Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/La8bCJ31vOvRh12dh_SbiJ7wGBQ.roa
File: La8bCJ31vOvRh12dh_SbiJ7wGBQ.roa (raw, json)
Hash identifier: t9CYt223gzpo+4ppN9IBOMPFoYNzszZByPPpkvdK07A=
Subject key identifier: 2D:AF:1B:08:9D:F5:BC:EB:D1:87:5D:9D:87:F4:9B:88:9E:F0:18:14
Certificate issuer: /CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Certificate serial: 01847F701DDD3B40DB7CAD8F92F5EE5A6F83
Authority key identifier: 63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/La8bCJ31vOvRh12dh_SbiJ7wGBQ.roa
Signing time: Wed 16 Nov 2022 07:56:04 +0000
ROA not before: Wed 16 Nov 2022 07:56:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208911
IP address blocks: 45.12.68.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7f:70:1d:dd:3b:40:db:7c:ad:8f:92:f5:ee:5a:6f:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=63e916717ab11cccf11ef1fb5c12ee41950fad9b
Validity
Not Before: Nov 16 07:56:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2daf1b089df5bcebd1875d9d87f49b889ef01814
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:78:55:1f:22:64:c1:03:93:24:b7:dd:72:b1:
31:64:89:52:43:47:a4:d0:3a:5f:9a:36:cf:b5:a0:
b7:7d:6a:bd:f4:d6:ff:c1:a2:32:4d:7e:a2:67:0c:
fc:be:65:c5:12:48:73:c3:df:6c:ba:81:42:cf:72:
70:8a:96:5e:00:46:cf:f2:ad:5a:a0:0f:1a:7c:da:
fe:46:95:08:4d:55:42:4e:20:29:82:a8:c8:60:f4:
db:05:be:7f:ae:83:9e:7a:06:15:b2:00:6a:11:9b:
90:ed:07:5f:9b:2a:0d:3c:d1:54:62:03:8b:99:27:
37:c3:86:3d:78:0d:0b:2f:0d:45:c9:db:d5:85:39:
8f:b6:85:e3:6f:05:75:ea:ec:23:25:8d:bf:ca:c3:
c3:97:f1:39:f4:21:d9:19:4b:aa:45:b0:ab:e3:bc:
ac:4f:9a:34:f4:0d:c4:86:e4:59:58:3b:00:44:3e:
9a:ae:2a:24:6d:0c:e0:e1:08:88:cf:52:4a:5a:69:
11:b1:d9:59:36:55:a2:6e:29:48:95:f6:db:45:89:
d2:82:43:9f:15:3e:88:36:43:c0:12:7d:1a:29:f5:
18:58:92:cd:6a:b3:a0:6d:d7:be:61:5f:ae:37:ee:
27:a0:07:68:aa:4a:95:f4:87:af:89:90:23:86:f4:
11:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:AF:1B:08:9D:F5:BC:EB:D1:87:5D:9D:87:F4:9B:88:9E:F0:18:14
X509v3 Authority Key Identifier:
keyid:63:E9:16:71:7A:B1:1C:CC:F1:1E:F1:FB:5C:12:EE:41:95:0F:AD:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/La8bCJ31vOvRh12dh_SbiJ7wGBQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/4957a4-ce59-4315-9976-dc5ec748f6a5/1/Y-kWcXqxHMzxHvH7XBLuQZUPrZs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.68.0/24
Signature Algorithm: sha256WithRSAEncryption
45:10:20:49:58:51:96:bf:98:ac:53:9c:90:1a:b7:41:20:b0:
ae:2a:ba:80:3f:31:b7:a2:3c:6e:d5:39:00:ad:e5:68:1c:22:
64:e0:40:a3:16:f1:8b:73:8e:87:dd:b5:94:19:34:5c:56:47:
2e:08:92:93:5d:89:cb:ba:76:4f:28:2c:ef:ea:84:99:99:82:
09:52:db:e8:d1:df:be:88:e6:28:7d:ac:a6:0d:25:75:9f:24:
e8:77:52:3f:ae:31:14:ec:1c:84:5d:a5:a5:d9:50:34:ee:bc:
3d:04:e3:b0:55:e1:12:91:95:43:0b:cf:e5:cd:39:e1:f0:d1:
8e:94:6a:d0:4e:10:ef:f0:25:ea:31:43:b9:6a:06:b3:21:25:
c5:37:33:dc:d7:3b:11:1a:5a:80:5e:0c:1d:22:3f:eb:bf:80:
87:1d:25:31:e0:f3:07:05:70:38:19:4a:44:6e:54:a8:21:d4:
f0:98:62:07:60:db:dc:af:91:a6:14:55:37:aa:3c:b0:5b:b2:
91:26:3a:59:58:7c:30:24:91:5e:bf:7e:11:9a:8e:cd:53:b6:
c3:eb:1f:c2:2d:e3:14:67:77:75:5b:9e:fd:6d:3a:45:28:da:
73:d2:56:77:ab:2f:bd:d1:47:65:25:16:d2:e9:9c:f2:75:f8:
81:47:61:b6
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR/cB3dO0DbfK2PkvXuWm+DMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYzZTkxNjcxN2FiMTFjY2NmMTFlZjFmYjVjMTJlZTQxOTUw
ZmFkOWIwHhcNMjIxMTE2MDc1NjA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZGFmMWIwODlkZjViY2ViZDE4NzVkOWQ4N2Y0OWI4ODllZjAxODE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnHhVHyJkwQOTJLfdcrExZIlSQ0ek
0DpfmjbPtaC3fWq99Nb/waIyTX6iZwz8vmXFEkhzw99suoFCz3JwipZeAEbP8q1a
oA8afNr+RpUITVVCTiApgqjIYPTbBb5/roOeegYVsgBqEZuQ7QdfmyoNPNFUYgOL
mSc3w4Y9eA0LLw1FydvVhTmPtoXjbwV16uwjJY2/ysPDl/E59CHZGUuqRbCr47ys
T5o09A3EhuRZWDsARD6ariokbQzg4QiIz1JKWmkRsdlZNlWibilIlfbbRYnSgkOf
FT6INkPAEn0aKfUYWJLNarOgbde+YV+uN+4noAdoqkqV9IeviZAjhvQRAQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC2vGwid9bzr0YddnYf0m4ie8BgUMB8GA1UdIwQY
MBaAFGPpFnF6sRzM8R7x+1wS7kGVD62bMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYt
ZGM1ZWM3NDhmNmE1LzEvTGE4YkNKMzF2T3ZSaDEyZGhfU2JpSjd3R0JRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS80OTU3YTQtY2U1OS00MzE1LTk5NzYtZGM1ZWM3NDhmNmE1
LzEvWS1rV2NYcXhITXp4SHZIN1hCTHVRWlVQclpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQxEMA0G
CSqGSIb3DQEBCwUAA4IBAQBFECBJWFGWv5isU5yQGrdBILCuKrqAPzG3ojxu1TkA
reVoHCJk4ECjFvGLc46H3bWUGTRcVkcuCJKTXYnLunZPKCzv6oSZmYIJUtvo0d++
iOYofaymDSV1nyTod1I/rjEU7ByEXaWl2VA07rw9BOOwVeESkZVDC8/lzTnh8NGO
lGrQThDv8CXqMUO5agazISXFNzPc1zsRGlqAXgwdIj/rv4CHHSUx4PMHBXA4GUpE
blSoIdTwmGIHYNvcr5GmFFU3qjywW7KRJjpZWHwwJJFev34Rmo7NU7bD6x/CLeMU
Z3d1W579bTpFKNpz0lZ3qy+90UdlJRbS6ZzydfiBR2G2
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:51:58 2023 by rpki-client on console-ams.rpki-client.org