Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/kV_07DNVwYpDdvUOdNKJOg94o2g.roa
File: kV_07DNVwYpDdvUOdNKJOg94o2g.roa (raw, json)
Hash identifier: ROIgYQL6YnGFHXhsQpS6OClgV18PxOrc6BaDFQjvoy8=
Subject key identifier: 91:5F:F4:EC:33:55:C1:8A:43:76:F5:0E:74:D2:89:3A:0F:78:A3:68
Certificate issuer: /CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Certificate serial: 067F7E52
Authority key identifier: D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/kV_07DNVwYpDdvUOdNKJOg94o2g.roa
Signing time: Sat 01 Jan 2022 07:00:54 +0000
ROA not before: Sat 01 Jan 2022 07:00:54 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 399641
IP address blocks: 45.154.157.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109018706 (0x67f7e52)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d93da2019909d9fc37829fd9ec29d948ecff7c92
Validity
Not Before: Jan 1 07:00:54 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=915ff4ec3355c18a4376f50e74d2893a0f78a368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:3c:73:10:08:89:11:8c:8e:43:cf:c4:ba:8a:
82:fc:88:f3:36:90:62:e8:4b:93:0c:f3:5c:1a:87:
6e:d5:44:ef:ab:7a:f9:84:11:1f:0a:fc:5b:6e:35:
72:b4:f4:48:d3:11:16:dc:cd:76:3b:d9:91:42:f0:
dc:aa:ac:6d:08:64:78:ea:9f:1a:a6:2e:86:30:f9:
e2:33:1a:f0:58:e6:44:fa:34:a9:e2:7f:15:6d:59:
1a:9f:61:b5:9a:d0:da:4c:5b:03:67:c3:38:71:45:
36:46:d7:cc:bb:b8:9b:24:b3:b5:f1:8f:57:97:21:
d7:c0:87:89:8b:7c:a9:f8:45:cc:d0:51:5f:24:5a:
53:f8:ba:2d:0e:24:29:84:e2:8e:a6:8b:32:bc:53:
1f:60:a2:b1:08:6e:7f:73:dd:f9:13:c9:3b:a9:7c:
c3:6c:9c:d7:26:8c:c2:fc:a9:ea:39:14:96:9d:e8:
bb:cc:2d:8a:83:8e:bb:30:a6:eb:76:35:ba:51:84:
10:9c:12:00:54:6b:34:ff:de:93:bb:b5:aa:7b:08:
c2:65:df:b3:71:fd:a7:0c:ef:9d:a1:77:5b:6e:19:
63:34:8e:8d:80:98:fd:de:ff:2b:98:4a:b3:66:b4:
bd:02:e0:4b:38:fe:dc:4e:f6:3e:39:36:0e:3e:96:
2a:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:5F:F4:EC:33:55:C1:8A:43:76:F5:0E:74:D2:89:3A:0F:78:A3:68
X509v3 Authority Key Identifier:
keyid:D9:3D:A2:01:99:09:D9:FC:37:82:9F:D9:EC:29:D9:48:EC:FF:7C:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/kV_07DNVwYpDdvUOdNKJOg94o2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/47afa3-ce31-4060-a078-f5addddf1ec5/1/2T2iAZkJ2fw3gp_Z7CnZSOz_fJI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.154.157.0/24
Signature Algorithm: sha256WithRSAEncryption
8b:e8:88:04:aa:bc:40:8c:c9:2d:1e:02:fc:4c:d1:b2:e0:d1:
b4:b2:54:a9:be:17:8b:56:31:fb:55:e5:1c:c8:0b:d1:54:f7:
ea:15:f7:d4:ca:5f:fd:ff:99:64:62:53:39:03:9a:d1:20:b3:
ea:ac:2d:f0:62:51:0a:94:31:0b:45:15:e6:a9:66:ba:45:a8:
47:10:04:6a:02:13:8b:d3:c8:0c:27:61:36:16:d2:a3:31:2c:
20:8a:f3:de:52:83:b6:b6:08:88:e0:1d:b3:66:27:a6:51:4c:
38:a5:bb:99:5d:c5:ba:dc:2c:85:78:d4:4b:46:ee:95:86:81:
b2:2b:b8:f0:e3:b0:2d:f7:4b:5f:69:7f:44:ff:6a:92:c9:75:
a2:e8:4e:9c:cc:d0:08:f0:b4:60:7a:7a:92:f7:5d:45:3f:8e:
0d:05:88:cd:d9:b4:1b:b0:7f:89:64:6d:eb:57:0d:e8:d2:73:
67:6c:47:cd:01:fc:4f:1b:37:a8:c5:9b:16:7d:a9:c2:8e:c4:
2d:0c:ca:22:0d:c1:e4:e5:1b:a7:68:de:4f:b7:14:5c:a4:31:
fc:c9:a2:ea:43:b1:a8:c3:1a:5e:f8:e0:9e:4a:42:fd:01:6d:
ca:bd:56:77:f7:6b:8f:b7:dc:20:bd:40:4e:3e:bb:87:93:2b:
d7:30:bb:ce
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBn9+UjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
OTNkYTIwMTk5MDlkOWZjMzc4MjlmZDllYzI5ZDk0OGVjZmY3YzkyMB4XDTIyMDEw
MTA3MDA1NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTE1ZmY0ZWMzMzU1
YzE4YTQzNzZmNTBlNzRkMjg5M2EwZjc4YTM2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL88cxAIiRGMjkPPxLqKgvyI8zaQYuhLkwzzXBqHbtVE76t6
+YQRHwr8W241crT0SNMRFtzNdjvZkULw3KqsbQhkeOqfGqYuhjD54jMa8FjmRPo0
qeJ/FW1ZGp9htZrQ2kxbA2fDOHFFNkbXzLu4mySztfGPV5ch18CHiYt8qfhFzNBR
XyRaU/i6LQ4kKYTijqaLMrxTH2CisQhuf3Pd+RPJO6l8w2yc1yaMwvyp6jkUlp3o
u8wtioOOuzCm63Y1ulGEEJwSAFRrNP/ek7u1qnsIwmXfs3H9pwzvnaF3W24ZYzSO
jYCY/d7/K5hKs2a0vQLgSzj+3E72Pjk2Dj6WKpMCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSRX/TsM1XBikN29Q500ok6D3ijaDAfBgNVHSMEGDAWgBTZPaIBmQnZ/DeC
n9nsKdlI7P98kjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzJUMmlBWmtKMmZ3M2dwX1o3Q25aU096X2ZKSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzIvNDdhZmEzLWNlMzEtNDA2MC1hMDc4LWY1YWRkZGRmMWVjNS8x
L2tWXzA3RE5Wd1lwRGR2VU9kTktKT2c5NG8yZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzIv
NDdhZmEzLWNlMzEtNDA2MC1hMDc4LWY1YWRkZGRmMWVjNS8xLzJUMmlBWmtKMmZ3
M2dwX1o3Q25aU096X2ZKSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2anTANBgkqhkiG9w0BAQsFAAOC
AQEAi+iIBKq8QIzJLR4C/EzRsuDRtLJUqb4Xi1Yx+1XlHMgL0VT36hX31Mpf/f+Z
ZGJTOQOa0SCz6qwt8GJRCpQxC0UV5qlmukWoRxAEagITi9PIDCdhNhbSozEsIIrz
3lKDtrYIiOAds2YnplFMOKW7mV3FutwshXjUS0bulYaBsiu48OOwLfdLX2l/RP9q
ksl1ouhOnMzQCPC0YHp6kvddRT+ODQWIzdm0G7B/iWRt61cN6NJzZ2xHzQH8Txs3
qMWbFn2pwo7ELQzKIg3B5OUbp2jeT7cUXKQx/Mmi6kOxqMMaXvjgnkpC/QFtyr1W
d/drj7fcIL1ATj67h5Mr1zC7zg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:59 2023 by rpki-client on console-ams.rpki-client.org