Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/30blkJSiaUk8LxbV4Zpvdg1X-s4.roa
File: 30blkJSiaUk8LxbV4Zpvdg1X-s4.roa (raw, json)
Hash identifier: QTuk18vzQZdeQXyqQ6uhcICodOOszDf+L8Kcqq4Z42g=
Subject key identifier: DF:46:E5:90:94:A2:69:49:3C:2F:16:D5:E1:9A:6F:76:0D:57:FA:CE
Certificate issuer: /CN=843d1afcf13bd2117d47df683e40a63287004cfe
Certificate serial: 03611E01
Authority key identifier: 84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/30blkJSiaUk8LxbV4Zpvdg1X-s4.roa
Signing time: Sat 01 Jan 2022 13:01:37 +0000
ROA not before: Sat 01 Jan 2022 13:01:37 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212001
IP address blocks: 45.142.85.0/24 maxlen: 24
45.142.86.0/24 maxlen: 24
45.142.87.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56696321 (0x3611e01)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=843d1afcf13bd2117d47df683e40a63287004cfe
Validity
Not Before: Jan 1 13:01:37 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=df46e59094a269493c2f16d5e19a6f760d57face
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:03:6a:b6:88:2a:9e:83:f6:a4:96:92:3a:75:
54:ec:66:7c:88:f7:4a:b1:8b:1a:88:56:de:82:4c:
24:6e:39:6a:51:bc:a2:3f:ed:a9:d7:47:04:ec:42:
93:f7:9b:be:42:f0:c4:a3:93:4b:c7:dc:d6:c7:d6:
a4:3f:94:ed:10:6e:ca:47:de:4d:fb:b4:42:3b:33:
f8:99:9b:81:0e:9e:4b:1a:b3:88:cd:66:57:28:fc:
1a:1b:2e:83:63:b3:15:11:d0:2c:f1:a9:7e:de:e3:
96:fe:d3:ae:ab:88:3b:d5:be:6e:6f:ff:8a:26:61:
d7:72:be:a3:87:39:8d:3e:73:f3:ea:76:53:d2:6a:
f2:4d:a5:f9:ec:d3:08:e8:68:59:78:c6:da:90:41:
86:d8:0a:9d:7c:f4:09:47:6a:f8:2a:90:e8:a8:64:
d4:54:5d:ba:6a:6a:d8:26:7b:5b:ab:85:ed:6d:42:
45:e5:20:12:ca:0c:55:23:2e:90:91:e2:da:56:b7:
41:57:8f:1b:e7:30:c0:91:82:7d:63:fc:65:10:a1:
dc:2f:16:94:02:d0:21:37:1c:70:a3:21:7f:5f:50:
52:38:5f:9d:c6:ee:ee:aa:44:02:cb:c0:40:b4:b8:
d1:e6:d1:cc:81:b6:c7:38:fe:c6:43:76:02:1f:9d:
a3:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:46:E5:90:94:A2:69:49:3C:2F:16:D5:E1:9A:6F:76:0D:57:FA:CE
X509v3 Authority Key Identifier:
keyid:84:3D:1A:FC:F1:3B:D2:11:7D:47:DF:68:3E:40:A6:32:87:00:4C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hD0a_PE70hF9R99oPkCmMocATP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/30blkJSiaUk8LxbV4Zpvdg1X-s4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/173306-2dbd-4ad8-bd51-b1f3bcc67aae/1/hD0a_PE70hF9R99oPkCmMocATP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.85.0-45.142.87.255
Signature Algorithm: sha256WithRSAEncryption
e7:30:d7:9e:06:34:e2:d9:ff:4f:f6:b0:b6:f1:de:48:91:d2:
e6:f6:5d:f2:6d:1e:1f:7f:6a:1e:e4:59:91:11:09:e2:92:58:
df:55:72:2c:4b:3a:ea:72:51:81:30:01:a4:58:c2:32:da:a1:
81:c8:0c:cd:36:bf:24:94:56:17:b2:5a:99:94:27:4d:d3:17:
f0:ac:6d:aa:56:ff:f4:f0:24:4a:49:c3:a3:11:5d:a6:ad:48:
a2:a6:9e:b7:97:05:f9:b8:06:17:e2:4c:76:ea:a1:e9:50:79:
74:67:d5:69:c4:e0:0d:87:81:8f:33:a0:57:58:0d:a9:8f:e0:
7c:98:13:22:5f:b9:fe:94:cc:76:3a:a9:12:8c:0b:a4:f2:e9:
a4:49:d3:8d:e1:28:57:f4:70:8f:3c:3d:7e:96:01:f5:fc:3f:
8d:6f:f5:df:9f:ba:fb:7d:6b:bf:68:98:fd:03:22:d4:f1:e5:
da:e9:bb:b3:67:61:83:7e:47:f5:83:ef:f8:2c:dc:4c:74:6e:
84:72:ce:e3:12:7b:cc:33:4a:ce:bd:80:ef:3d:d1:5c:97:1f:
c8:96:1f:3e:08:1f:9a:80:9b:8e:12:1e:2d:ee:ac:44:77:64:
05:89:0a:c7:24:c1:e5:0e:c5:e9:ea:5d:3e:84:65:8f:be:44:
13:be:e5:4a
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIEA2EeATANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
NDNkMWFmY2YxM2JkMjExN2Q0N2RmNjgzZTQwYTYzMjg3MDA0Y2ZlMB4XDTIyMDEw
MTEzMDEzN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGY0NmU1OTA5NGEy
Njk0OTNjMmYxNmQ1ZTE5YTZmNzYwZDU3ZmFjZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJwDaraIKp6D9qSWkjp1VOxmfIj3SrGLGohW3oJMJG45alG8
oj/tqddHBOxCk/ebvkLwxKOTS8fc1sfWpD+U7RBuykfeTfu0Qjsz+JmbgQ6eSxqz
iM1mVyj8Ghsug2OzFRHQLPGpft7jlv7TrquIO9W+bm//iiZh13K+o4c5jT5z8+p2
U9Jq8k2l+ezTCOhoWXjG2pBBhtgKnXz0CUdq+CqQ6Khk1FRdumpq2CZ7W6uF7W1C
ReUgEsoMVSMukJHi2la3QVePG+cwwJGCfWP8ZRCh3C8WlALQITcccKMhf19QUjhf
ncbu7qpEAsvAQLS40ebRzIG2xzj+xkN2Ah+do8sCAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBTfRuWQlKJpSTwvFtXhmm92DVf6zjAfBgNVHSMEGDAWgBSEPRr88TvSEX1H
32g+QKYyhwBM/jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2hEMGFfUEU3MGhGOVI5OW9Qa0NtTW9jQVRQNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNDUvMTczMzA2LTJkYmQtNGFkOC1iZDUxLWIxZjNiY2M2N2FhZS8x
LzMwYmxrSlNpYVVrOEx4YlY0WnB2ZGcxWC1zNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUv
MTczMzA2LTJkYmQtNGFkOC1iZDUxLWIxZjNiY2M2N2FhZS8xL2hEMGFfUEU3MGhG
OVI5OW9Qa0NtTW9jQVRQNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAn
BggrBgEFBQcBBwEB/wQYMBYwFAQCAAEwDjAMAwQALY5VAwQDLY5QMA0GCSqGSIb3
DQEBCwUAA4IBAQDnMNeeBjTi2f9P9rC28d5IkdLm9l3ybR4ff2oe5FmREQnikljf
VXIsSzrqclGBMAGkWMIy2qGByAzNNr8klFYXslqZlCdN0xfwrG2qVv/08CRKScOj
EV2mrUiipp63lwX5uAYX4kx26qHpUHl0Z9VpxOANh4GPM6BXWA2pj+B8mBMiX7n+
lMx2OqkSjAuk8umkSdON4ShX9HCPPD1+lgH1/D+Nb/Xfn7r7fWu/aJj9AyLU8eXa
6buzZ2GDfkf1g+/4LNxMdG6Ecs7jEnvMM0rOvYDvPdFclx/Ilh8+CB+agJuOEh4t
7qxEd2QFiQrHJMHlDsXp6l0+hGWPvkQTvuVK
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:05:51 2024 by rpki-client on console-ams.rpki-client.org