Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/dutuY-EGVHUH4jhRh7x2kGKLmXc.roa
File: dutuY-EGVHUH4jhRh7x2kGKLmXc.roa (raw, json)
Hash identifier: qTPC0EpEdc/TISNpaPgxIpneYhybjpC1ywqMQI6fJEU=
Subject key identifier: 76:EB:6E:63:E1:06:54:75:07:E2:38:51:87:BC:76:90:62:8B:99:77
Certificate issuer: /CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Certificate serial: 0813C287
Authority key identifier: F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/dutuY-EGVHUH4jhRh7x2kGKLmXc.roa
Signing time: Thu 17 Feb 2022 08:32:45 +0000
ROA not before: Thu 17 Feb 2022 08:32:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43624
IP address blocks: 45.145.130.0/23 maxlen: 23
45.140.206.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135512711 (0x813c287)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f8651b1194f12e98e70d3da78efe4dd2467cd423
Validity
Not Before: Feb 17 08:32:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=76eb6e63e106547507e2385187bc7690628b9977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:1f:06:cb:69:82:49:69:89:b3:ce:28:59:0e:
26:bd:08:7c:80:08:fc:f3:75:aa:39:66:5b:ad:e1:
99:4d:67:d1:3a:70:83:80:20:99:4d:17:01:40:af:
b8:d6:bf:ae:ea:f9:91:39:44:10:94:68:ff:8d:a2:
3b:0a:b0:31:25:39:53:6a:e3:14:d6:22:61:3a:52:
5c:9a:52:c3:9d:3b:3b:24:ad:32:bb:34:d4:1e:09:
cd:10:fd:66:9c:ee:b0:a7:9e:3c:1d:91:00:72:5f:
0e:74:a2:5e:8b:22:d0:72:ca:de:af:bb:01:a9:62:
66:37:9e:f5:60:24:61:58:4b:9b:1d:7f:a0:5e:f1:
b9:99:9d:51:5f:02:b6:af:6c:e0:01:8f:06:3f:16:
e1:83:5e:18:3a:3d:9b:27:6b:4b:3c:20:d9:c5:50:
fe:ae:06:d8:9f:49:ff:76:76:57:3c:2e:8a:4b:16:
22:0e:4b:23:fe:16:0c:ea:70:7d:22:96:a7:83:42:
aa:9e:25:c2:e7:00:4c:10:29:d9:f8:f3:7a:69:32:
cc:a4:34:99:25:19:47:0b:9c:41:27:0b:f3:04:c4:
4f:55:f0:40:0e:7e:38:72:d1:74:6f:b7:43:2b:8b:
d0:21:bc:30:9b:57:58:91:fd:12:d1:b4:3e:7f:04:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:EB:6E:63:E1:06:54:75:07:E2:38:51:87:BC:76:90:62:8B:99:77
X509v3 Authority Key Identifier:
keyid:F8:65:1B:11:94:F1:2E:98:E7:0D:3D:A7:8E:FE:4D:D2:46:7C:D4:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-GUbEZTxLpjnDT2njv5N0kZ81CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/dutuY-EGVHUH4jhRh7x2kGKLmXc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/822400-3248-4702-b29b-a1b7ceefa16c/1/1-GUbEZTxLpjnDT2njv5N0kZ81CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.206.0/23
45.145.130.0/23
Signature Algorithm: sha256WithRSAEncryption
01:85:93:57:cd:fe:5e:e7:7e:87:4d:a0:18:f0:6d:77:18:c2:
72:40:65:08:71:b7:b8:c3:d5:91:2d:34:d9:71:c7:8b:98:17:
e5:e4:7e:65:e4:7a:d9:9d:06:86:2c:18:b7:45:9d:cc:25:fa:
21:69:cb:cd:69:01:3b:37:a8:c8:1b:43:6c:3f:8c:28:37:23:
88:07:56:08:45:ef:7d:88:d1:1c:ac:9c:73:aa:f9:2d:5c:b1:
8d:d6:0b:23:66:c1:4e:f1:41:c1:92:af:6a:eb:10:0d:6a:2b:
e2:72:c8:da:31:d9:c1:00:20:b5:37:e8:9c:a3:2c:37:19:76:
35:25:3b:52:df:db:3f:b0:09:10:a3:e5:79:2e:ff:de:ad:9b:
02:51:2c:1f:23:95:35:83:4e:61:ea:b6:63:5a:b0:a2:9d:9c:
62:61:24:fb:c3:19:a3:e2:25:b0:32:a5:d6:10:14:16:98:e8:
47:ef:ac:57:65:b3:e0:ea:05:c2:09:ec:3f:c5:dd:cb:28:21:
04:02:37:38:f4:6a:c5:22:4d:6d:f6:7a:da:1a:d1:c6:01:0d:
f3:a4:18:d7:28:42:8e:74:bb:b4:03:f3:44:51:d3:48:ab:99:
51:ce:ce:45:ad:f0:30:f5:2e:97:88:f8:8f:46:7b:d2:17:5b:
98:7d:2f:a1
-----BEGIN CERTIFICATE-----
MIIE9zCCA9+gAwIBAgIECBPChzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhm
ODY1MWIxMTk0ZjEyZTk4ZTcwZDNkYTc4ZWZlNGRkMjQ2N2NkNDIzMB4XDTIyMDIx
NzA4MzI0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzZlYjZlNjNlMTA2
NTQ3NTA3ZTIzODUxODdiYzc2OTA2MjhiOTk3NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM4fBstpgklpibPOKFkOJr0IfIAI/PN1qjlmW63hmU1n0Tpw
g4AgmU0XAUCvuNa/rur5kTlEEJRo/42iOwqwMSU5U2rjFNYiYTpSXJpSw507OySt
Mrs01B4JzRD9ZpzusKeePB2RAHJfDnSiXosi0HLK3q+7AaliZjee9WAkYVhLmx1/
oF7xuZmdUV8Ctq9s4AGPBj8W4YNeGDo9mydrSzwg2cVQ/q4G2J9J/3Z2VzwuiksW
Ig5LI/4WDOpwfSKWp4NCqp4lwucATBAp2fjzemkyzKQ0mSUZRwucQScL8wTET1Xw
QA5+OHLRdG+3QyuL0CG8MJtXWJH9EtG0Pn8E7aECAwEAAaOCAhEwggINMB0GA1Ud
DgQWBBR2625j4QZUdQfiOFGHvHaQYouZdzAfBgNVHSMEGDAWgBT4ZRsRlPEumOcN
PaeO/k3SRnzUIzAOBgNVHQ8BAf8EBAMCB4AwZQYIKwYBBQUHAQEEWTBXMFUGCCsG
AQUFBzAChklyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzEtR1ViRVpUeExwam5EVDJuanY1TjBrWjgxQ00uY2VyMIGNBggrBgEFBQcBCwSB
gDB+MHwGCCsGAQUFBzALhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y
eS9ERUZBVUxULzRlLzgyMjQwMC0zMjQ4LTQ3MDItYjI5Yi1hMWI3Y2VlZmExNmMv
MS9kdXR1WS1FR1ZIVUg0amhSaDd4MmtHS0xtWGMucm9hMIGCBgNVHR8EezB5MHeg
daBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRl
LzgyMjQwMC0zMjQ4LTQ3MDItYjI5Yi1hMWI3Y2VlZmExNmMvMS8xLUdVYkVaVHhM
cGpuRFQybmp2NU4wa1o4MUNNLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4C
MCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLYzOAwQBLZGCMA0GCSqGSIb3
DQEBCwUAA4IBAQABhZNXzf5e536HTaAY8G13GMJyQGUIcbe4w9WRLTTZcceLmBfl
5H5l5HrZnQaGLBi3RZ3MJfohacvNaQE7N6jIG0NsP4woNyOIB1YIRe99iNEcrJxz
qvktXLGN1gsjZsFO8UHBkq9q6xANaivicsjaMdnBACC1N+icoyw3GXY1JTtS39s/
sAkQo+V5Lv/erZsCUSwfI5U1g05h6rZjWrCinZxiYST7wxmj4iWwMqXWEBQWmOhH
76xXZbPg6gXCCew/xd3LKCEEAjc49GrFIk1t9nraGtHGAQ3zpBjXKEKOdLu0A/NE
UdNIq5lRzs5FrfAw9S6XiPiPRnvSF1uYfS+h
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:55 2024 by rpki-client on console-fra.rpki-client.org