:2a:50:8f:05:
73:ac:0c:12:82:37:09:6b:4e:02:16:9e:c9:81:46:ac:7a:07:
75:f6:8b:45:4f:a3:71:89:e7:68:e5:16:51:78:dc:1d:8b:4d:
e5:5b:9a:5d:0e:7b:63:81:29:e5:b3:36:f7:01:30:46:e4:e5:
89:a6:d1:e4:3c:56:de:68:e8:78:64:7d:29:8a:1e:77:1e:d2:
04:f8:b8:a2:cc:77:bb:e2:37:f2:ce:72:4e:62:43:11:cc:ef:
5f:d5:05:5f:29:c0:16:63:fc:57:de:e7:8f:d0:9e:6a:29:c7:
42:44:c8:97
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgISAYPGA2wBuJLxU5wZEVY5Kx4FMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc0ODhhYzNjZTdlOTFlMjQwY2FmZjIxOWNiZTM4ZmNmMDIz
YmYyYjYwHhcNMjIxMDExMDc0NzM2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5M2QwNmFkZTUxOTBiNWMwMzgxZjBlMzg4YjdiMTA5YTVjMTZlM2EzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1U+sHrXFEVqSl2hUAdfgRuoPQRMz
w9YG8EQXCOMGgvpyZ9dStktVRgVfbPMyjYje86zCuD56VAYLgZSR2SJz/kJDqymo
3ZIS4WAVnmRhU0ns6Vy3FsGsOUUhLdz+QM7Q9K4rswzE+biKB+fmekt1k1IbABWW
DDlquaqssv952mUALEXYVJv13xYUFnXAofpUQfwVPMgeNnztPv44WayBQDg1XjIu
y76DK+3zmtdXwG0cAI2BO0kBRI1yXh4WZH0YAf+zU+U2RngxbJEZOK0Z6yW/bVXW
0BVlTLxCHlGx/JHkQFcmXfqmVjWKeFYNp1uXdvkJ2x29UkidaKt725K9rwIDAQAB
o4ICGDCCAhQwHQYDVR0OBBYEFJPQat5RkLXAOB8OOIt7EJpcFuOjMB8GA1UdIwQY
MBaAFHSIrDzn6R4kDK/yGcvjj88CO/K2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS9lMmUzZDYtZjIyNi00YTdlLTg0MGQt
ZDU3NjNmZWNkNjA1LzEvazlCcTNsR1F0Y0E0SHc0NGkzc1FtbHdXNDZNLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS9lMmUzZDYtZjIyNi00YTdlLTg0MGQtZDU3NjNmZWNkNjA1
LzEvZElpc1BPZnBIaVFNcl9JWnktT1B6d0k3OHJZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQALYItMA0E
AgACMAcDBQMqD6BAMA0GCSqGSIb3DQEBCwUAA4IBAQCiLHyLO/PtwvbFggrcp30b
ozRpmNGuWlKP0XH3amsyNY+jYo13NA92jDbw0cvFSSnbVOnxVEIGuIzLoMqciqOM
CSlCnU5q1h3ch1YwVVO1TM26MMB55L0lcvAmQqVFaLWewUdkOrNry12tWwV+IaTa
eZfVz8sJjeTajmJCJ7PfBSdQ/1D/HL9JZreZSSpQjwVzrAwSgjcJa04CFp7JgUas
egd19otFT6Nxiedo5RZReNwdi03lW5pdDntjgSnlszb3ATBG5OWJptHkPFbeaOh4
ZH0pih53HtIE+LiizHe74jfyznJOYkMRzO9f1QVfKcAWY/xX3ueP0J5qKcdCRMiX
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:22:45 2024 by rpki-client on console-fra.rpki-client.org