Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/ApCetEBb1zXLWbpXdYIp5PD4Ce8.roa
File: ApCetEBb1zXLWbpXdYIp5PD4Ce8.roa (raw, json)
Hash identifier: XU7DqyKbqwVTjZJZmVCGyzq8U1XTB2hti7NjbCr79VY=
Subject key identifier: 02:90:9E:B4:40:5B:D7:35:CB:59:BA:57:75:82:29:E4:F0:F8:09:EF
Certificate issuer: /CN=a1a01f76a42be8717befdce1676215988a4dfc73
Certificate serial: 4417C8
Authority key identifier: A1:A0:1F:76:A4:2B:E8:71:7B:EF:DC:E1:67:62:15:98:8A:4D:FC:73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/oaAfdqQr6HF779zhZ2IVmIpN_HM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/ApCetEBb1zXLWbpXdYIp5PD4Ce8.roa
Signing time: Sat 01 Jan 2022 00:51:49 +0000
ROA not before: Sat 01 Jan 2022 00:51:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136038
IP address blocks: 45.142.152.0/24 maxlen: 24
45.142.154.0/24 maxlen: 24
45.142.153.0/24 maxlen: 24
45.142.155.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4462536 (0x4417c8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1a01f76a42be8717befdce1676215988a4dfc73
Validity
Not Before: Jan 1 00:51:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=02909eb4405bd735cb59ba57758229e4f0f809ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1d:e8:9c:da:2b:ee:b4:4e:d7:73:5e:36:d9:
27:6a:7d:3a:ca:1b:5f:14:8f:d7:8c:cf:c9:1c:25:
c0:49:b4:e9:cc:af:c0:e0:72:cc:31:db:cb:1f:9e:
20:2f:cf:4d:ea:24:9b:c9:e8:e3:dc:9a:5b:81:0b:
3a:40:c5:77:af:6b:df:51:1d:a3:50:1d:80:ea:18:
5e:b6:b9:92:fb:7e:ff:35:1c:b3:15:27:1c:47:32:
f1:7d:6c:1b:b4:d6:57:b7:33:e6:47:6d:6b:bf:4d:
68:bf:17:42:f4:67:a3:36:b7:57:21:21:5f:27:45:
fb:0a:71:43:f8:ff:66:7d:11:fb:38:e6:ac:25:9f:
1e:3a:bf:40:5d:86:88:41:73:f8:55:a6:41:68:5d:
65:f0:45:d8:55:56:c4:cd:6d:88:4f:3c:b3:36:63:
af:cf:1b:d0:be:a6:de:cc:57:4e:7f:ec:fd:a9:95:
31:c7:12:e2:a2:76:f3:15:52:f3:c4:2e:37:15:c7:
fa:dd:cb:88:e6:18:6f:70:da:31:00:06:62:0c:5f:
79:3a:de:64:b2:44:cf:0b:89:a1:52:2e:fd:2d:0f:
ba:47:41:f5:15:f6:a2:af:ed:ec:07:c6:79:3b:00:
ab:c6:83:90:0b:4b:46:2f:fa:56:92:ca:f2:e0:ea:
cd:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:90:9E:B4:40:5B:D7:35:CB:59:BA:57:75:82:29:E4:F0:F8:09:EF
X509v3 Authority Key Identifier:
keyid:A1:A0:1F:76:A4:2B:E8:71:7B:EF:DC:E1:67:62:15:98:8A:4D:FC:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/oaAfdqQr6HF779zhZ2IVmIpN_HM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/ApCetEBb1zXLWbpXdYIp5PD4Ce8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/eda54a-772c-49db-a012-6100cd15e260/1/oaAfdqQr6HF779zhZ2IVmIpN_HM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.152.0/22
Signature Algorithm: sha256WithRSAEncryption
3c:66:71:fb:2b:da:44:4a:78:f3:2e:7f:0c:e6:fc:53:b0:b8:
28:6a:9e:e8:19:cf:52:d9:6d:9b:33:9d:87:b2:d6:45:11:cb:
03:64:d3:06:f8:79:37:36:1a:ff:d6:e3:53:51:ca:4d:be:51:
18:20:b8:2a:b4:fe:b6:a8:b4:fc:61:e1:c1:e2:74:43:ea:03:
90:32:f5:38:8a:50:9e:24:75:76:c6:1f:8a:0d:ce:d8:77:12:
4e:a1:24:3a:45:82:bd:e3:b9:ae:6d:c0:54:ac:27:c3:6b:80:
00:3d:e7:24:67:1d:c7:b6:20:80:e0:dc:5b:f3:cd:72:c1:3f:
d3:86:77:f9:1a:5f:21:45:05:41:cc:45:70:b8:58:8f:27:84:
aa:9c:fa:f8:76:ba:cd:6b:94:c9:cf:00:4e:40:e5:31:7f:9a:
23:d7:cb:2e:54:2b:a8:a6:a7:ec:1a:af:ca:96:f9:79:1b:c3:
69:0d:1b:c7:be:59:42:40:1d:93:1d:eb:b5:74:64:f2:1b:b2:
a6:8d:c0:bb:5b:6a:ce:95:3a:b3:df:d7:3a:89:7f:98:d5:09:
3e:c8:d9:05:d3:7f:61:d3:40:9d:59:14:39:c2:df:cf:da:70:
5c:5c:43:04:7b:00:35:6a:fc:01:43:53:37:8a:e7:fc:1c:0b:
8e:7c:fa:32
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDRBfIMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGEx
YTAxZjc2YTQyYmU4NzE3YmVmZGNlMTY3NjIxNTk4OGE0ZGZjNzMwHhcNMjIwMTAx
MDA1MTQ5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEygwMjkwOWViNDQwNWJk
NzM1Y2I1OWJhNTc3NTgyMjllNGYwZjgwOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAwR3onNor7rRO13NeNtknan06yhtfFI/XjM/JHCXASbTpzK/A
4HLMMdvLH54gL89N6iSbyejj3JpbgQs6QMV3r2vfUR2jUB2A6hhetrmS+37/NRyz
FSccRzLxfWwbtNZXtzPmR21rv01ovxdC9GejNrdXISFfJ0X7CnFD+P9mfRH7OOas
JZ8eOr9AXYaIQXP4VaZBaF1l8EXYVVbEzW2ITzyzNmOvzxvQvqbezFdOf+z9qZUx
xxLionbzFVLzxC43Fcf63cuI5hhvcNoxAAZiDF95Ot5kskTPC4mhUi79LQ+6R0H1
Ffair+3sB8Z5OwCrxoOQC0tGL/pWksry4OrNnwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFAKQnrRAW9c1y1m6V3WCKeTw+AnvMB8GA1UdIwQYMBaAFKGgH3akK+hxe+/c
4WdiFZiKTfxzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
b2FBZmRxUXI2SEY3Nzl6aFoySVZtSXBOX0hNLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC8zMS9lZGE1NGEtNzcyYy00OWRiLWEwMTItNjEwMGNkMTVlMjYwLzEv
QXBDZXRFQmIxelhMV2JwWGRZSXA1UEQ0Q2U4LnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMS9l
ZGE1NGEtNzcyYy00OWRiLWEwMTItNjEwMGNkMTVlMjYwLzEvb2FBZmRxUXI2SEY3
Nzl6aFoySVZtSXBOX0hNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLY6YMA0GCSqGSIb3DQEBCwUAA4IB
AQA8ZnH7K9pESnjzLn8M5vxTsLgoap7oGc9S2W2bM52HstZFEcsDZNMG+Hk3Nhr/
1uNTUcpNvlEYILgqtP62qLT8YeHB4nRD6gOQMvU4ilCeJHV2xh+KDc7YdxJOoSQ6
RYK947mubcBUrCfDa4AAPeckZx3HtiCA4Nxb881ywT/Thnf5Gl8hRQVBzEVwuFiP
J4SqnPr4drrNa5TJzwBOQOUxf5oj18suVCuopqfsGq/Klvl5G8NpDRvHvllCQB2T
Heu1dGTyG7KmjcC7W2rOlTqz39c6iX+Y1Qk+yNkF039h00CdWRQ5wt/P2nBcXEME
ewA1avwBQ1M3iuf8HAuOfPoy
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:58 2023 by rpki-client on console-ams.rpki-client.org