Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/2UXP1CWCj2vI1oN_OqQ_ODbQ0gc.roa
File: 2UXP1CWCj2vI1oN_OqQ_ODbQ0gc.roa (raw, json)
Hash identifier: QshGHu9gTIAG6w5GxrFl2dcRizPHLQvsqOnbSq3Q7xc=
Subject key identifier: D9:45:CF:D4:25:82:8F:6B:C8:D6:83:7F:3A:A4:3F:38:36:D0:D2:07
Certificate issuer: /CN=42aabee3542872458664292fa592e3f75e1abad4
Certificate serial: 07D2E012
Authority key identifier: 42:AA:BE:E3:54:28:72:45:86:64:29:2F:A5:92:E3:F7:5E:1A:BA:D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Qqq-41QockWGZCkvpZLj914autQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/2UXP1CWCj2vI1oN_OqQ_ODbQ0gc.roa
Signing time: Sat 01 Jan 2022 10:56:41 +0000
ROA not before: Sat 01 Jan 2022 10:56:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49696
IP address blocks: 45.94.84.0/22 maxlen: 22
2a0e:3040::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131260434 (0x7d2e012)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42aabee3542872458664292fa592e3f75e1abad4
Validity
Not Before: Jan 1 10:56:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d945cfd425828f6bc8d6837f3aa43f3836d0d207
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:16:13:8a:a4:9c:25:b3:bf:23:a8:a7:5a:fe:
2f:d9:7b:57:fd:3f:33:a0:76:05:35:4b:4d:37:b5:
40:37:db:22:e1:ba:4a:98:42:cb:77:d5:0b:98:05:
70:dd:78:96:a8:37:71:a5:1c:78:47:49:4a:40:bc:
2d:8c:00:31:ba:f8:9b:6e:5d:d7:6e:47:f2:4d:4f:
19:c6:12:03:b6:c6:80:6d:66:5e:b8:e0:f4:95:45:
cc:fc:83:a0:a4:84:e4:a2:2b:8c:69:98:7b:da:de:
21:6e:f0:74:f0:3c:53:f1:ce:0a:46:06:d8:66:34:
4b:76:7a:d7:c4:38:9c:cf:e4:10:24:63:85:0a:3d:
02:25:6d:71:f9:cd:14:04:40:7e:15:b3:89:c6:9f:
4a:03:15:86:cf:21:24:2f:4f:8e:ac:5b:1f:f5:9c:
4d:64:7b:c4:e6:a5:d0:95:40:77:85:19:26:be:55:
54:50:b2:2f:92:6a:c1:4b:d7:6e:68:01:7a:f1:82:
79:7f:5a:f5:15:e3:b0:82:49:7b:45:11:94:d9:08:
f8:55:7d:31:56:60:a4:0a:4b:8a:d0:23:9d:2a:af:
d4:93:d0:30:45:cd:3e:e8:23:82:03:18:c9:db:a6:
88:e4:d4:b4:a0:09:36:aa:3c:1f:38:7f:c6:f9:70:
26:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:45:CF:D4:25:82:8F:6B:C8:D6:83:7F:3A:A4:3F:38:36:D0:D2:07
X509v3 Authority Key Identifier:
keyid:42:AA:BE:E3:54:28:72:45:86:64:29:2F:A5:92:E3:F7:5E:1A:BA:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Qqq-41QockWGZCkvpZLj914autQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/2UXP1CWCj2vI1oN_OqQ_ODbQ0gc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/c989ab-840c-4023-b842-ab3bdf8e5c48/1/Qqq-41QockWGZCkvpZLj914autQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.84.0/22
IPv6:
2a0e:3040::/32
Signature Algorithm: sha256WithRSAEncryption
8c:0e:16:32:a7:13:40:da:5d:c9:09:7e:3a:0e:82:27:c8:93:
af:fb:fa:0d:92:39:fb:23:2a:00:00:25:36:2e:e2:a8:21:8c:
a9:f5:6d:63:4b:d2:14:d2:e6:72:47:78:34:ed:03:ba:31:92:
98:2f:46:9e:af:0e:4e:c1:00:40:75:8e:33:25:dc:e1:e2:39:
ae:b0:61:7e:bc:7a:77:be:fb:92:80:8a:05:79:ca:e6:52:66:
00:65:3f:d7:2c:bc:48:52:fc:ce:9c:83:73:57:11:46:d1:9b:
f1:ac:96:2b:3a:6b:63:a0:24:ff:13:df:f6:51:cc:69:96:e1:
11:d4:75:d1:77:96:5d:48:01:c0:5e:f8:d5:c9:cf:58:12:a6:
74:1e:c1:ec:f9:bc:8f:68:cd:74:00:43:73:40:03:71:ac:c4:
95:29:24:87:a1:2a:6c:ad:f7:51:e0:c0:03:fd:e3:81:19:3e:
71:80:49:c4:f2:03:17:c2:2d:f5:ef:3a:b6:c4:7b:0a:21:e6:
16:4a:53:82:14:59:b4:af:33:c7:ae:bf:1e:94:1f:e7:90:47:
c0:13:95:f5:a8:6b:78:a1:45:2f:9a:01:ad:24:10:ad:78:3f:
6b:77:a1:95:66:ff:67:b6:53:ea:84:58:13:59:03:be:68:b7:
bb:9b:0e:9d
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEB9LgEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0
MmFhYmVlMzU0Mjg3MjQ1ODY2NDI5MmZhNTkyZTNmNzVlMWFiYWQ0MB4XDTIyMDEw
MTEwNTY0MVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDk0NWNmZDQyNTgy
OGY2YmM4ZDY4MzdmM2FhNDNmMzgzNmQwZDIwNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ4WE4qknCWzvyOop1r+L9l7V/0/M6B2BTVLTTe1QDfbIuG6
SphCy3fVC5gFcN14lqg3caUceEdJSkC8LYwAMbr4m25d125H8k1PGcYSA7bGgG1m
Xrjg9JVFzPyDoKSE5KIrjGmYe9reIW7wdPA8U/HOCkYG2GY0S3Z618Q4nM/kECRj
hQo9AiVtcfnNFARAfhWzicafSgMVhs8hJC9PjqxbH/WcTWR7xOal0JVAd4UZJr5V
VFCyL5JqwUvXbmgBevGCeX9a9RXjsIJJe0URlNkI+FV9MVZgpApLitAjnSqv1JPQ
MEXNPugjggMYydumiOTUtKAJNqo8Hzh/xvlwJsMCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBTZRc/UJYKPa8jWg386pD84NtDSBzAfBgNVHSMEGDAWgBRCqr7jVChyRYZk
KS+lkuP3Xhq61DAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1FxcS00MVFvY2tXR1pDa3ZwWkxqOTE0YXV0US5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvM2QvYzk4OWFiLTg0MGMtNDAyMy1iODQyLWFiM2JkZjhlNWM0OC8x
LzJVWFAxQ1dDajJ2STFvTl9PcVFfT0RiUTBnYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2Qv
Yzk4OWFiLTg0MGMtNDAyMy1iODQyLWFiM2JkZjhlNWM0OC8xL1FxcS00MVFvY2tX
R1pDa3ZwWkxqOTE0YXV0US5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi1eVDANBAIAAjAHAwUAKg4wQDAN
BgkqhkiG9w0BAQsFAAOCAQEAjA4WMqcTQNpdyQl+Og6CJ8iTr/v6DZI5+yMqAAAl
Ni7iqCGMqfVtY0vSFNLmckd4NO0DujGSmC9Gnq8OTsEAQHWOMyXc4eI5rrBhfrx6
d777koCKBXnK5lJmAGU/1yy8SFL8zpyDc1cRRtGb8ayWKzprY6Ak/xPf9lHMaZbh
EdR10XeWXUgBwF741cnPWBKmdB7B7Pm8j2jNdABDc0ADcazElSkkh6EqbK33UeDA
A/3jgRk+cYBJxPIDF8It9e86tsR7CiHmFkpTghRZtK8zx66/HpQf55BHwBOV9ahr
eKFFL5oBrSQQrXg/a3ehlWb/Z7ZT6oRYE1kDvmi3u5sOnQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:26:26 2024 by rpki-client on console-fra.rpki-client.org