Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/oHRwdfAVXfNTdPggIlMk8bJ1IkQ.roa
File: oHRwdfAVXfNTdPggIlMk8bJ1IkQ.roa (raw, json)
Hash identifier: TtXbfd84hVmxDhVoLiz1WGsPmmAPxFD084t3ISXtXdA=
Subject key identifier: A0:74:70:75:F0:15:5D:F3:53:74:F8:20:22:53:24:F1:B2:75:22:44
Certificate issuer: /CN=c4fbe8422432727d3874b1564baeac8a80557b2d
Certificate serial: 0740BD25
Authority key identifier: C4:FB:E8:42:24:32:72:7D:38:74:B1:56:4B:AE:AC:8A:80:55:7B:2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xPvoQiQycn04dLFWS66sioBVey0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/oHRwdfAVXfNTdPggIlMk8bJ1IkQ.roa
Signing time: Sat 01 Jan 2022 02:02:09 +0000
ROA not before: Sat 01 Jan 2022 02:02:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1299
IP address blocks: 45.148.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121683237 (0x740bd25)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c4fbe8422432727d3874b1564baeac8a80557b2d
Validity
Not Before: Jan 1 02:02:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a0747075f0155df35374f820225324f1b2752244
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:41:37:a1:bb:b1:d2:e6:da:c7:60:d2:2b:c8:
0d:cd:95:a9:18:75:7e:f8:a0:44:ce:37:8c:aa:d3:
53:01:7d:7b:a2:e6:1c:65:c9:17:93:09:75:66:c4:
5b:52:4a:5b:a8:50:63:ed:88:9f:2e:d8:7d:dd:e9:
9d:e5:f6:6c:c6:6d:6d:a7:da:e6:cf:27:d5:e6:2f:
64:fa:67:eb:98:ee:1d:8d:62:b9:ba:14:ac:80:79:
cf:49:2d:a8:47:1f:8f:89:f6:f5:8e:68:91:de:7c:
32:62:0a:1f:4b:4a:40:b9:ca:4a:fd:0a:6c:c4:c2:
2e:f7:fb:72:7f:f8:d2:65:1f:51:02:3e:66:76:6a:
3c:1b:ea:64:57:e2:a9:13:7a:03:77:f9:65:95:d2:
94:c3:a4:66:e5:73:85:1f:95:42:19:ec:3b:0f:65:
95:e3:22:de:85:b3:79:4e:13:85:14:ff:44:cd:97:
80:65:59:49:63:a7:f9:0c:f8:9c:0f:39:c7:80:99:
b0:eb:f1:d4:70:3c:41:3e:e8:04:32:2a:6b:63:d4:
1f:bf:13:ee:d4:fb:6a:d1:9b:3b:46:7a:89:97:19:
0c:59:89:89:14:9e:bd:d6:d2:72:0f:4d:e9:75:42:
ee:59:90:46:d9:5a:5c:40:ab:05:17:77:2f:02:6b:
d5:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:74:70:75:F0:15:5D:F3:53:74:F8:20:22:53:24:F1:B2:75:22:44
X509v3 Authority Key Identifier:
keyid:C4:FB:E8:42:24:32:72:7D:38:74:B1:56:4B:AE:AC:8A:80:55:7B:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xPvoQiQycn04dLFWS66sioBVey0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/oHRwdfAVXfNTdPggIlMk8bJ1IkQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/bf2d8c-e38b-463a-b26b-ecf2217f9867/1/xPvoQiQycn04dLFWS66sioBVey0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.4.0/24
Signature Algorithm: sha256WithRSAEncryption
64:6b:25:c9:78:50:35:6c:40:4f:1a:4c:23:d5:5d:d9:6b:42:
1c:04:04:41:6c:9c:bf:d1:72:45:48:9f:ee:17:66:8d:b0:fd:
83:ed:83:70:79:eb:1a:47:f4:4f:6b:6e:b5:d9:a6:ab:6a:9c:
b1:46:07:3d:7b:55:09:46:a2:e3:d6:99:a0:2a:c6:70:ea:43:
9a:8c:cb:9c:e3:d9:7a:7d:16:2b:52:3b:da:9c:80:52:80:cc:
9e:ad:be:a2:91:6c:9c:86:c9:6d:95:b6:66:ff:e0:8f:15:dc:
93:20:aa:b1:dd:1f:4b:45:69:bc:69:dd:19:76:93:a3:34:c0:
53:51:a6:3e:c0:a0:56:0a:a1:48:dd:09:53:03:9b:6b:84:a8:
0f:9a:3a:4e:37:1c:3b:3d:35:02:7f:fb:a9:7a:f1:74:0e:9d:
71:41:eb:a8:8b:92:d7:90:c0:7f:c2:6e:53:a2:3f:9e:39:b6:
5d:c2:80:d6:64:21:d6:df:44:e1:ae:8f:a8:06:94:cb:e1:f9:
d5:7e:6d:97:a9:43:de:68:57:ad:2e:c5:4b:e6:0b:8a:c5:b4:
12:d7:cc:9e:dd:81:5f:b9:e5:8d:5f:68:2b:f3:6a:5c:38:e2:
11:a5:29:5f:62:5b:6a:83:8b:77:64:e7:4b:f9:ae:d0:44:a1:
09:98:1f:5c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB0C9JTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhj
NGZiZTg0MjI0MzI3MjdkMzg3NGIxNTY0YmFlYWM4YTgwNTU3YjJkMB4XDTIyMDEw
MTAyMDIwOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTA3NDcwNzVmMDE1
NWRmMzUzNzRmODIwMjI1MzI0ZjFiMjc1MjI0NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANlBN6G7sdLm2sdg0ivIDc2VqRh1fvigRM43jKrTUwF9e6Lm
HGXJF5MJdWbEW1JKW6hQY+2Iny7Yfd3pneX2bMZtbafa5s8n1eYvZPpn65juHY1i
uboUrIB5z0ktqEcfj4n29Y5okd58MmIKH0tKQLnKSv0KbMTCLvf7cn/40mUfUQI+
ZnZqPBvqZFfiqRN6A3f5ZZXSlMOkZuVzhR+VQhnsOw9lleMi3oWzeU4ThRT/RM2X
gGVZSWOn+Qz4nA85x4CZsOvx1HA8QT7oBDIqa2PUH78T7tT7atGbO0Z6iZcZDFmJ
iRSevdbScg9N6XVC7lmQRtlaXECrBRd3LwJr1c0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSgdHB18BVd81N0+CAiUyTxsnUiRDAfBgNVHSMEGDAWgBTE++hCJDJyfTh0
sVZLrqyKgFV7LTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3hQdm9RaVF5Y24wNGRMRldTNjZzaW9CVmV5MC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDMvYmYyZDhjLWUzOGItNDYzYS1iMjZiLWVjZjIyMTdmOTg2Ny8x
L29IUndkZkFWWGZOVGRQZ2dJbE1rOGJKMUlrUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDMv
YmYyZDhjLWUzOGItNDYzYS1iMjZiLWVjZjIyMTdmOTg2Ny8xL3hQdm9RaVF5Y24w
NGRMRldTNjZzaW9CVmV5MC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2UBDANBgkqhkiG9w0BAQsFAAOC
AQEAZGslyXhQNWxATxpMI9Vd2WtCHAQEQWycv9FyRUif7hdmjbD9g+2DcHnrGkf0
T2tutdmmq2qcsUYHPXtVCUai49aZoCrGcOpDmozLnOPZen0WK1I72pyAUoDMnq2+
opFsnIbJbZW2Zv/gjxXckyCqsd0fS0VpvGndGXaTozTAU1GmPsCgVgqhSN0JUwOb
a4SoD5o6TjccOz01An/7qXrxdA6dcUHrqIuS15DAf8JuU6I/njm2XcKA1mQh1t9E
4a6PqAaUy+H51X5tl6lD3mhXrS7FS+YLisW0EtfMnt2BX7nljV9oK/NqXDjiEaUp
X2JbaoOLd2TnS/mu0EShCZgfXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:37 2024 by rpki-client on console-ams.rpki-client.org