Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0SuJsKSI6pjarkY3jiucsQfrOyI.roa
File: 0SuJsKSI6pjarkY3jiucsQfrOyI.roa (raw, json)
Hash identifier: ZRGCmyCstd21dmZWtMwETCxnXEKIUi2DAaECVlBQhfU=
Subject key identifier: D1:2B:89:B0:A4:88:EA:98:DA:AE:46:37:8E:2B:9C:B1:07:EB:3B:22
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 0184E54535D2B50ACB2B9EE1F1174D28FBD6
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0SuJsKSI6pjarkY3jiucsQfrOyI.roa
Signing time: Tue 06 Dec 2022 02:30:29 +0000
ROA not before: Tue 06 Dec 2022 02:30:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60721
IP address blocks: 45.140.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:e5:45:35:d2:b5:0a:cb:2b:9e:e1:f1:17:4d:28:fb:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Dec 6 02:30:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d12b89b0a488ea98daae46378e2b9cb107eb3b22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a1:69:76:46:0b:ee:b8:60:b6:63:c0:4c:f0:
7d:58:1e:61:d2:e6:86:23:02:a4:6b:16:8c:6c:0f:
e0:d8:79:e0:3a:5d:63:96:8a:64:a9:54:08:c8:f7:
05:24:74:16:ba:b8:2e:de:c5:fd:c9:97:b5:49:f4:
30:32:08:6f:5c:ae:5e:1d:51:22:d3:66:53:96:84:
94:f6:79:ed:fc:f3:b4:64:64:a2:e5:5a:e6:c6:17:
c7:f2:d9:f8:f8:23:da:1e:ec:db:d6:a7:f0:4e:b9:
8d:5d:5a:fe:f8:1c:74:3b:a3:8e:21:0c:50:57:98:
2a:ba:4b:09:f8:1e:13:b9:04:62:8c:09:1c:9a:e9:
a2:93:61:2f:c9:6f:56:fe:02:8f:c5:98:39:ba:17:
22:18:a9:ef:92:c6:e2:1b:5d:45:cd:16:82:65:e3:
e6:75:fd:25:03:4e:62:db:5e:04:94:0d:6e:9b:23:
52:80:50:8b:e3:4a:d2:98:10:44:74:22:c4:09:48:
6b:1a:1c:d7:79:66:3c:b9:3a:2f:b3:9e:79:2a:ba:
4b:e6:d2:26:a8:4d:a0:25:16:d6:90:a6:31:5d:b3:
e1:64:30:f4:d8:d3:41:99:f8:12:f4:b9:7c:0d:27:
8e:0e:5d:e1:2b:f6:86:97:78:9f:9b:82:f6:6f:63:
7c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:2B:89:B0:A4:88:EA:98:DA:AE:46:37:8E:2B:9C:B1:07:EB:3B:22
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0SuJsKSI6pjarkY3jiucsQfrOyI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.246.0/24
Signature Algorithm: sha256WithRSAEncryption
65:bf:1a:92:85:1b:d0:86:96:ef:82:ea:35:71:89:ed:ef:1f:
7b:8e:f2:3e:34:a5:cb:74:77:66:91:18:22:78:a8:44:10:ed:
9f:d7:78:bf:31:db:5d:60:81:9f:e7:26:71:3e:85:d5:84:e4:
09:fc:16:81:81:48:97:8c:e3:53:60:06:e0:14:db:c7:44:c8:
4e:06:ae:83:64:d4:df:cd:c3:49:02:00:9b:d6:83:2a:dc:36:
18:ee:64:24:ef:4f:05:47:03:41:e3:69:b8:a0:72:2c:32:38:
89:e0:3e:3e:a5:ac:15:fa:75:81:43:07:52:95:ec:6f:bf:e5:
ed:11:9c:68:76:da:42:d9:a8:b2:53:2f:55:32:48:94:cd:fb:
eb:fd:ce:a5:9d:98:ed:81:e2:0b:0f:62:68:80:7b:65:60:73:
62:3a:4b:19:fb:18:86:3e:72:b4:7d:70:4f:36:32:a2:84:63:
61:ba:ea:c2:8c:6e:12:b8:10:bc:e0:1b:ae:96:b4:e0:f5:d6:
b5:28:63:53:51:ff:7c:65:4a:42:7e:99:30:14:b7:8d:1a:80:
5b:4d:e7:2b:97:d2:2f:c1:d5:e9:11:05:29:d4:0b:36:a0:9e:
5c:fb:cb:a8:41:fa:e1:88:b1:c8:62:ea:44:22:ae:63:ad:0b:
e7:66:7b:e3
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYTlRTXStQrLK57h8RdNKPvWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQxZGUxMjRlMGY4YWRiNGU3ZDk1NzZjZWFlMzI1ZjY2OGRk
MjI0YjEwHhcNMjIxMjA2MDIzMDI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMTJiODliMGE0ODhlYTk4ZGFhZTQ2Mzc4ZTJiOWNiMTA3ZWIzYjIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqKFpdkYL7rhgtmPATPB9WB5h0uaG
IwKkaxaMbA/g2HngOl1jlopkqVQIyPcFJHQWurgu3sX9yZe1SfQwMghvXK5eHVEi
02ZTloSU9nnt/PO0ZGSi5VrmxhfH8tn4+CPaHuzb1qfwTrmNXVr++Bx0O6OOIQxQ
V5gquksJ+B4TuQRijAkcmumik2EvyW9W/gKPxZg5uhciGKnvksbiG11FzRaCZePm
df0lA05i214ElA1umyNSgFCL40rSmBBEdCLECUhrGhzXeWY8uTovs555KrpL5tIm
qE2gJRbWkKYxXbPhZDD02NNBmfgS9Ll8DSeODl3hK/aGl3ifm4L2b2N81wIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNEribCkiOqY2q5GN44rnLEH6zsiMB8GA1UdIwQY
MBaAFNHeEk4PittOfZV2zq4yX2aN0iSxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGQ0U1RnLUsyMDU5bFhiT3JqSmZabzNTSkxFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9hYmUxMzQtMDA5My00NjUyLTkwNTct
NGY0YzliMzQzZTkwLzEvMFN1SnNLU0k2cGphcmtZM2ppdWNzUWZyT3lJLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYS9hYmUxMzQtMDA5My00NjUyLTkwNTctNGY0YzliMzQzZTkw
LzEvMGQ0U1RnLUsyMDU5bFhiT3JqSmZabzNTSkxFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYz2MA0G
CSqGSIb3DQEBCwUAA4IBAQBlvxqShRvQhpbvguo1cYnt7x97jvI+NKXLdHdmkRgi
eKhEEO2f13i/MdtdYIGf5yZxPoXVhOQJ/BaBgUiXjONTYAbgFNvHRMhOBq6DZNTf
zcNJAgCb1oMq3DYY7mQk708FRwNB42m4oHIsMjiJ4D4+pawV+nWBQwdSlexvv+Xt
EZxodtpC2aiyUy9VMkiUzfvr/c6lnZjtgeILD2JogHtlYHNiOksZ+xiGPnK0fXBP
NjKihGNhuurCjG4SuBC84BuulrTg9da1KGNTUf98ZUpCfpkwFLeNGoBbTecrl9Iv
wdXpEQUp1As2oJ5c+8uoQfrhiLHIYupEIq5jrQvnZnvj
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:31 2023 by rpki-client on console-ams.rpki-client.org