Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/m44Sb-reBRJZ3NG8R6yCRSZ1OXw.roa
File: m44Sb-reBRJZ3NG8R6yCRSZ1OXw.roa (raw, json)
Hash identifier: gDjXuBJpqbN4wZy3xtJU1Keem7mBJPtlAiyN4MobBs0=
Subject key identifier: 9B:8E:12:6F:EA:DE:05:12:59:DC:D1:BC:47:AC:82:45:26:75:39:7C
Certificate issuer: /CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Certificate serial: 07A72E0E
Authority key identifier: C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/m44Sb-reBRJZ3NG8R6yCRSZ1OXw.roa
Signing time: Sat 01 Jan 2022 09:58:34 +0000
ROA not before: Sat 01 Jan 2022 09:58:34 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 57497
IP address blocks: 45.89.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128396814 (0x7a72e0e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c59bd1e8c58f641bd944305f11c54efe5f3a0ce2
Validity
Not Before: Jan 1 09:58:34 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9b8e126feade051259dcd1bc47ac82452675397c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:e0:4b:0c:7b:1b:a6:1c:63:5b:62:c4:ea:d8:
ee:90:ea:1f:4c:03:4c:ae:28:7e:66:51:4a:bc:ba:
60:56:4f:cb:91:15:0b:9c:75:47:9c:00:ee:7e:c4:
bf:64:3a:d4:2a:e2:6a:95:f7:c2:d1:a6:e6:44:56:
b3:dc:50:77:5a:49:4f:cd:5e:d1:d3:81:2b:d3:0e:
a8:8f:da:c9:e9:6b:54:d7:64:ec:4c:38:d7:5c:25:
00:6a:d3:97:1e:fc:73:81:dc:84:7a:bc:93:c9:90:
05:d7:61:4b:31:dc:d2:3b:15:7b:2a:ee:3c:cd:1c:
b9:41:6a:ff:13:9c:d8:32:dd:5e:67:b6:c6:d5:90:
1e:f5:5f:da:3f:a7:d0:20:0c:c0:fe:ec:01:2d:ab:
3a:41:40:9b:8a:77:ef:8c:e7:d1:8e:4b:99:ee:34:
65:a1:f1:2f:cc:43:bf:f6:89:86:b4:06:a9:79:78:
aa:a5:98:f5:71:b0:89:42:14:52:9b:2c:90:fb:d1:
91:63:42:ea:71:8f:97:55:a2:af:f2:94:8b:97:85:
e7:5a:3d:f0:7c:e8:6d:9d:cb:4d:5b:e0:1e:ea:fe:
e6:2f:79:30:cc:35:0b:86:73:e2:dc:bd:13:25:5a:
79:3c:cf:10:2f:21:7f:84:1e:16:87:25:04:9c:a3:
8e:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8E:12:6F:EA:DE:05:12:59:DC:D1:BC:47:AC:82:45:26:75:39:7C
X509v3 Authority Key Identifier:
keyid:C5:9B:D1:E8:C5:8F:64:1B:D9:44:30:5F:11:C5:4E:FE:5F:3A:0C:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xZvR6MWPZBvZRDBfEcVO_l86DOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/m44Sb-reBRJZ3NG8R6yCRSZ1OXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/fd8457-810f-4f7e-9e58-56cc39db6ed6/1/xZvR6MWPZBvZRDBfEcVO_l86DOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.89.236.0/22
Signature Algorithm: sha256WithRSAEncryption
69:dd:fe:0b:e0:e5:d0:23:e1:e3:27:a5:b1:48:b6:f4:81:bf:
58:be:8d:f0:83:3f:f3:b8:1f:26:b1:74:c4:7e:3e:76:30:0a:
1a:8d:4f:5c:d5:6f:ce:67:ae:ba:7f:14:47:f4:43:be:b3:cd:
a7:83:33:ca:37:83:93:e9:3f:da:4c:74:fc:e4:8d:bc:a0:f4:
10:31:a1:db:0a:c9:c1:2e:59:07:f0:12:4d:a7:59:f6:6d:c8:
e4:9b:f9:a7:8a:bb:a0:d1:55:8e:19:eb:ce:09:2c:5e:44:72:
33:83:42:54:d8:88:18:c2:52:18:a0:4a:9c:d0:40:ed:8c:9d:
66:e0:89:e5:9d:5e:b0:10:a6:4e:64:6d:32:0d:7b:47:88:62:
95:36:6b:c3:55:1a:cd:af:5e:1f:0a:48:b4:ec:97:fc:6d:03:
ec:fb:a3:14:8e:62:65:56:cc:85:95:df:94:be:a9:bb:c4:ce:
66:4b:9c:01:13:4a:68:09:da:00:1f:47:98:56:b5:9c:ad:e0:
9d:4b:c0:0e:e0:8d:46:da:e3:f5:84:03:f2:f9:53:84:3d:cd:
6c:1b:08:9d:0d:52:ba:14:f2:08:db:2f:aa:34:07:65:82:42:
f4:69:88:c0:77:71:92:f4:d5:4f:67:9e:1d:f5:e9:8c:de:2a:
ff:65:b7:90
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB6cuDjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NTliZDFlOGM1OGY2NDFiZDk0NDMwNWYxMWM1NGVmZTVmM2EwY2UyMB4XDTIyMDEw
MTA5NTgzNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOWI4ZTEyNmZlYWRl
MDUxMjU5ZGNkMWJjNDdhYzgyNDUyNjc1Mzk3YzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI/gSwx7G6YcY1tixOrY7pDqH0wDTK4ofmZRSry6YFZPy5EV
C5x1R5wA7n7Ev2Q61CriapX3wtGm5kRWs9xQd1pJT81e0dOBK9MOqI/ayelrVNdk
7Ew411wlAGrTlx78c4HchHq8k8mQBddhSzHc0jsVeyruPM0cuUFq/xOc2DLdXme2
xtWQHvVf2j+n0CAMwP7sAS2rOkFAm4p374zn0Y5Lme40ZaHxL8xDv/aJhrQGqXl4
qqWY9XGwiUIUUpsskPvRkWNC6nGPl1Wir/KUi5eF51o98HzobZ3LTVvgHur+5i95
MMw1C4Zz4ty9EyVaeTzPEC8hf4QeFoclBJyjjl0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSbjhJv6t4FElnc0bxHrIJFJnU5fDAfBgNVHSMEGDAWgBTFm9HoxY9kG9lE
MF8RxU7+XzoM4jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hadlI2TVdQWkJ2WlJEQmZFY1ZPX2w4NkRPSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMmYvZmQ4NDU3LTgxMGYtNGY3ZS05ZTU4LTU2Y2MzOWRiNmVkNi8x
L200NFNiLXJlQlJKWjNORzhSNnlDUlNaMU9Ydy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmYv
ZmQ4NDU3LTgxMGYtNGY3ZS05ZTU4LTU2Y2MzOWRiNmVkNi8xL3hadlI2TVdQWkJ2
WlJEQmZFY1ZPX2w4NkRPSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1Z7DANBgkqhkiG9w0BAQsFAAOC
AQEAad3+C+Dl0CPh4yelsUi29IG/WL6N8IM/87gfJrF0xH4+djAKGo1PXNVvzmeu
un8UR/RDvrPNp4MzyjeDk+k/2kx0/OSNvKD0EDGh2wrJwS5ZB/ASTadZ9m3I5Jv5
p4q7oNFVjhnrzgksXkRyM4NCVNiIGMJSGKBKnNBA7YydZuCJ5Z1esBCmTmRtMg17
R4hilTZrw1Uaza9eHwpItOyX/G0D7PujFI5iZVbMhZXflL6pu8TOZkucARNKaAna
AB9HmFa1nK3gnUvADuCNRtrj9YQD8vlThD3NbBsInQ1SuhTyCNsvqjQHZYJC9GmI
wHdxkvTVT2eeHfXpjN4q/2W3kA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:24:16 2024 by rpki-client on console-fra.rpki-client.org