Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/AssXue2jvq4tgmXVG0VJwBVjucU.roa
File: AssXue2jvq4tgmXVG0VJwBVjucU.roa (raw, json)
Hash identifier: AjJT1yolZquBR7riY3JUxLxjNrGsd6QTs5zJKOG5bSw=
Subject key identifier: 02:CB:17:B9:ED:A3:BE:AE:2D:82:65:D5:1B:45:49:C0:15:63:B9:C5
Certificate issuer: /CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Certificate serial: 1541121A
Authority key identifier: 8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/AssXue2jvq4tgmXVG0VJwBVjucU.roa
Signing time: Sat 04 Jun 2022 10:21:21 +0000
ROA not before: Sat 04 Jun 2022 10:21:21 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203624
IP address blocks: 45.91.84.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 356586010 (0x1541121a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8bab30683859ec7e0206fe9265363e8e3971a9a8
Validity
Not Before: Jun 4 10:21:21 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02cb17b9eda3beae2d8265d51b4549c01563b9c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:28:bf:0a:df:76:bf:47:4b:ff:ff:fc:36:6c:
f2:57:29:4c:d7:87:18:28:0c:ba:f0:f2:3d:75:1f:
c7:48:93:03:73:db:f5:4c:dd:64:ef:fe:b4:d5:42:
28:d8:5f:07:8c:5c:7b:14:c3:4a:f5:53:8f:d2:2a:
0b:eb:ca:32:4d:71:83:96:95:6a:5b:4d:55:16:21:
61:82:54:8e:69:03:d4:19:b9:be:03:f8:d2:9a:22:
f0:d3:47:01:5c:7c:81:50:8a:34:13:04:68:99:81:
b6:e3:1b:c9:a9:b7:01:72:92:ed:1a:01:23:fd:dd:
96:21:7a:b2:02:4e:09:10:c2:23:27:ab:12:c4:14:
d0:3b:fd:6b:d1:d3:0c:f9:6f:21:5a:a6:e6:0b:fe:
ea:4f:70:b5:c4:78:6a:bc:fd:d2:ab:f0:4b:e4:0e:
71:52:69:eb:e6:b8:bb:b4:2d:61:d8:e4:9d:4c:9f:
b4:0b:5a:bf:0f:c1:fd:bf:09:4f:73:5f:f8:cd:8c:
6d:9c:bf:53:0a:40:38:3d:a3:a3:e1:2c:bd:a6:ad:
ec:28:61:fc:f8:44:38:a9:c2:f5:eb:25:ca:d8:96:
ed:67:8d:87:9b:75:aa:7e:23:92:cf:38:bf:09:d1:
3d:23:f8:66:8f:fa:ef:20:77:33:46:7a:8f:15:cb:
b8:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:CB:17:B9:ED:A3:BE:AE:2D:82:65:D5:1B:45:49:C0:15:63:B9:C5
X509v3 Authority Key Identifier:
keyid:8B:AB:30:68:38:59:EC:7E:02:06:FE:92:65:36:3E:8E:39:71:A9:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i6swaDhZ7H4CBv6SZTY-jjlxqag.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/AssXue2jvq4tgmXVG0VJwBVjucU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/81fd1a-47a7-45d8-be74-3ac9e56c3089/1/i6swaDhZ7H4CBv6SZTY-jjlxqag.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.84.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:76:c7:3e:e2:1a:97:6f:46:ed:37:1e:b9:d0:33:05:6c:9c:
f1:81:78:47:6f:c6:71:8f:d7:76:3b:55:74:7d:c5:68:19:67:
8f:55:a3:b9:cb:95:b8:fe:26:f5:96:cd:3b:2b:35:e1:8d:cd:
94:f1:69:cb:4e:ea:bc:51:fa:cc:9c:72:52:3f:2d:df:5b:25:
90:bb:b2:b3:c3:71:89:b5:4e:a2:f9:89:be:f6:2c:ad:70:26:
74:ad:e7:88:1d:a9:83:56:be:cd:4f:b8:90:ac:5c:ce:8a:a1:
cc:3e:db:a4:09:40:e3:73:58:0d:8e:46:58:af:98:72:2f:f9:
b8:91:72:2c:78:1b:60:85:81:36:3c:0e:a0:51:cd:22:4c:b6:
72:ff:73:3a:bf:2a:83:66:13:0b:25:aa:5a:40:79:9c:7b:7e:
9a:03:55:20:c3:94:4e:82:72:ac:6d:b1:58:99:5a:ef:1e:89:
7c:d9:a5:01:77:5b:a0:e2:a2:4f:fc:ae:7b:1d:3e:da:3b:2c:
7f:17:b6:a8:6d:db:72:31:da:19:1a:49:4d:03:b7:f1:99:2c:
8e:0d:24:c3:e6:39:d7:7c:8c:ba:86:4a:88:3d:05:21:de:59:
0b:28:c1:0b:e7:38:ac:98:72:27:4f:59:ff:b5:cb:0a:96:34:
2b:f2:68:e2
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEFUESGjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
YmFiMzA2ODM4NTllYzdlMDIwNmZlOTI2NTM2M2U4ZTM5NzFhOWE4MB4XDTIyMDYw
NDEwMjEyMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDJjYjE3YjllZGEz
YmVhZTJkODI2NWQ1MWI0NTQ5YzAxNTYzYjljNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALoovwrfdr9HS////DZs8lcpTNeHGCgMuvDyPXUfx0iTA3Pb
9UzdZO/+tNVCKNhfB4xcexTDSvVTj9IqC+vKMk1xg5aValtNVRYhYYJUjmkD1Bm5
vgP40poi8NNHAVx8gVCKNBMEaJmBtuMbyam3AXKS7RoBI/3dliF6sgJOCRDCIyer
EsQU0Dv9a9HTDPlvIVqm5gv+6k9wtcR4arz90qvwS+QOcVJp6+a4u7QtYdjknUyf
tAtavw/B/b8JT3Nf+M2MbZy/UwpAOD2jo+Esvaat7Chh/PhEOKnC9eslytiW7WeN
h5t1qn4jks84vwnRPSP4Zo/67yB3M0Z6jxXLuD8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQCyxe57aO+ri2CZdUbRUnAFWO5xTAfBgNVHSMEGDAWgBSLqzBoOFnsfgIG
/pJlNj6OOXGpqDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2k2c3dhRGhaN0g0Q0J2NlNaVFktampseHFhZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmIvODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8x
L0Fzc1h1ZTJqdnE0dGdtWFZHMFZKd0JWanVjVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIv
ODFmZDFhLTQ3YTctNDVkOC1iZTc0LTNhYzllNTZjMzA4OS8xL2k2c3dhRGhaN0g0
Q0J2NlNaVFktampseHFhZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1bVDANBgkqhkiG9w0BAQsFAAOC
AQEAPnbHPuIal29G7TceudAzBWyc8YF4R2/GcY/XdjtVdH3FaBlnj1WjucuVuP4m
9ZbNOys14Y3NlPFpy07qvFH6zJxyUj8t31slkLuys8NxibVOovmJvvYsrXAmdK3n
iB2pg1a+zU+4kKxczoqhzD7bpAlA43NYDY5GWK+Yci/5uJFyLHgbYIWBNjwOoFHN
Iky2cv9zOr8qg2YTCyWqWkB5nHt+mgNVIMOUToJyrG2xWJla7x6JfNmlAXdboOKi
T/yuex0+2jssfxe2qG3bcjHaGRpJTQO38Zksjg0kw+Y513yMuoZKiD0FId5ZCyjB
C+c4rJhyJ09Z/7XLCpY0K/Jo4g==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:49 2023 by rpki-client on console-fra.rpki-client.org