Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/ToAl5bHDnwkKvEZDmIY2QtiXY-o.roa
File: ToAl5bHDnwkKvEZDmIY2QtiXY-o.roa (raw, json)
Hash identifier: 32W4r78Smfp5eT6TYMmbf59DIFOiuVJgFlNoMPq2fZc=
Subject key identifier: 4E:80:25:E5:B1:C3:9F:09:0A:BC:46:43:98:86:36:42:D8:97:63:EA
Certificate issuer: /CN=f655558b616794a4f77a648fc33609d977f5a780
Certificate serial: 6BA0
Authority key identifier: F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/ToAl5bHDnwkKvEZDmIY2QtiXY-o.roa
Signing time: Tue 25 Jan 2022 18:23:19 +0000
ROA not before: Tue 25 Jan 2022 18:23:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212667
IP address blocks: 45.157.136.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27552 (0x6ba0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f655558b616794a4f77a648fc33609d977f5a780
Validity
Not Before: Jan 25 18:23:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e8025e5b1c39f090abc464398863642d89763ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:56:2d:11:fb:0a:35:5e:34:d6:79:08:e9:6d:
bf:a3:d3:1e:bb:a4:21:1a:6b:fd:8e:2e:18:75:ac:
0d:34:ff:af:a5:8f:c0:2a:31:f2:3a:73:fb:f5:8b:
e0:14:aa:bd:77:35:1c:cf:08:1c:27:ca:96:86:f2:
3a:2e:c7:3e:30:a4:68:3e:a4:6c:80:1e:ed:35:b5:
6b:a5:e4:01:d8:0d:2e:92:1f:b6:66:e6:ad:4a:12:
c9:ed:e0:b3:60:c8:1f:00:15:5b:31:86:21:f2:1e:
46:c4:a8:16:d3:02:54:c6:ba:f6:02:6c:62:9c:9f:
dd:c4:37:d9:71:0d:29:79:44:7c:f6:4f:a1:3b:3f:
f0:f0:6e:37:98:f5:3a:b2:6b:ed:04:6a:84:43:df:
9a:39:5a:95:ac:7c:e3:64:d0:6b:01:1e:77:93:b4:
9d:da:20:99:9f:79:70:55:2f:4e:75:15:2e:49:8c:
9e:55:33:07:f7:ed:f3:78:96:4f:3c:05:a9:53:63:
f4:b8:df:0e:32:b0:e2:bf:17:ee:ee:0a:b3:02:76:
e6:12:9e:e2:93:39:16:2e:7f:bc:8a:3c:61:68:47:
95:ee:58:6c:cb:a3:ae:8d:0b:ae:78:bc:fc:da:e4:
88:49:7c:af:27:d5:ab:b7:05:11:17:cf:7f:80:b6:
46:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:80:25:E5:B1:C3:9F:09:0A:BC:46:43:98:86:36:42:D8:97:63:EA
X509v3 Authority Key Identifier:
keyid:F6:55:55:8B:61:67:94:A4:F7:7A:64:8F:C3:36:09:D9:77:F5:A7:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/ToAl5bHDnwkKvEZDmIY2QtiXY-o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/13536b-baf9-4b0f-ac5a-9085b4dff289/1/9lVVi2FnlKT3emSPwzYJ2Xf1p4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.136.0/24
Signature Algorithm: sha256WithRSAEncryption
46:87:55:b4:47:77:3c:94:8a:d9:2e:e4:43:9d:63:79:30:ac:
70:0d:73:e6:2d:fb:58:d9:0a:83:ad:b0:e3:92:4e:38:63:18:
21:f0:59:00:a9:8c:eb:40:c7:62:58:15:e3:3d:a3:8e:f3:c2:
c1:ed:f7:40:d9:0a:48:b9:03:e1:b0:04:0e:33:3c:5d:4d:ae:
aa:6c:6a:85:41:77:76:89:b5:92:9e:19:bb:e7:be:98:99:4d:
a9:38:fb:e9:24:7d:3d:16:43:25:64:c1:d4:b4:2a:12:17:ee:
20:3d:02:c1:5c:82:86:fc:06:85:fc:30:fe:84:b2:5d:63:cf:
8e:7a:d7:a0:f6:01:58:62:c5:a7:ef:83:5e:45:ae:2d:2e:f9:
49:0d:3e:76:bb:cd:b0:d9:b8:8a:ca:0b:32:64:95:96:82:a6:
45:5e:37:04:11:a7:76:b2:b8:28:79:6c:a7:80:84:a8:15:72:
f2:87:78:0b:a4:3f:2f:69:fb:90:04:b8:19:35:03:32:be:51:
67:9b:ab:a7:0a:e5:ca:21:e2:27:8f:f6:cc:86:e3:c9:d9:a3:
c0:2d:25:cd:20:1b:93:6b:4d:12:f9:4f:0c:cc:e2:19:7c:90:
66:34:6c:d1:ce:6d:97:ff:9c:63:07:cf:d5:e8:02:79:6e:92:
f7:d2:af:0b
-----BEGIN CERTIFICATE-----
MIIE7TCCA9WgAwIBAgICa6AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoZjY1
NTU1OGI2MTY3OTRhNGY3N2E2NDhmYzMzNjA5ZDk3N2Y1YTc4MDAeFw0yMjAxMjUx
ODIzMTlaFw0yMzA3MDEwMDAwMDBaMDMxMTAvBgNVBAMTKDRlODAyNWU1YjFjMzlm
MDkwYWJjNDY0Mzk4ODYzNjQyZDg5NzYzZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDRVi0R+wo1XjTWeQjpbb+j0x67pCEaa/2OLhh1rA00/6+lj8Aq
MfI6c/v1i+AUqr13NRzPCBwnypaG8jouxz4wpGg+pGyAHu01tWul5AHYDS6SH7Zm
5q1KEsnt4LNgyB8AFVsxhiHyHkbEqBbTAlTGuvYCbGKcn93EN9lxDSl5RHz2T6E7
P/DwbjeY9Tqya+0EaoRD35o5WpWsfONk0GsBHneTtJ3aIJmfeXBVL051FS5JjJ5V
Mwf37fN4lk88BalTY/S43w4ysOK/F+7uCrMCduYSnuKTORYuf7yKPGFoR5XuWGzL
o66NC654vPza5IhJfK8n1au3BREXz3+AtkbHAgMBAAGjggIJMIICBTAdBgNVHQ4E
FgQUToAl5bHDnwkKvEZDmIY2QtiXY+owHwYDVR0jBBgwFoAU9lVVi2FnlKT3emSP
wzYJ2Xf1p4AwDgYDVR0PAQH/BAQDAgeAMGQGCCsGAQUFBwEBBFgwVjBUBggrBgEF
BQcwAoZIcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC85
bFZWaTJGbmxLVDNlbVNQd3pZSjJYZjFwNEEuY2VyMIGNBggrBgEFBQcBCwSBgDB+
MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9E
RUZBVUxULzRiLzEzNTM2Yi1iYWY5LTRiMGYtYWM1YS05MDg1YjRkZmYyODkvMS9U
b0FsNWJIRG53a0t2RVpEbUlZMlF0aVhZLW8ucm9hMIGBBgNVHR8EejB4MHagdKBy
hnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRiLzEz
NTM2Yi1iYWY5LTRiMGYtYWM1YS05MDg1YjRkZmYyODkvMS85bFZWaTJGbmxLVDNl
bVNQd3pZSjJYZjFwNEEuY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYI
KwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAtnYgwDQYJKoZIhvcNAQELBQADggEB
AEaHVbRHdzyUitku5EOdY3kwrHANc+Yt+1jZCoOtsOOSTjhjGCHwWQCpjOtAx2JY
FeM9o47zwsHt90DZCki5A+GwBA4zPF1NrqpsaoVBd3aJtZKeGbvnvpiZTak4++kk
fT0WQyVkwdS0KhIX7iA9AsFcgob8BoX8MP6Esl1jz45616D2AVhixafvg15Fri0u
+UkNPna7zbDZuIrKCzJklZaCpkVeNwQRp3ayuCh5bKeAhKgVcvKHeAukPy9p+5AE
uBk1AzK+UWebq6cK5coh4ieP9syG48nZo8AtJc0gG5NrTRL5TwzM4hl8kGY0bNHO
bZf/nGMHz9XoAnlukvfSrws=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:22 2023 by rpki-client on console-ams.rpki-client.org