Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/wACmOyaDz-Lq921fJlyfymmxvk4.roa
File: wACmOyaDz-Lq921fJlyfymmxvk4.roa (raw, json)
Hash identifier: yARPucTGEulpVZaVIWgllrwiVQfCqEBhAgfCb1YQF6I=
Subject key identifier: C0:00:A6:3B:26:83:CF:E2:EA:F7:6D:5F:26:5C:9F:CA:69:B1:BE:4E
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 043E17B5
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/wACmOyaDz-Lq921fJlyfymmxvk4.roa
Signing time: Thu 12 May 2022 19:35:02 +0000
ROA not before: Thu 12 May 2022 19:35:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 58061
IP address blocks: 45.153.125.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71178165 (0x43e17b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: May 12 19:35:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c000a63b2683cfe2eaf76d5f265c9fca69b1be4e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:59:84:50:89:7e:d9:4c:e1:88:a3:42:8c:6f:
a8:cf:51:69:2b:f7:d1:2d:fa:59:f7:fb:7f:7c:3b:
b2:56:7b:1f:2b:db:84:09:67:88:65:e0:4a:4c:d1:
3d:c8:00:ae:59:03:5c:18:6a:a8:3f:8e:e6:fd:e0:
f4:ce:d2:4b:ba:3e:55:85:2e:10:91:44:83:f2:e6:
9b:10:5e:57:00:37:42:bc:5f:6b:80:5f:dc:6d:6c:
5d:23:df:5b:86:e0:da:a1:06:3b:1c:0c:ca:1c:72:
ec:e4:ff:90:89:28:27:e8:83:65:bb:23:07:70:ac:
69:9e:46:99:3b:ec:b9:c2:66:20:8d:92:ed:64:42:
40:ee:ba:b6:9f:72:ef:3e:a9:92:18:cc:8d:4d:9f:
d4:19:e2:2e:e5:c8:17:8b:09:29:1d:67:60:4d:97:
f0:e7:67:04:b9:47:12:8d:31:2e:0e:67:75:b0:f1:
2b:15:db:7f:4e:6b:a6:9c:db:f2:a4:69:68:7a:17:
52:d5:bf:81:79:8c:27:c0:51:4c:4c:04:c7:74:c0:
e0:47:52:34:0c:e5:13:71:d6:e5:0c:be:46:08:fa:
06:f6:d7:88:4a:95:c8:c2:8d:db:9a:88:b2:5c:f1:
86:02:ae:55:0d:bd:73:71:43:48:ae:4e:c5:a1:5e:
65:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:00:A6:3B:26:83:CF:E2:EA:F7:6D:5F:26:5C:9F:CA:69:B1:BE:4E
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/wACmOyaDz-Lq921fJlyfymmxvk4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.125.0/24
Signature Algorithm: sha256WithRSAEncryption
11:8a:fa:e0:00:05:f7:b0:ec:41:ea:61:d7:f6:f0:5b:60:ff:
a2:d1:ae:9f:4d:9e:8c:72:20:a4:1a:ab:9f:57:3c:ee:87:7b:
19:2d:56:5e:31:76:9a:8e:a9:8d:79:eb:eb:8c:f8:7c:93:2b:
20:b2:9a:4f:5b:7e:39:db:4e:a1:81:ed:a3:88:a8:e3:45:7e:
a1:61:45:cd:c5:2f:85:be:9e:a9:5d:f0:36:7e:f3:14:0f:bf:
93:16:c4:00:ad:c9:ab:12:cd:38:ce:09:6a:15:2e:87:73:69:
4c:c0:d1:dc:d3:10:47:bc:c5:4d:00:b0:1e:b1:c7:f6:42:7f:
d9:26:c9:a5:77:ca:bb:a7:6f:65:63:92:9c:50:1c:cc:57:2c:
5a:e3:a5:a9:df:de:70:23:af:c1:eb:54:f4:c3:8c:1f:19:cb:
2a:3b:2d:4a:8f:c5:e8:0a:c0:cf:38:e5:c9:bd:a1:4f:52:00:
20:84:56:b1:ec:7e:54:27:88:f5:da:30:c7:9c:a9:7b:eb:30:
6f:f1:f1:3d:2c:b0:cc:32:c0:01:ea:4b:7e:32:f4:b5:1d:b1:
a2:2f:bc:81:43:69:2c:65:9e:ce:0e:58:d4:25:7c:e6:c6:6b:
da:5f:2e:87:22:6b:6c:7a:10:a4:e1:2c:ef:dc:03:ba:78:42:
cd:04:0d:98
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBD4XtTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NDdiNDg3ODQ4ZmZmNjM1MzNkODdjMzI0ZWNjNTFjMmMzZWEyYWRiMB4XDTIyMDUx
MjE5MzUwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzAwMGE2M2IyNjgz
Y2ZlMmVhZjc2ZDVmMjY1YzlmY2E2OWIxYmU0ZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpZhFCJftlM4YijQoxvqM9RaSv30S36Wff7f3w7slZ7Hyvb
hAlniGXgSkzRPcgArlkDXBhqqD+O5v3g9M7SS7o+VYUuEJFEg/LmmxBeVwA3Qrxf
a4Bf3G1sXSPfW4bg2qEGOxwMyhxy7OT/kIkoJ+iDZbsjB3CsaZ5GmTvsucJmII2S
7WRCQO66tp9y7z6pkhjMjU2f1BniLuXIF4sJKR1nYE2X8OdnBLlHEo0xLg5ndbDx
KxXbf05rppzb8qRpaHoXUtW/gXmMJ8BRTEwEx3TA4EdSNAzlE3HW5Qy+Rgj6BvbX
iEqVyMKN25qIslzxhgKuVQ29c3FDSK5OxaFeZZUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTAAKY7JoPP4ur3bV8mXJ/KabG+TjAfBgNVHSMEGDAWgBQ0e0h4SP/2NTPY
fDJOzFHCw+oq2zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L05IdEllRWpfOWpVejJId3lUc3hSd3NQcUt0cy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjcvYmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8x
L3dBQ21PeWFEei1McTkyMWZKbHlmeW1teHZrNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcv
YmM3MTIyLTRkMWItNDZhNy1hZWNiLTIzMGIzYjcyYTE3NS8xL05IdEllRWpfOWpV
ejJId3lUc3hSd3NQcUt0cy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2ZfTANBgkqhkiG9w0BAQsFAAOC
AQEAEYr64AAF97DsQeph1/bwW2D/otGun02ejHIgpBqrn1c87od7GS1WXjF2mo6p
jXnr64z4fJMrILKaT1t+OdtOoYHto4io40V+oWFFzcUvhb6eqV3wNn7zFA+/kxbE
AK3JqxLNOM4JahUuh3NpTMDR3NMQR7zFTQCwHrHH9kJ/2SbJpXfKu6dvZWOSnFAc
zFcsWuOlqd/ecCOvwetU9MOMHxnLKjstSo/F6ArAzzjlyb2hT1IAIIRWsex+VCeI
9dowx5ype+swb/HxPSywzDLAAepLfjL0tR2xoi+8gUNpLGWezg5Y1CV85sZr2l8u
hyJrbHoQpOEs79wDunhCzQQNmA==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:20 2023 by rpki-client on console-ams.rpki-client.org