Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/a5OHGxzIhl0vG2ew6I-ROJ4XB_E.roa
File: a5OHGxzIhl0vG2ew6I-ROJ4XB_E.roa (raw, json)
Hash identifier: BHoqHvNmcR3fLdAp8fVcT3x24f6caH8/mA0jvRO13eA=
Subject key identifier: 6B:93:87:1B:1C:C8:86:5D:2F:1B:67:B0:E8:8F:91:38:9E:17:07:F1
Certificate issuer: /CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Certificate serial: 02969CE6
Authority key identifier: D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/a5OHGxzIhl0vG2ew6I-ROJ4XB_E.roa
Signing time: Wed 23 Feb 2022 14:20:37 +0000
ROA not before: Wed 23 Feb 2022 14:20:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49999
IP address blocks: 45.140.246.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43424998 (0x2969ce6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1de124e0f8adb4e7d9576ceae325f668dd224b1
Validity
Not Before: Feb 23 14:20:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6b93871b1cc8865d2f1b67b0e88f91389e1707f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:59:76:4a:d7:19:de:25:a0:bf:2b:c7:3f:6b:
20:2c:ee:67:c7:40:98:9a:f6:ad:74:5b:7c:bb:a2:
38:db:2e:a9:f0:d4:2c:6e:6b:58:70:68:9c:0c:35:
7c:e9:8c:59:f1:d5:61:25:53:69:80:ba:56:4f:a2:
e2:bd:f8:b2:a0:06:e5:01:7b:5b:2b:ea:78:5c:00:
df:3b:f9:39:13:18:aa:2e:ec:83:17:a0:c5:17:43:
c1:9d:a6:56:a9:bb:3f:b3:82:e2:74:8e:3f:dd:bb:
13:a2:2b:ad:58:ff:94:8e:b5:2d:62:5e:c4:bb:bd:
45:ea:75:a6:5b:72:a3:50:6c:0e:53:79:1b:71:29:
66:21:ef:29:ed:ac:17:9c:5c:05:cd:84:64:f6:86:
c3:2f:47:a3:9f:56:35:94:46:97:47:28:20:fb:7d:
81:e1:28:02:60:82:d8:d7:6c:da:67:69:12:0d:8c:
5f:e2:f3:db:d5:c9:a4:da:1c:84:02:56:31:ce:2a:
b6:04:d8:cd:78:3b:c2:0e:2c:2c:5a:88:98:dc:c3:
e2:4b:7e:29:d9:e4:c3:00:9c:bc:7f:62:c9:f8:53:
e0:03:9d:7b:2f:21:a0:d2:b5:56:41:b1:02:48:ca:
f5:e3:37:d9:d6:59:31:96:20:78:3d:71:0d:a1:fd:
00:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:93:87:1B:1C:C8:86:5D:2F:1B:67:B0:E8:8F:91:38:9E:17:07:F1
X509v3 Authority Key Identifier:
keyid:D1:DE:12:4E:0F:8A:DB:4E:7D:95:76:CE:AE:32:5F:66:8D:D2:24:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d4STg-K2059lXbOrjJfZo3SJLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/a5OHGxzIhl0vG2ew6I-ROJ4XB_E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/abe134-0093-4652-9057-4f4c9b343e90/1/0d4STg-K2059lXbOrjJfZo3SJLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.246.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:2d:81:70:5c:31:ee:71:35:80:0d:a1:48:b4:02:bd:c8:6f:
12:35:25:a2:82:41:60:3b:d8:4e:34:d0:58:e7:e1:84:da:ca:
1a:f8:0d:7f:33:cf:98:a6:87:59:6f:0a:12:58:83:b6:7d:2e:
83:d4:5a:64:69:9a:6a:4c:f6:fc:ab:e8:75:96:16:ff:20:57:
81:2b:17:f4:3d:42:60:cf:fb:70:47:ae:9f:a4:a5:b8:2d:ef:
74:12:5b:61:6a:b6:f5:b7:f9:8b:98:47:74:72:26:8d:ee:7d:
e5:7b:a1:2b:ad:19:ba:f0:df:b0:c6:9c:f4:dc:2d:d7:75:25:
ca:8c:d0:b9:4e:54:f8:84:56:02:98:51:09:0e:57:4f:31:20:
d3:e2:81:95:84:63:b6:cc:64:a0:5d:0c:e2:24:66:d9:00:2e:
47:c4:b9:9a:f0:46:3d:7f:2a:13:3a:57:83:ee:7f:96:32:90:
31:5f:06:0a:2b:cf:c3:76:66:d8:46:74:02:0d:0d:8b:40:cd:
10:7e:a1:6b:56:8d:9c:9a:4a:61:81:ad:ab:a6:d8:d3:b9:10:
19:78:9d:7e:f5:82:3d:51:d5:7e:7c:ee:78:06:c0:f5:4f:8e:
25:e4:b6:a9:86:34:92:3e:bc:dd:74:bf:18:72:24:a2:c8:0b:
f2:40:56:23
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEApac5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
MWRlMTI0ZTBmOGFkYjRlN2Q5NTc2Y2VhZTMyNWY2NjhkZDIyNGIxMB4XDTIyMDIy
MzE0MjAzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmI5Mzg3MWIxY2M4
ODY1ZDJmMWI2N2IwZTg4ZjkxMzg5ZTE3MDdmMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK1ZdkrXGd4loL8rxz9rICzuZ8dAmJr2rXRbfLuiONsuqfDU
LG5rWHBonAw1fOmMWfHVYSVTaYC6Vk+i4r34sqAG5QF7WyvqeFwA3zv5ORMYqi7s
gxegxRdDwZ2mVqm7P7OC4nSOP927E6IrrVj/lI61LWJexLu9Rep1pltyo1BsDlN5
G3EpZiHvKe2sF5xcBc2EZPaGwy9Ho59WNZRGl0coIPt9geEoAmCC2Nds2mdpEg2M
X+Lz29XJpNochAJWMc4qtgTYzXg7wg4sLFqImNzD4kt+KdnkwwCcvH9iyfhT4AOd
ey8hoNK1VkGxAkjK9eM32dZZMZYgeD1xDaH9ABUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRrk4cbHMiGXS8bZ7Doj5E4nhcH8TAfBgNVHSMEGDAWgBTR3hJOD4rbTn2V
ds6uMl9mjdIksTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzBkNFNUZy1LMjA1OWxYYk9yakpmWm8zU0pMRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2EvYWJlMTM0LTAwOTMtNDY1Mi05MDU3LTRmNGM5YjM0M2U5MC8x
L2E1T0hHeHpJaGwwdkcyZXc2SS1ST0o0WEJfRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Ev
YWJlMTM0LTAwOTMtNDY1Mi05MDU3LTRmNGM5YjM0M2U5MC8xLzBkNFNUZy1LMjA1
OWxYYk9yakpmWm8zU0pMRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2M9jANBgkqhkiG9w0BAQsFAAOC
AQEAxy2BcFwx7nE1gA2hSLQCvchvEjUlooJBYDvYTjTQWOfhhNrKGvgNfzPPmKaH
WW8KEliDtn0ug9RaZGmaakz2/KvodZYW/yBXgSsX9D1CYM/7cEeun6SluC3vdBJb
YWq29bf5i5hHdHImje595XuhK60ZuvDfsMac9Nwt13UlyozQuU5U+IRWAphRCQ5X
TzEg0+KBlYRjtsxkoF0M4iRm2QAuR8S5mvBGPX8qEzpXg+5/ljKQMV8GCivPw3Zm
2EZ0Ag0Ni0DNEH6ha1aNnJpKYYGtq6bY07kQGXidfvWCPVHVfnzueAbA9U+OJeS2
qYY0kj683XS/GHIkosgL8kBWIw==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:50:32 2023 by rpki-client on console-ams.rpki-client.org