Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BcMEVzocb3D6Kin3S2piSimRBWg.roa
File: BcMEVzocb3D6Kin3S2piSimRBWg.roa (raw, json)
Hash identifier: LeR+7qLZSyhAKn18RuVJf0Gep5Qh6MBLyLGLjml5zzU=
Subject key identifier: 05:C3:04:57:3A:1C:6F:70:FA:2A:29:F7:4B:6A:62:4A:29:91:05:68
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 07C85EBB
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BcMEVzocb3D6Kin3S2piSimRBWg.roa
Signing time: Wed 18 May 2022 08:46:16 +0000
ROA not before: Wed 18 May 2022 08:46:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43260
IP address blocks: 45.11.188.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130571963 (0x7c85ebb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: May 18 08:46:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05c304573a1c6f70fa2a29f74b6a624a29910568
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b1:41:84:8e:9e:58:2a:86:64:af:6d:d4:2b:
a3:bd:7a:a6:59:16:e9:4b:65:25:a7:19:e4:8a:cb:
25:17:c5:cf:bf:4c:70:63:82:f3:4f:fa:1f:23:4b:
ae:30:b1:4a:a5:6e:97:a5:ba:c8:01:3a:f1:41:d7:
70:49:72:9c:f0:a0:e0:e1:e0:e0:12:fd:e3:07:1e:
ae:67:73:10:ad:0b:ea:23:5d:6e:c4:2c:96:14:67:
43:33:a5:52:dc:82:b7:22:98:9d:08:f6:aa:69:3d:
42:36:b3:00:ee:2c:98:fc:39:99:7e:55:8e:84:77:
ef:9f:88:cf:18:65:63:0d:80:f9:11:60:2c:6b:60:
e1:56:b3:4a:b7:c0:cc:d5:f0:7c:5c:78:55:04:ab:
f1:2e:82:83:f6:19:07:11:f6:33:dd:9b:a3:f0:e2:
f8:4a:6d:47:82:c4:0f:e1:53:cb:28:3b:59:42:66:
cd:15:3c:7f:85:6a:ca:42:5b:d7:c6:19:46:28:3a:
b5:03:f2:f4:d9:8c:13:dc:a0:19:4d:9b:2c:be:5c:
1c:89:a6:af:0f:74:b5:46:65:57:86:d7:44:e0:5b:
d8:12:ff:82:8a:87:89:74:68:e6:ad:07:08:96:17:
3d:e8:d9:a1:e2:51:37:16:17:4f:3b:5b:44:86:30:
ee:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:C3:04:57:3A:1C:6F:70:FA:2A:29:F7:4B:6A:62:4A:29:91:05:68
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/BcMEVzocb3D6Kin3S2piSimRBWg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.188.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:bf:33:12:21:9f:cf:b0:5e:6a:81:19:e9:f9:23:f8:6d:49:
61:2a:fc:1e:4e:76:0b:39:a1:90:85:74:5f:ac:32:6f:bb:93:
a4:38:4b:c8:57:57:fb:cd:04:4a:67:96:08:cf:e0:0d:15:07:
bf:35:c9:d4:73:65:f5:c2:20:83:50:62:79:69:21:56:74:4e:
2f:ad:83:27:f7:66:a4:20:2b:85:e0:51:61:96:ac:df:5d:cf:
cd:9c:5c:3e:3d:a7:6b:b0:0a:ea:6f:57:6f:da:b9:9f:b1:67:
b9:24:1c:f4:d4:81:41:6e:1b:d6:47:c3:2e:71:80:af:97:1d:
f0:c3:96:5a:90:ff:e7:9e:8a:03:f1:9c:48:57:ae:f0:20:c7:
2f:ac:8f:bc:de:66:6b:8a:88:3c:c8:85:93:56:15:4c:65:5c:
6a:7f:21:a2:87:88:2d:95:83:db:a2:14:5a:f6:01:d3:76:1a:
b2:78:db:80:18:7e:07:d2:71:f9:8f:ca:db:76:cf:83:3d:25:
32:d1:56:d2:a8:53:7e:a5:55:1f:95:da:4f:10:e0:38:c0:a1:
1e:90:d5:ea:78:ef:aa:ca:ce:ac:0f:0a:8e:7a:d6:27:35:5b:
71:65:a1:c9:60:07:18:a5:07:ba:ab:9c:56:e9:14:0f:12:09:
a5:77:f4:83
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB8heuzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OTNkYTIwMTk5MDlkOWZjMzc4MjlmZDllYzI5ZDk0OGVjZmY3YzkyMB4XDTIyMDUx
ODA4NDYxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMDVjMzA0NTczYTFj
NmY3MGZhMmEyOWY3NGI2YTYyNGEyOTkxMDU2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK2xQYSOnlgqhmSvbdQro716plkW6UtlJacZ5IrLJRfFz79M
cGOC80/6HyNLrjCxSqVul6W6yAE68UHXcElynPCg4OHg4BL94wcermdzEK0L6iNd
bsQslhRnQzOlUtyCtyKYnQj2qmk9QjazAO4smPw5mX5VjoR375+IzxhlYw2A+RFg
LGtg4VazSrfAzNXwfFx4VQSr8S6Cg/YZBxH2M92bo/Di+EptR4LED+FTyyg7WUJm
zRU8f4VqykJb18YZRig6tQPy9NmME9ygGU2bLL5cHImmrw90tUZlV4bXROBb2BL/
goqHiXRo5q0HCJYXPejZoeJRNxYXTztbRIYw7v0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQFwwRXOhxvcPoqKfdLamJKKZEFaDAfBgNVHSMEGDAWgBTZPaIBmQnZ/DeC
n9nsKdlI7P98kjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJUMmlBWmtKMmZ3M2dwX1o3Q25aU096X2ZKSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvNDdhZmEzLWNlMzEtNDA2MC1hMDc4LWY1YWRkZGRmMWVjNS8x
L0JjTUVWem9jYjNENktpbjNTMnBpU2ltUkJXZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
NDdhZmEzLWNlMzEtNDA2MC1hMDc4LWY1YWRkZGRmMWVjNS8xLzJUMmlBWmtKMmZ3
M2dwX1o3Q25aU096X2ZKSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0LvDANBgkqhkiG9w0BAQsFAAOC
AQEApr8zEiGfz7BeaoEZ6fkj+G1JYSr8Hk52CzmhkIV0X6wyb7uTpDhLyFdX+80E
SmeWCM/gDRUHvzXJ1HNl9cIgg1BieWkhVnROL62DJ/dmpCArheBRYZas313PzZxc
Pj2na7AK6m9Xb9q5n7FnuSQc9NSBQW4b1kfDLnGAr5cd8MOWWpD/556KA/GcSFeu
8CDHL6yPvN5ma4qIPMiFk1YVTGVcan8hooeILZWD26IUWvYB03YasnjbgBh+B9Jx
+Y/K23bPgz0lMtFW0qhTfqVVH5XaTxDgOMChHpDV6njvqsrOrA8KjnrWJzVbcWWh
yWAHGKUHuqucVukUDxIJpXf0gw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:13 2023 by rpki-client on console-fra.rpki-client.org