Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/Zm8OYsd0rXvUFwgdszpzb_nZu74.roa
File: Zm8OYsd0rXvUFwgdszpzb_nZu74.roa (raw, json)
Hash identifier: i0jNDIEaHgHMnfX26Z7jzUr1i85qrQEbnRz9vCXfekk=
Subject key identifier: 66:6F:0E:62:C7:74:AD:7B:D4:17:08:1D:B3:3A:73:6F:F9:D9:BB:BE
Certificate issuer: /CN=9e42ca46688a837b575234ce6a1a326587d6c204
Certificate serial: 0185069CBFB53B241E0F8BC5CF369EDF6215
Authority key identifier: 9E:42:CA:46:68:8A:83:7B:57:52:34:CE:6A:1A:32:65:87:D6:C2:04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nkLKRmiKg3tXUjTOahoyZYfWwgQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/Zm8OYsd0rXvUFwgdszpzb_nZu74.roa
Signing time: Mon 12 Dec 2022 13:53:33 +0000
ROA not before: Mon 12 Dec 2022 13:53:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208342
IP address blocks: 45.13.12.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:06:9c:bf:b5:3b:24:1e:0f:8b:c5:cf:36:9e:df:62:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9e42ca46688a837b575234ce6a1a326587d6c204
Validity
Not Before: Dec 12 13:53:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=666f0e62c774ad7bd417081db33a736ff9d9bbbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8c:7c:88:c2:18:2a:67:82:96:fc:c6:a7:4b:
34:29:fe:47:ba:c6:ca:19:01:7e:a4:d5:68:b3:5a:
9f:38:b1:c6:ad:fb:26:da:44:09:a8:24:a5:9c:00:
86:80:53:5b:c8:c6:31:a5:02:c8:89:c0:2d:a7:79:
f4:a9:83:1e:a2:0e:05:90:62:73:cb:18:28:b2:54:
c5:a1:7d:ab:62:d5:bf:5c:a0:5f:bb:f5:b5:0e:e4:
f1:7f:3d:5f:07:3b:bf:dc:cf:85:69:5e:f3:75:05:
12:57:09:15:42:1f:c6:6e:cc:2c:0c:9e:4c:1a:9b:
0b:84:bb:0f:19:2a:0a:82:92:90:1d:73:46:67:a3:
9f:de:01:65:de:fd:da:05:7f:05:6a:63:18:2b:08:
19:a9:72:14:08:85:02:56:7f:a4:0b:da:03:c0:36:
f4:bb:e7:d6:bd:bd:9e:4c:40:14:dc:67:a7:99:b3:
58:e0:2e:ab:fc:79:b6:cd:dd:81:40:7d:1b:91:04:
99:57:9d:94:8d:8a:74:82:18:1d:6e:f3:b6:31:18:
da:49:9d:37:20:ca:0a:56:3e:c9:f9:db:56:24:6d:
5d:db:0a:a0:fa:32:7e:e6:b1:2c:da:bd:b9:8b:7a:
67:a4:24:62:d1:8b:88:d9:ef:1c:60:f9:d1:4c:c7:
49:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6F:0E:62:C7:74:AD:7B:D4:17:08:1D:B3:3A:73:6F:F9:D9:BB:BE
X509v3 Authority Key Identifier:
keyid:9E:42:CA:46:68:8A:83:7B:57:52:34:CE:6A:1A:32:65:87:D6:C2:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nkLKRmiKg3tXUjTOahoyZYfWwgQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/Zm8OYsd0rXvUFwgdszpzb_nZu74.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/ee2793-a0c9-42dc-a6a2-329ba388b7cf/1/nkLKRmiKg3tXUjTOahoyZYfWwgQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.13.12.0/22
Signature Algorithm: sha256WithRSAEncryption
30:0a:b0:7a:0b:47:34:9a:0b:9b:d6:25:c2:ec:b1:2b:80:6b:
b9:98:70:59:5e:58:1d:21:06:82:e4:5d:6a:d3:f1:f1:46:42:
99:1a:04:ed:ce:06:a2:62:9a:6b:5c:47:d1:db:c4:27:07:4f:
f9:0e:a6:57:54:5b:8e:01:ff:4d:24:b2:d8:0f:dd:91:9f:0d:
a5:41:fc:19:48:34:63:76:82:0f:e5:6b:e2:5b:16:0a:0c:e4:
89:43:95:dd:09:7e:d6:bb:a2:9e:3b:77:ce:0b:d7:56:f7:c6:
6e:79:87:ca:08:01:ad:a8:18:5a:9f:5b:a6:77:27:82:b5:80:
f3:66:64:21:79:05:8b:56:01:5b:ff:ce:f3:61:35:34:30:26:
ae:0e:54:76:8d:75:d1:95:7b:a6:36:2b:d9:37:3d:a3:31:52:
dc:67:f0:12:d4:ae:dd:b7:f6:fe:cc:46:68:6b:fb:2e:43:94:
51:9d:ab:29:60:d5:7f:ae:8e:27:16:08:fe:1e:12:b3:db:d8:
b8:89:1e:9e:e2:ea:6b:5e:2b:fb:2b:38:23:8b:b7:5e:68:57:
74:b6:92:1f:f6:c3:5b:86:bd:d7:98:dc:b9:52:07:32:83:9e:
52:82:ea:18:b8:d8:39:56:d6:bc:7a:a8:f0:9a:25:b6:ed:2b:
a8:92:92:e0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUGnL+1OyQeD4vFzzae32IVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDllNDJjYTQ2Njg4YTgzN2I1NzUyMzRjZTZhMWEzMjY1ODdk
NmMyMDQwHhcNMjIxMjEyMTM1MzMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg2NjZmMGU2MmM3NzRhZDdiZDQxNzA4MWRiMzNhNzM2ZmY5ZDliYmJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi4x8iMIYKmeClvzGp0s0Kf5HusbK
GQF+pNVos1qfOLHGrfsm2kQJqCSlnACGgFNbyMYxpQLIicAtp3n0qYMeog4FkGJz
yxgoslTFoX2rYtW/XKBfu/W1DuTxfz1fBzu/3M+FaV7zdQUSVwkVQh/GbswsDJ5M
GpsLhLsPGSoKgpKQHXNGZ6Of3gFl3v3aBX8FamMYKwgZqXIUCIUCVn+kC9oDwDb0
u+fWvb2eTEAU3GenmbNY4C6r/Hm2zd2BQH0bkQSZV52UjYp0ghgdbvO2MRjaSZ03
IMoKVj7J+dtWJG1d2wqg+jJ+5rEs2r25i3pnpCRi0YuI2e8cYPnRTMdJTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFGZvDmLHdK171BcIHbM6c2/52bu+MB8GA1UdIwQY
MBaAFJ5CykZoioN7V1I0zmoaMmWH1sIEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbmtMS1JtaUtnM3RYVWpUT2Fob3laWWZXd2dRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9lZTI3OTMtYTBjOS00MmRjLWE2YTIt
MzI5YmEzODhiN2NmLzEvWm04T1lzZDByWHZVRndnZHN6cHpiX25adTc0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80ZC9lZTI3OTMtYTBjOS00MmRjLWE2YTItMzI5YmEzODhiN2Nm
LzEvbmtMS1JtaUtnM3RYVWpUT2Fob3laWWZXd2dRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLQ0MMA0G
CSqGSIb3DQEBCwUAA4IBAQAwCrB6C0c0mgub1iXC7LErgGu5mHBZXlgdIQaC5F1q
0/HxRkKZGgTtzgaiYpprXEfR28QnB0/5DqZXVFuOAf9NJLLYD92Rnw2lQfwZSDRj
doIP5WviWxYKDOSJQ5XdCX7Wu6KeO3fOC9dW98ZueYfKCAGtqBhan1umdyeCtYDz
ZmQheQWLVgFb/87zYTU0MCauDlR2jXXRlXumNivZNz2jMVLcZ/AS1K7dt/b+zEZo
a/suQ5RRnaspYNV/ro4nFgj+HhKz29i4iR6e4uprXiv7Kzgji7deaFd0tpIf9sNb
hr3XmNy5Ugcyg55SguoYuNg5Vta8eqjwmiW27SuokpLg
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:50 2024 by rpki-client on console-fra.rpki-client.org