Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L7OCUaNWXDrg0wAWH8WVqD5JmWg.roa
File: L7OCUaNWXDrg0wAWH8WVqD5JmWg.roa (raw, json)
Hash identifier: jYRNYTaS3raJizWrMaUUpvosceewtM2DfzhVwNkbrNs=
Subject key identifier: 2F:B3:82:51:A3:56:5C:3A:E0:D3:00:16:1F:C5:95:A8:3E:49:99:68
Certificate issuer: /CN=05976801363d375786152e4d061e75c8beb35058
Certificate serial: 013DCB5A
Authority key identifier: 05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L7OCUaNWXDrg0wAWH8WVqD5JmWg.roa
Signing time: Sat 01 Jan 2022 01:00:04 +0000
ROA not before: Sat 01 Jan 2022 01:00:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210732
IP address blocks: 45.154.99.0/24 maxlen: 24
2a0c:b641:4d0::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20826970 (0x13dcb5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05976801363d375786152e4d061e75c8beb35058
Validity
Not Before: Jan 1 01:00:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2fb38251a3565c3ae0d300161fc595a83e499968
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:60:9e:9c:b7:00:ac:69:cf:a4:e8:49:87:c5:
f6:34:a5:9c:9b:22:28:f5:22:cf:00:9f:95:bc:27:
3d:aa:73:f6:d8:64:fa:12:8f:97:40:0b:7e:d8:ab:
22:0a:9c:74:c6:ea:73:3a:1f:e4:94:f9:8d:c4:83:
8b:5a:d9:8e:79:d3:df:98:55:68:09:dd:cf:14:52:
c6:29:6d:0e:1b:2b:d3:1e:e8:1e:94:c6:ee:28:e8:
32:7d:5d:19:69:a1:46:df:ab:2d:f1:68:d3:1b:1f:
5d:a8:78:85:d1:5b:bf:f0:09:ad:4f:7d:c0:3d:b5:
ff:60:7b:c8:92:d5:12:cb:ee:af:d1:f5:01:eb:49:
15:2d:d4:96:f7:a4:c4:e6:ed:3f:54:b9:47:9b:ab:
c7:58:b4:70:f0:7a:a6:d9:ff:62:73:63:04:e4:88:
27:fc:12:3a:60:a9:d2:a9:39:2d:f0:67:ff:60:30:
3b:d4:cb:84:ad:fc:b6:dc:4f:6d:04:11:ef:48:c5:
d5:36:0f:df:23:4c:c9:46:23:5d:35:70:97:a9:1a:
32:4b:c5:a1:72:97:71:b1:54:07:9a:67:a7:a3:bb:
9f:08:17:50:79:ca:8e:08:55:ab:b3:2f:78:ba:9a:
22:45:a4:3c:99:4c:ca:0b:4d:ed:c3:74:25:35:47:
04:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:B3:82:51:A3:56:5C:3A:E0:D3:00:16:1F:C5:95:A8:3E:49:99:68
X509v3 Authority Key Identifier:
keyid:05:97:68:01:36:3D:37:57:86:15:2E:4D:06:1E:75:C8:BE:B3:50:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZdoATY9N1eGFS5NBh51yL6zUFg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/L7OCUaNWXDrg0wAWH8WVqD5JmWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/2baadc-2b7a-4ec0-95ca-5ec8c8ed60fd/1/BZdoATY9N1eGFS5NBh51yL6zUFg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.99.0/24
IPv6:
2a0c:b641:4d0::/44
Signature Algorithm: sha256WithRSAEncryption
1f:e0:13:db:5b:ba:23:a2:8f:26:f2:cc:a5:d1:80:11:7a:37:
f4:56:eb:9c:26:1a:26:e1:b8:76:d2:c0:4d:07:aa:0d:1f:48:
8f:85:11:96:ee:6b:bb:d3:da:19:d6:d0:85:40:0f:9d:6a:48:
a2:c7:75:4c:e6:0f:61:84:a9:eb:e0:80:e1:b7:c7:5c:60:fe:
e7:82:10:3f:dd:39:ee:52:d1:b5:e0:57:ab:81:bb:7a:03:66:
98:88:38:61:2f:90:11:e4:a6:7d:e0:e9:c8:ec:60:65:69:71:
2f:fd:37:f2:af:11:64:b9:c6:7e:66:8f:9f:77:30:14:38:f4:
89:5b:12:7f:6e:73:49:57:70:b4:de:ca:6f:d7:7c:ab:f5:d1:
78:12:7b:f8:7e:c0:60:df:70:2a:95:0e:7b:10:26:0d:37:df:
45:df:8b:89:ea:95:39:87:99:5e:e0:61:76:a3:9b:eb:04:46:
68:0f:58:f5:8e:5b:68:a6:fa:57:5f:42:7f:ca:65:fd:a0:37:
71:33:28:aa:50:cf:8c:00:37:69:fb:e3:09:67:ab:61:8e:04:
25:0b:a6:1b:85:87:ad:99:61:90:11:76:f9:b6:c5:bd:d3:c3:
07:60:96:8c:21:bd:88:9f:26:d2:cc:49:4f:7b:11:58:24:bb:
c4:64:1f:00
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEAT3LWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
NTk3NjgwMTM2M2QzNzU3ODYxNTJlNGQwNjFlNzVjOGJlYjM1MDU4MB4XDTIyMDEw
MTAxMDAwNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmZiMzgyNTFhMzU2
NWMzYWUwZDMwMDE2MWZjNTk1YTgzZTQ5OTk2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALZgnpy3AKxpz6ToSYfF9jSlnJsiKPUizwCflbwnPapz9thk
+hKPl0ALftirIgqcdMbqczof5JT5jcSDi1rZjnnT35hVaAndzxRSxiltDhsr0x7o
HpTG7ijoMn1dGWmhRt+rLfFo0xsfXah4hdFbv/AJrU99wD21/2B7yJLVEsvur9H1
AetJFS3UlvekxObtP1S5R5urx1i0cPB6ptn/YnNjBOSIJ/wSOmCp0qk5LfBn/2Aw
O9TLhK38ttxPbQQR70jF1TYP3yNMyUYjXTVwl6kaMkvFoXKXcbFUB5pnp6O7nwgX
UHnKjghVq7MveLqaIkWkPJlMygtN7cN0JTVHBJkCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQvs4JRo1ZcOuDTABYfxZWoPkmZaDAfBgNVHSMEGDAWgBQFl2gBNj03V4YV
Lk0GHnXIvrNQWDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0JaZG9BVFk5TjFlR0ZTNU5CaDUxeUw2elVGZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvMmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8x
L0w3T0NVYU5XWERyZzB3QVdIOFdWcUQ1Sm1XZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
MmJhYWRjLTJiN2EtNGVjMC05NWNhLTVlYzhjOGVkNjBmZC8xL0JaZG9BVFk5TjFl
R0ZTNU5CaDUxeUw2elVGZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAC2aYzAPBAIAAjAJAwcEKgy2QQTQ
MA0GCSqGSIb3DQEBCwUAA4IBAQAf4BPbW7ojoo8m8syl0YARejf0VuucJhom4bh2
0sBNB6oNH0iPhRGW7mu709oZ1tCFQA+dakiix3VM5g9hhKnr4IDht8dcYP7nghA/
3TnuUtG14Fergbt6A2aYiDhhL5AR5KZ94OnI7GBlaXEv/TfyrxFkucZ+Zo+fdzAU
OPSJWxJ/bnNJV3C03spv13yr9dF4Env4fsBg33AqlQ57ECYNN99F34uJ6pU5h5le
4GF2o5vrBEZoD1j1jltopvpXX0J/ymX9oDdxMyiqUM+MADdp++MJZ6thjgQlC6Yb
hYetmWGQEXb5tsW908MHYJaMIb2InybSzElPexFYJLvEZB8A
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:37 2023 by rpki-client on console-fra.rpki-client.org