Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/kKvi75NN-5UXSe7o4z8qMh5KyEA.roa
File: kKvi75NN-5UXSe7o4z8qMh5KyEA.roa (raw, json)
Hash identifier: 0KtazWEl2607KR0OoimyZq8gmu0o9ur/g6SaXNcQmcA=
Subject key identifier: 90:AB:E2:EF:93:4D:FB:95:17:49:EE:E8:E3:3F:2A:32:1E:4A:C8:40
Certificate issuer: /CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Certificate serial: 03B9AE01
Authority key identifier: C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/kKvi75NN-5UXSe7o4z8qMh5KyEA.roa
Signing time: Sat 01 Jan 2022 06:02:22 +0000
ROA not before: Sat 01 Jan 2022 06:02:22 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207442
IP address blocks: 45.143.30.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62500353 (0x3b9ae01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c12ac9b14fd261a8d2763aad417432bebc49a0d6
Validity
Not Before: Jan 1 06:02:22 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=90abe2ef934dfb951749eee8e33f2a321e4ac840
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:4b:fb:a4:4c:67:a3:90:c1:45:82:bb:4b:e0:
d1:fa:a7:d8:41:75:0f:f4:66:c5:bd:85:16:ea:22:
18:96:4a:db:58:d5:b4:08:e7:52:ea:60:22:db:bf:
2c:07:9e:4b:7a:ea:65:4f:fd:4b:66:a8:fd:5e:17:
8b:8b:24:ea:b9:4a:53:ca:08:99:18:9f:b5:2e:1e:
41:8f:e8:a4:1c:3c:75:a1:34:7f:d6:bc:e4:40:bc:
72:ca:08:ad:41:dc:71:89:d3:0e:dc:c6:3e:3e:60:
32:97:3b:3c:74:a5:ba:b6:cf:02:b4:83:6d:2e:4a:
ee:81:2b:8c:c9:39:fe:e0:7e:8e:1b:68:44:44:54:
68:88:9e:a8:7c:0a:44:bd:3a:01:e7:2f:06:b2:ff:
8e:37:c6:52:a3:5a:a1:8d:68:92:71:c9:29:4b:cd:
78:98:fb:27:45:68:f9:d0:fd:e2:ae:b8:a4:5e:46:
44:58:15:cf:20:9b:64:b9:e4:c8:a7:eb:b4:6d:a3:
f9:c3:9e:68:26:f7:fd:4a:74:02:87:87:90:e6:9e:
2b:5b:81:99:ff:50:90:c8:86:b6:39:1d:8b:7b:43:
a4:30:f8:b3:cc:29:a8:49:ef:06:cf:8a:3f:71:80:
79:0a:2b:e4:16:c8:00:ab:4c:37:54:9c:bd:3f:40:
1d:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:AB:E2:EF:93:4D:FB:95:17:49:EE:E8:E3:3F:2A:32:1E:4A:C8:40
X509v3 Authority Key Identifier:
keyid:C1:2A:C9:B1:4F:D2:61:A8:D2:76:3A:AD:41:74:32:BE:BC:49:A0:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wSrJsU_SYajSdjqtQXQyvrxJoNY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/kKvi75NN-5UXSe7o4z8qMh5KyEA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/7011dd-c2d9-4341-9236-2167cf01cf4a/1/wSrJsU_SYajSdjqtQXQyvrxJoNY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.30.0/24
Signature Algorithm: sha256WithRSAEncryption
48:9d:89:92:1f:1c:36:fb:ea:dc:a6:33:fc:33:1e:bf:c6:6f:
88:e6:6b:ea:b3:ae:ab:5c:c6:3d:7d:77:3d:10:86:dc:6d:53:
bd:7a:38:5f:8b:50:0c:5f:b2:ee:23:02:ba:b9:ea:65:2b:77:
ba:a0:c3:88:f6:d7:c2:11:f1:2b:5f:a1:98:3a:fa:43:73:af:
a1:c4:7a:45:02:ea:d4:d8:fa:2e:3b:27:c2:8c:bc:e5:ca:1b:
4a:2c:76:a4:09:60:75:55:3a:4b:76:07:e9:9f:29:3e:60:8d:
6f:58:d4:4d:7d:1d:6e:15:b9:d9:23:04:6c:bc:bb:ea:51:4b:
10:3f:a9:4e:53:d5:6f:a9:e1:ad:91:f3:00:f1:f6:cb:8d:37:
46:89:dd:72:72:ef:e4:27:07:ec:56:b8:80:e2:e1:7e:ee:de:
fb:7c:b2:97:68:54:53:42:e4:b0:97:40:0f:d3:b7:af:bd:6b:
f0:da:5d:96:d2:2d:8d:c5:e2:bd:13:dd:ea:3c:04:22:e4:43:
c7:25:1f:66:b3:fb:44:cd:21:34:5f:a2:86:5e:89:27:68:0f:
f1:51:fe:09:91:b5:43:49:5b:75:09:cc:20:66:30:23:2c:8c:
09:fd:94:f1:b1:31:af:f7:7b:1c:08:3e:63:96:44:07:f3:40:
95:93:04:c4
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7muATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
MTJhYzliMTRmZDI2MWE4ZDI3NjNhYWQ0MTc0MzJiZWJjNDlhMGQ2MB4XDTIyMDEw
MTA2MDIyMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTBhYmUyZWY5MzRk
ZmI5NTE3NDllZWU4ZTMzZjJhMzIxZTRhYzg0MDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM1L+6RMZ6OQwUWCu0vg0fqn2EF1D/Rmxb2FFuoiGJZK21jV
tAjnUupgItu/LAeeS3rqZU/9S2ao/V4Xi4sk6rlKU8oImRiftS4eQY/opBw8daE0
f9a85EC8csoIrUHccYnTDtzGPj5gMpc7PHSlurbPArSDbS5K7oErjMk5/uB+jhto
RERUaIieqHwKRL06AecvBrL/jjfGUqNaoY1oknHJKUvNeJj7J0Vo+dD94q64pF5G
RFgVzyCbZLnkyKfrtG2j+cOeaCb3/Up0AoeHkOaeK1uBmf9QkMiGtjkdi3tDpDD4
s8wpqEnvBs+KP3GAeQor5BbIAKtMN1ScvT9AHe8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSQq+Lvk037lRdJ7ujjPyoyHkrIQDAfBgNVHSMEGDAWgBTBKsmxT9JhqNJ2
Oq1BdDK+vEmg1jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3dTckpzVV9TWWFqU2RqcXRRWFF5dnJ4Sm9OWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmUvNzAxMWRkLWMyZDktNDM0MS05MjM2LTIxNjdjZjAxY2Y0YS8x
L2tLdmk3NU5OLTVVWFNlN280ejhxTWg1S3lFQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmUv
NzAxMWRkLWMyZDktNDM0MS05MjM2LTIxNjdjZjAxY2Y0YS8xL3dTckpzVV9TWWFq
U2RqcXRRWFF5dnJ4Sm9OWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2PHjANBgkqhkiG9w0BAQsFAAOC
AQEASJ2Jkh8cNvvq3KYz/DMev8ZviOZr6rOuq1zGPX13PRCG3G1TvXo4X4tQDF+y
7iMCurnqZSt3uqDDiPbXwhHxK1+hmDr6Q3OvocR6RQLq1Nj6Ljsnwoy85cobSix2
pAlgdVU6S3YH6Z8pPmCNb1jUTX0dbhW52SMEbLy76lFLED+pTlPVb6nhrZHzAPH2
y403RondcnLv5CcH7Fa4gOLhfu7e+3yyl2hUU0LksJdAD9O3r71r8NpdltItjcXi
vRPd6jwEIuRDxyUfZrP7RM0hNF+ihl6JJ2gP8VH+CZG1Q0lbdQnMIGYwIyyMCf2U
8bExr/d7HAg+Y5ZEB/NAlZMExA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:02 2024 by rpki-client on console-fra.rpki-client.org