Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/V8NxFe7DPRP3Fpx1Jex4CtwGVmU.roa
File: V8NxFe7DPRP3Fpx1Jex4CtwGVmU.roa (raw, json)
Hash identifier: 9vU9P6/oFOKJ2w5/0tfUna85k2TeOC+Bq/cBdovGHJo=
Subject key identifier: 57:C3:71:15:EE:C3:3D:13:F7:16:9C:75:25:EC:78:0A:DC:06:56:65
Certificate issuer: /CN=ac7670698cfaef2647fbc9a06f7380856e2b3027
Certificate serial: 02B74B64
Authority key identifier: AC:76:70:69:8C:FA:EF:26:47:FB:C9:A0:6F:73:80:85:6E:2B:30:27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rHZwaYz67yZH-8mgb3OAhW4rMCc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/V8NxFe7DPRP3Fpx1Jex4CtwGVmU.roa
Signing time: Wed 08 Jun 2022 14:55:02 +0000
ROA not before: Wed 08 Jun 2022 14:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 59521
IP address blocks: 103.55.100.0/22 maxlen: 22
103.57.40.0/22 maxlen: 22
195.72.124.0/22 maxlen: 22
45.115.108.0/22 maxlen: 22
45.149.52.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 45566820 (0x2b74b64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac7670698cfaef2647fbc9a06f7380856e2b3027
Validity
Not Before: Jun 8 14:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=57c37115eec33d13f7169c7525ec780adc065665
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ba:48:2a:ee:39:81:03:02:1c:55:53:71:77:
ce:dd:ab:47:ef:c6:21:db:6f:6d:a2:9a:f2:0b:cb:
51:a4:66:ce:26:e1:89:14:03:79:51:30:79:e6:38:
d2:4f:b8:22:1d:f2:f1:c3:6c:62:d5:73:83:95:29:
3d:b7:85:7a:48:f1:35:c1:44:39:7a:2d:91:25:2b:
d1:aa:fa:56:74:a5:7a:b3:da:e1:35:77:d2:32:d7:
19:a9:69:c9:98:d1:5f:bb:4b:7c:e5:f0:a1:91:9b:
f1:4f:41:7d:6a:fb:5a:06:fb:b3:7e:8a:ef:d4:e9:
30:40:07:ac:f1:28:96:17:94:89:5d:cf:b7:4a:b7:
81:73:db:cc:81:96:30:af:c9:b9:87:76:ca:2f:12:
57:05:a2:e3:fe:52:ae:cf:d1:df:c5:20:89:4d:a7:
59:5c:be:8d:b9:d2:14:a1:88:76:e0:65:83:e4:94:
2f:f4:c7:47:d8:e8:ea:20:42:6d:c3:2f:20:27:25:
52:d9:fb:83:e1:3c:ca:ef:d0:be:59:dd:de:85:cc:
98:51:64:13:45:a7:ff:f0:e7:70:d3:fd:b5:7f:63:
82:a0:76:4a:e3:ae:be:f9:90:f5:10:78:b2:5a:6e:
f8:07:c6:0d:e8:aa:04:d8:b4:6a:db:57:be:65:9b:
7c:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C3:71:15:EE:C3:3D:13:F7:16:9C:75:25:EC:78:0A:DC:06:56:65
X509v3 Authority Key Identifier:
keyid:AC:76:70:69:8C:FA:EF:26:47:FB:C9:A0:6F:73:80:85:6E:2B:30:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rHZwaYz67yZH-8mgb3OAhW4rMCc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/V8NxFe7DPRP3Fpx1Jex4CtwGVmU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/68f651-f3a6-4252-9faf-9e044092b826/1/rHZwaYz67yZH-8mgb3OAhW4rMCc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.115.108.0/22
45.149.52.0/24
103.55.100.0/22
103.57.40.0/22
195.72.124.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:d3:7d:fe:79:76:a3:77:96:86:ea:4e:f3:ca:47:b9:06:38:
eb:bd:f0:17:a9:44:7c:bc:a7:8f:31:dd:6a:0a:92:f3:b5:a0:
e3:16:d1:77:80:e2:f8:89:b1:70:74:ba:fc:ca:6d:45:bd:a8:
33:da:a5:79:86:94:c2:ae:78:3d:ad:3d:21:7f:7e:81:38:69:
bb:13:a1:df:21:6d:ef:59:b9:e8:6f:36:ba:8e:0f:c0:4a:70:
09:87:38:c9:6c:cc:8d:7e:a8:e5:3d:ed:34:79:25:0b:2a:1f:
af:51:44:86:9a:fd:f2:d1:7c:77:90:fb:e9:3f:58:1a:af:28:
fb:4f:eb:b3:39:03:b6:61:43:82:75:c9:86:03:4b:74:7c:33:
28:d4:8d:a3:7d:fd:b1:18:73:59:bd:7f:bd:ef:61:fc:f4:c3:
1d:99:d4:27:99:ee:65:58:49:5d:25:46:0b:dd:c5:f1:53:49:
11:3f:ab:de:14:09:b6:16:92:8a:b1:8b:e4:42:47:b4:03:f2:
0a:98:19:4a:0e:23:cb:98:e5:85:dd:8d:c5:d0:9b:54:cc:cc:
79:c6:f2:4a:49:31:ff:57:c6:37:03:66:13:37:34:4f:82:b5:
b2:14:9b:37:46:ec:00:59:44:8b:18:04:89:ce:8c:73:ae:71:
2b:96:af:df
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIEArdLZDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
Yzc2NzA2OThjZmFlZjI2NDdmYmM5YTA2ZjczODA4NTZlMmIzMDI3MB4XDTIyMDYw
ODE0NTUwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNTdjMzcxMTVlZWMz
M2QxM2Y3MTY5Yzc1MjVlYzc4MGFkYzA2NTY2NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAL+6SCruOYEDAhxVU3F3zt2rR+/GIdtvbaKa8gvLUaRmzibh
iRQDeVEweeY40k+4Ih3y8cNsYtVzg5UpPbeFekjxNcFEOXotkSUr0ar6VnSlerPa
4TV30jLXGalpyZjRX7tLfOXwoZGb8U9BfWr7Wgb7s36K79TpMEAHrPEolheUiV3P
t0q3gXPbzIGWMK/JuYd2yi8SVwWi4/5Srs/R38UgiU2nWVy+jbnSFKGIduBlg+SU
L/THR9jo6iBCbcMvICclUtn7g+E8yu/Qvlnd3oXMmFFkE0Wn//DncNP9tX9jgqB2
SuOuvvmQ9RB4slpu+AfGDeiqBNi0attXvmWbfEUCAwEAAaOCAiEwggIdMB0GA1Ud
DgQWBBRXw3EV7sM9E/cWnHUl7HgK3AZWZTAfBgNVHSMEGDAWgBSsdnBpjPrvJkf7
yaBvc4CFbiswJzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3JIWndhWXo2N3laSC04bWdiM09BaFc0ck1DYy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDQvNjhmNjUxLWYzYTYtNDI1Mi05ZmFmLTllMDQ0MDkyYjgyNi8x
L1Y4TnhGZTdEUFJQM0ZweDFKZXg0Q3R3R1ZtVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQv
NjhmNjUxLWYzYTYtNDI1Mi05ZmFmLTllMDQ0MDkyYjgyNi8xL3JIWndhWXo2N3la
SC04bWdiM09BaFc0ck1DYy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA3
BggrBgEFBQcBBwEB/wQoMCYwJAQCAAEwHgMEAi1zbAMEAC2VNAMEAmc3ZAMEAmc5
KAMEAsNIfDANBgkqhkiG9w0BAQsFAAOCAQEAC9N9/nl2o3eWhupO88pHuQY4673w
F6lEfLynjzHdagqS87Wg4xbRd4Di+ImxcHS6/MptRb2oM9qleYaUwq54Pa09IX9+
gThpuxOh3yFt71m56G82uo4PwEpwCYc4yWzMjX6o5T3tNHklCyofr1FEhpr98tF8
d5D76T9YGq8o+0/rszkDtmFDgnXJhgNLdHwzKNSNo339sRhzWb1/ve9h/PTDHZnU
J5nuZVhJXSVGC93F8VNJET+r3hQJthaSirGL5EJHtAPyCpgZSg4jy5jlhd2NxdCb
VMzMecbySkkx/1fGNwNmEzc0T4K1shSbN0bsAFlEixgEic6Mc65xK5av3w==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:26:41 2025 by rpki-client