Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/2vHhRlkqmXea6Q14Z9prFG0Jmeo.roa
File: 2vHhRlkqmXea6Q14Z9prFG0Jmeo.roa (raw, json)
Hash identifier: KlMj5EiLDoxLpmvO6FLxlJw1iar5c40LrPoJmfJyPlQ=
Subject key identifier: DA:F1:E1:46:59:2A:99:77:9A:E9:0D:78:67:DA:6B:14:6D:09:99:EA
Certificate issuer: /CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Certificate serial: 05D12D3D
Authority key identifier: 89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/2vHhRlkqmXea6Q14Z9prFG0Jmeo.roa
Signing time: Sat 01 Jan 2022 13:01:27 +0000
ROA not before: Sat 01 Jan 2022 13:01:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43350
IP address blocks: 45.151.98.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 97594685 (0x5d12d3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=89ac0acbfdb7a274ef36c16f5860ada2a2470697
Validity
Not Before: Jan 1 13:01:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=daf1e146592a99779ae90d7867da6b146d0999ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c6:f6:c3:e1:a8:a7:66:f1:57:94:2b:b2:87:
10:32:e0:88:b6:b8:d8:50:84:d5:83:96:fb:ee:37:
98:d5:92:40:cc:d9:e4:3c:99:e9:10:3d:8f:ab:1c:
e5:02:27:a0:49:5f:bf:ea:46:0d:6c:55:10:39:f2:
12:f7:75:5e:93:96:3f:44:2b:11:5f:67:bd:25:b9:
d9:e9:7d:1f:0c:b2:7f:e0:07:dd:6e:e2:3e:b0:00:
7d:62:4f:fa:13:fc:c9:76:8e:f1:5a:90:d2:ef:67:
ac:70:18:c5:27:bf:06:68:b1:4c:70:1e:15:71:49:
a2:28:39:a0:89:76:38:d5:f3:29:09:0e:48:86:0f:
7b:0a:65:4d:0f:d8:01:c7:43:4e:dc:6c:a6:5e:b9:
b0:d1:14:da:b0:42:9e:8f:52:35:1f:54:11:7f:86:
31:1f:48:d4:60:6b:d1:00:e7:b4:71:46:01:ab:5c:
7e:67:7c:d1:a1:98:24:d4:22:38:b0:36:73:6e:94:
36:89:1f:e8:d9:6a:54:5a:b8:5d:bf:db:fb:23:2f:
0f:a6:06:4c:b1:a3:aa:1f:f8:a6:b2:81:0a:91:ef:
16:5a:83:c9:32:5b:a8:9d:3e:f6:ec:32:d2:18:ce:
92:09:29:24:bb:f0:15:38:18:4d:dd:0a:2c:3b:fa:
a1:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:F1:E1:46:59:2A:99:77:9A:E9:0D:78:67:DA:6B:14:6D:09:99:EA
X509v3 Authority Key Identifier:
keyid:89:AC:0A:CB:FD:B7:A2:74:EF:36:C1:6F:58:60:AD:A2:A2:47:06:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/iawKy_23onTvNsFvWGCtoqJHBpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/2vHhRlkqmXea6Q14Z9prFG0Jmeo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/93a768-2677-48d6-914c-d4dbf7066fd3/1/iawKy_23onTvNsFvWGCtoqJHBpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.98.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:33:bb:69:43:fc:f5:a7:61:9e:8a:a8:75:39:73:dd:42:8c:
7c:e4:05:42:76:cb:4a:44:99:00:32:3f:10:ce:53:dd:1b:15:
c6:23:97:6e:10:01:db:d3:83:72:d8:c0:79:33:60:82:57:0e:
c6:d5:94:d2:bf:e3:a3:a6:6d:e0:8f:f3:62:5c:7c:16:de:7c:
4f:c2:15:43:44:c7:d5:58:60:20:9c:58:b8:db:92:7b:4a:af:
26:34:60:ac:24:75:ff:6f:a0:09:02:13:80:7b:fb:8e:fc:d1:
5a:c4:3c:96:0b:06:22:6d:85:68:32:06:15:16:12:98:31:e9:
d4:bc:4a:d4:35:47:24:98:68:9d:9c:1e:51:89:29:06:1c:85:
4f:ba:c7:5f:aa:67:12:b4:7e:29:eb:e7:ff:34:aa:6a:02:e2:
31:85:ee:04:df:46:8b:0b:9f:28:71:2f:20:0b:5d:21:b8:13:
8c:1f:89:fc:77:80:29:54:1a:b0:61:95:8c:d4:af:5e:c1:1a:
12:d0:38:28:01:b4:cc:60:4f:fe:20:27:5b:a1:c1:b5:26:c1:
fd:15:d8:89:79:84:e5:f6:ea:70:47:20:bf:43:2f:ee:df:9c:
2b:17:2e:d8:da:d3:58:5d:f5:4e:75:98:bb:3a:e1:c1:5a:57:
32:a7:8b:7e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBdEtPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
OWFjMGFjYmZkYjdhMjc0ZWYzNmMxNmY1ODYwYWRhMmEyNDcwNjk3MB4XDTIyMDEw
MTEzMDEyN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGFmMWUxNDY1OTJh
OTk3NzlhZTkwZDc4NjdkYTZiMTQ2ZDA5OTllYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL3G9sPhqKdm8VeUK7KHEDLgiLa42FCE1YOW++43mNWSQMzZ
5DyZ6RA9j6sc5QInoElfv+pGDWxVEDnyEvd1XpOWP0QrEV9nvSW52el9Hwyyf+AH
3W7iPrAAfWJP+hP8yXaO8VqQ0u9nrHAYxSe/BmixTHAeFXFJoig5oIl2ONXzKQkO
SIYPewplTQ/YAcdDTtxspl65sNEU2rBCno9SNR9UEX+GMR9I1GBr0QDntHFGAatc
fmd80aGYJNQiOLA2c26UNokf6NlqVFq4Xb/b+yMvD6YGTLGjqh/4prKBCpHvFlqD
yTJbqJ0+9uwy0hjOkgkpJLvwFTgYTd0KLDv6oX8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTa8eFGWSqZd5rpDXhn2msUbQmZ6jAfBgNVHSMEGDAWgBSJrArL/beidO82
wW9YYK2iokcGlzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2lhd0t5XzIzb25Udk5zRnZXR0N0b3FKSEJwYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzEvOTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8x
LzJ2SGhSbGtxbVhlYTZRMTRaOXByRkcwSm1lby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzEv
OTNhNzY4LTI2NzctNDhkNi05MTRjLWQ0ZGJmNzA2NmZkMy8xL2lhd0t5XzIzb25U
dk5zRnZXR0N0b3FKSEJwYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2XYjANBgkqhkiG9w0BAQsFAAOC
AQEAKzO7aUP89adhnoqodTlz3UKMfOQFQnbLSkSZADI/EM5T3RsVxiOXbhAB29OD
ctjAeTNgglcOxtWU0r/jo6Zt4I/zYlx8Ft58T8IVQ0TH1VhgIJxYuNuSe0qvJjRg
rCR1/2+gCQITgHv7jvzRWsQ8lgsGIm2FaDIGFRYSmDHp1LxK1DVHJJhonZweUYkp
BhyFT7rHX6pnErR+Kevn/zSqagLiMYXuBN9GiwufKHEvIAtdIbgTjB+J/HeAKVQa
sGGVjNSvXsEaEtA4KAG0zGBP/iAnW6HBtSbB/RXYiXmE5fbqcEcgv0Mv7t+cKxcu
2NrTWF31TnWYuzrhwVpXMqeLfg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:11 2023 by rpki-client on console-fra.rpki-client.org