Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/q9G8vqv-782dDftfbaj4ALlBQ1c.roa
File: q9G8vqv-782dDftfbaj4ALlBQ1c.roa (raw, json)
Hash identifier: Jeu7vLGT0S8EMPy6PO0aBzIhc2wuJpWfXEzNnk9j1LA=
Subject key identifier: AB:D1:BC:BE:AB:FE:EF:CD:9D:0D:FB:5F:6D:A8:F8:00:B9:41:43:57
Certificate issuer: /CN=5ff7352d47db9785f49118092de8704a67f6520d
Certificate serial: 088E945A
Authority key identifier: 5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/q9G8vqv-782dDftfbaj4ALlBQ1c.roa
Signing time: Sat 01 Jan 2022 13:04:37 +0000
ROA not before: Sat 01 Jan 2022 13:04:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208209
IP address blocks: 45.154.8.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143561818 (0x88e945a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5ff7352d47db9785f49118092de8704a67f6520d
Validity
Not Before: Jan 1 13:04:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=abd1bcbeabfeefcd9d0dfb5f6da8f800b9414357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b0:b3:5a:1c:97:88:70:45:5f:b5:b5:48:62:
63:82:fd:49:f2:6c:49:11:b2:2c:a1:9c:be:4a:c8:
84:99:0b:f9:75:28:0b:c6:83:6b:20:93:d5:c1:f6:
41:c6:16:0c:a4:40:71:c8:05:cb:19:be:09:d6:1f:
a0:1b:5f:37:28:b4:e4:c8:18:7f:c7:6e:a9:2f:3f:
03:5a:40:78:0e:cc:2b:47:73:33:84:81:ec:fb:42:
cc:34:05:66:78:42:c0:ca:51:b4:0a:d9:e0:0f:f1:
44:29:7f:ff:5f:5a:fd:e2:0b:4c:01:3b:3d:9b:7f:
0c:d7:c4:44:36:24:f1:25:f4:0e:69:30:62:65:b9:
09:64:bd:c9:e0:d6:16:f0:ef:36:97:08:87:c4:c5:
97:5f:61:a0:d6:73:91:e4:0e:02:ae:f6:b8:43:4d:
2e:df:49:f3:ab:ba:02:89:da:92:1b:9a:0a:d5:9a:
5b:08:36:38:15:dc:34:8e:01:4e:2a:c5:bc:0c:37:
cc:ce:69:92:e6:02:6f:b5:77:47:dd:df:a2:1d:a3:
cc:4b:98:f7:73:f3:ab:a1:95:e8:76:18:9c:e9:af:
15:61:bd:b3:99:3f:1b:8c:32:49:62:77:10:16:33:
99:0a:54:c0:31:1e:69:d3:57:e8:92:56:39:a1:c0:
91:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:D1:BC:BE:AB:FE:EF:CD:9D:0D:FB:5F:6D:A8:F8:00:B9:41:43:57
X509v3 Authority Key Identifier:
keyid:5F:F7:35:2D:47:DB:97:85:F4:91:18:09:2D:E8:70:4A:67:F6:52:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X_c1LUfbl4X0kRgJLehwSmf2Ug0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/q9G8vqv-782dDftfbaj4ALlBQ1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/d5d2b3-7c42-4785-9596-517481d0f850/1/X_c1LUfbl4X0kRgJLehwSmf2Ug0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.8.0/24
Signature Algorithm: sha256WithRSAEncryption
05:e8:4d:e9:1e:d6:9f:5b:48:67:12:b2:e7:0d:96:04:5e:36:
0d:c5:25:28:17:f9:48:32:bc:3e:c2:b0:43:28:b8:8d:5e:53:
60:2f:e1:aa:90:e7:8c:07:96:7c:8d:f2:bc:96:8d:55:e9:bf:
bd:8b:83:46:8f:bb:88:ce:3b:28:97:aa:85:23:89:19:54:30:
b3:b9:19:20:92:65:b1:9b:a8:7b:90:0d:37:e2:54:5d:53:d8:
ab:70:a3:87:65:3d:ac:82:62:cf:08:c0:94:b9:f9:7f:be:0a:
26:7d:9b:69:9d:5c:0d:15:7e:35:2a:5f:f0:7c:3b:2a:ff:54:
09:3b:32:42:9e:be:52:d2:10:7c:d7:92:ef:cb:3e:0a:9e:5a:
ed:68:50:72:60:d3:e1:7f:20:34:66:d7:dd:0f:95:dc:b1:6b:
17:2d:a5:c6:9f:44:d9:e8:0d:0e:f5:ab:f9:42:05:47:c8:1f:
5c:07:9a:2b:74:a6:aa:38:31:2b:86:2c:03:ba:fc:e2:84:12:
57:fd:2d:25:1b:c1:a9:17:8c:5c:34:05:06:10:4e:b0:ce:b1:
31:43:30:85:10:3f:74:9a:d4:f8:98:ab:d6:85:cd:e7:5f:a0:
f0:fa:b4:90:a8:23:da:20:ee:16:8c:82:82:08:d4:68:b2:95:
d7:29:57:b5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECI6UWjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZmY3MzUyZDQ3ZGI5Nzg1ZjQ5MTE4MDkyZGU4NzA0YTY3ZjY1MjBkMB4XDTIyMDEw
MTEzMDQzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWJkMWJjYmVhYmZl
ZWZjZDlkMGRmYjVmNmRhOGY4MDBiOTQxNDM1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJqws1ocl4hwRV+1tUhiY4L9SfJsSRGyLKGcvkrIhJkL+XUo
C8aDayCT1cH2QcYWDKRAccgFyxm+CdYfoBtfNyi05MgYf8duqS8/A1pAeA7MK0dz
M4SB7PtCzDQFZnhCwMpRtArZ4A/xRCl//19a/eILTAE7PZt/DNfERDYk8SX0Dmkw
YmW5CWS9yeDWFvDvNpcIh8TFl19hoNZzkeQOAq72uENNLt9J86u6AonakhuaCtWa
Wwg2OBXcNI4BTirFvAw3zM5pkuYCb7V3R93foh2jzEuY93Pzq6GV6HYYnOmvFWG9
s5k/G4wySWJ3EBYzmQpUwDEeadNX6JJWOaHAkQsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSr0by+q/7vzZ0N+19tqPgAuUFDVzAfBgNVHSMEGDAWgBRf9zUtR9uXhfSR
GAkt6HBKZ/ZSDTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1hfYzFMVWZibDRYMGtSZ0pMZWh3U21mMlVnMC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMjkvZDVkMmIzLTdjNDItNDc4NS05NTk2LTUxNzQ4MWQwZjg1MC8x
L3E5Rzh2cXYtNzgyZERmdGZiYWo0QUxsQlExYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjkv
ZDVkMmIzLTdjNDItNDc4NS05NTk2LTUxNzQ4MWQwZjg1MC8xL1hfYzFMVWZibDRY
MGtSZ0pMZWh3U21mMlVnMC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2aCDANBgkqhkiG9w0BAQsFAAOC
AQEABehN6R7Wn1tIZxKy5w2WBF42DcUlKBf5SDK8PsKwQyi4jV5TYC/hqpDnjAeW
fI3yvJaNVem/vYuDRo+7iM47KJeqhSOJGVQws7kZIJJlsZuoe5ANN+JUXVPYq3Cj
h2U9rIJizwjAlLn5f74KJn2baZ1cDRV+NSpf8Hw7Kv9UCTsyQp6+UtIQfNeS78s+
Cp5a7WhQcmDT4X8gNGbX3Q+V3LFrFy2lxp9E2egNDvWr+UIFR8gfXAeaK3Smqjgx
K4YsA7r84oQSV/0tJRvBqReMXDQFBhBOsM6xMUMwhRA/dJrU+Jir1oXN51+g8Pq0
kKgj2iDuFoyCggjUaLKV1ylXtQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:30 2023 by rpki-client on console-ams.rpki-client.org