Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/Va9CSIZcABXOEB0ghzdUodpJ2dE.roa
File: Va9CSIZcABXOEB0ghzdUodpJ2dE.roa (raw, json)
Hash identifier: JHzUS8B9lRBqC+srXPIde0e4pU0/C6b4dJ82Ds9AT78=
Subject key identifier: 55:AF:42:48:86:5C:00:15:CE:10:1D:20:87:37:54:A1:DA:49:D9:D1
Certificate issuer: /CN=be3e6903917c532a605ffb25e65f91158be6c0e6
Certificate serial: 07F10B87
Authority key identifier: BE:3E:69:03:91:7C:53:2A:60:5F:FB:25:E6:5F:91:15:8B:E6:C0:E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vj5pA5F8UypgX_sl5l-RFYvmwOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/Va9CSIZcABXOEB0ghzdUodpJ2dE.roa
Signing time: Tue 21 Jun 2022 10:45:44 +0000
ROA not before: Tue 21 Jun 2022 10:45:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8896
IP address blocks: 45.138.236.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133237639 (0x7f10b87)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be3e6903917c532a605ffb25e65f91158be6c0e6
Validity
Not Before: Jun 21 10:45:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=55af4248865c0015ce101d20873754a1da49d9d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:2a:95:ca:13:a6:f6:15:b1:29:e3:a0:7b:0b:
ea:db:1f:88:81:9c:3e:e5:21:f8:58:49:15:1c:54:
16:2b:23:32:f8:cb:fd:32:e6:31:46:46:b5:2d:19:
72:fb:2e:42:8b:14:be:5f:ff:bf:fd:6c:e5:de:72:
f2:5b:53:b9:fc:6a:26:b0:78:d1:d7:c7:ba:64:fc:
3d:2c:8a:e7:c9:8d:a2:57:4b:90:86:0f:1b:32:42:
c6:9a:e3:9e:b4:df:46:d7:66:b9:05:2b:c6:11:e5:
5f:3d:66:d5:3f:14:aa:e1:c2:d7:f3:eb:0d:01:c3:
79:56:d3:67:fd:9f:0a:6b:61:81:f6:81:7a:ce:27:
bd:cc:34:94:10:79:a4:cb:45:73:31:54:93:8e:46:
7f:f1:44:09:80:89:3a:3a:6c:34:c6:0d:cd:e7:73:
35:a1:99:b7:4a:86:24:04:e5:db:0d:78:7b:6c:2b:
8e:35:73:b1:5a:af:76:20:c9:79:63:49:ce:e4:46:
b9:de:f8:a9:12:86:9a:d3:50:8d:84:cb:66:06:ab:
02:fa:df:f8:8e:e7:03:0e:ce:61:d4:a8:d2:6f:b8:
a7:73:a3:95:25:db:7a:18:c5:b2:bf:51:9b:64:84:
a3:d7:dd:27:39:74:ba:da:b0:ee:3b:e8:09:74:e0:
db:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:AF:42:48:86:5C:00:15:CE:10:1D:20:87:37:54:A1:DA:49:D9:D1
X509v3 Authority Key Identifier:
keyid:BE:3E:69:03:91:7C:53:2A:60:5F:FB:25:E6:5F:91:15:8B:E6:C0:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vj5pA5F8UypgX_sl5l-RFYvmwOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/Va9CSIZcABXOEB0ghzdUodpJ2dE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/911df1-1aca-40de-a248-8d51e765daec/1/vj5pA5F8UypgX_sl5l-RFYvmwOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.236.0/22
Signature Algorithm: sha256WithRSAEncryption
9b:ff:f4:be:88:fe:38:a1:67:fa:54:0b:79:8c:2e:5f:01:4e:
f2:99:c9:2b:24:61:60:35:60:d9:c5:db:29:82:4d:27:1d:bd:
16:67:b2:ea:a1:c2:21:e4:02:8d:6f:ff:da:f9:5d:8d:58:91:
dc:d6:40:69:98:38:42:1c:3b:f2:de:e9:6e:06:7a:53:28:50:
37:50:0d:08:d1:d8:34:60:c4:ec:d5:0a:69:f7:de:08:df:2e:
f9:8b:11:5a:5e:45:d9:c7:eb:8f:28:e1:85:50:79:e6:8d:13:
58:31:7e:d8:e2:51:7c:4d:50:fa:d1:f7:11:99:1b:5d:e5:9e:
28:52:cc:66:cf:51:65:16:36:bb:78:50:22:16:9a:0b:5d:e1:
d7:5c:b8:ad:19:49:e0:e6:6e:1e:d1:34:ec:bb:b2:86:26:1c:
37:83:99:53:0c:18:a1:54:40:a8:43:91:96:10:34:b8:32:01:
53:71:6d:14:18:b5:6a:5a:db:d4:6f:a9:8e:d9:83:cf:df:d1:
be:fb:76:a6:67:f8:cd:79:bd:f0:8d:56:6c:ea:4a:c9:7d:16:
19:17:4b:ba:f0:e3:71:02:08:2d:f6:9f:45:86:a6:de:65:72:
91:e7:6e:d8:51:e4:1d:45:f1:30:cb:6f:b9:c9:4a:e6:c9:21:
8b:cd:60:73
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB/ELhzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZTNlNjkwMzkxN2M1MzJhNjA1ZmZiMjVlNjVmOTExNThiZTZjMGU2MB4XDTIyMDYy
MTEwNDU0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTVhZjQyNDg4NjVj
MDAxNWNlMTAxZDIwODczNzU0YTFkYTQ5ZDlkMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPYqlcoTpvYVsSnjoHsL6tsfiIGcPuUh+FhJFRxUFisjMvjL
/TLmMUZGtS0ZcvsuQosUvl//v/1s5d5y8ltTufxqJrB40dfHumT8PSyK58mNoldL
kIYPGzJCxprjnrTfRtdmuQUrxhHlXz1m1T8UquHC1/PrDQHDeVbTZ/2fCmthgfaB
es4nvcw0lBB5pMtFczFUk45Gf/FECYCJOjpsNMYNzedzNaGZt0qGJATl2w14e2wr
jjVzsVqvdiDJeWNJzuRGud74qRKGmtNQjYTLZgarAvrf+I7nAw7OYdSo0m+4p3Oj
lSXbehjFsr9Rm2SEo9fdJzl0utqw7jvoCXTg28cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRVr0JIhlwAFc4QHSCHN1Sh2knZ0TAfBgNVHSMEGDAWgBS+PmkDkXxTKmBf
+yXmX5EVi+bA5jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZqNXBBNUY4VXlwZ1hfc2w1bC1SRll2bXdPWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvMzYvOTExZGYxLTFhY2EtNDBkZS1hMjQ4LThkNTFlNzY1ZGFlYy8x
L1ZhOUNTSVpjQUJYT0VCMGdoemRVb2RwSjJkRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzYv
OTExZGYxLTFhY2EtNDBkZS1hMjQ4LThkNTFlNzY1ZGFlYy8xL3ZqNXBBNUY4VXlw
Z1hfc2w1bC1SRll2bXdPWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2K7DANBgkqhkiG9w0BAQsFAAOC
AQEAm//0voj+OKFn+lQLeYwuXwFO8pnJKyRhYDVg2cXbKYJNJx29Fmey6qHCIeQC
jW//2vldjViR3NZAaZg4Qhw78t7pbgZ6UyhQN1ANCNHYNGDE7NUKaffeCN8u+YsR
Wl5F2cfrjyjhhVB55o0TWDF+2OJRfE1Q+tH3EZkbXeWeKFLMZs9RZRY2u3hQIhaa
C13h11y4rRlJ4OZuHtE07LuyhiYcN4OZUwwYoVRAqEORlhA0uDIBU3FtFBi1alrb
1G+pjtmDz9/Rvvt2pmf4zXm98I1WbOpKyX0WGRdLuvDjcQIILfafRYam3mVykedu
2FHkHUXxMMtvuclK5skhi81gcw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:46:30 2023 by rpki-client on console-fra.rpki-client.org