Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/E6KOhpJWsF_Wiz-qXm7eEEd1_XE.roa
File: E6KOhpJWsF_Wiz-qXm7eEEd1_XE.roa (raw, json)
Hash identifier: K52tRIvsRQIFqjTjK+SsL/5sLezFb0a9kZ/c1TKONwc=
Subject key identifier: 13:A2:8E:86:92:56:B0:5F:D6:8B:3F:AA:5E:6E:DE:10:47:75:FD:71
Certificate issuer: /CN=7c4b917dc9046a065678ae0df4d3e30369c59c69
Certificate serial: 08947C24
Authority key identifier: 7C:4B:91:7D:C9:04:6A:06:56:78:AE:0D:F4:D3:E3:03:69:C5:9C:69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fEuRfckEagZWeK4N9NPjA2nFnGk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/E6KOhpJWsF_Wiz-qXm7eEEd1_XE.roa
Signing time: Sat 01 Jan 2022 13:56:40 +0000
ROA not before: Sat 01 Jan 2022 13:56:40 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208840
IP address blocks: 45.12.120.0/24 maxlen: 24
2a0e:af00::/44 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143948836 (0x8947c24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7c4b917dc9046a065678ae0df4d3e30369c59c69
Validity
Not Before: Jan 1 13:56:40 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=13a28e869256b05fd68b3faa5e6ede104775fd71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:67:d8:87:1c:62:e8:9a:8d:3b:cf:57:fb:45:
f9:cf:e4:f2:c8:cd:c5:92:90:4a:50:e9:e8:e1:3e:
d9:9d:d8:3f:ed:17:61:0a:49:67:80:eb:cf:3c:fa:
1a:4c:f4:63:58:7f:37:f2:42:c9:c9:d2:69:01:dc:
3b:92:88:d3:f5:3b:ab:b4:52:ba:19:e8:aa:91:b6:
2f:47:f3:af:40:b0:10:c4:0f:20:49:7f:a4:e6:30:
f8:fb:44:f5:cb:47:b3:bd:fb:32:71:1e:21:b9:af:
71:29:48:dd:86:d9:a3:dc:4d:2f:33:58:e8:9a:c9:
c8:a7:bb:47:e9:62:db:1d:4a:fc:2c:c8:02:2c:86:
b2:f5:a8:e2:0a:7b:51:28:8b:96:05:14:c6:7d:9f:
ce:67:da:8a:a2:19:d3:e4:97:30:71:73:39:d2:95:
1d:96:29:39:04:c7:d0:21:2d:53:63:2a:c0:bc:90:
79:d5:5c:c2:76:d3:ce:7a:50:26:8f:a2:2f:48:8b:
23:cb:09:93:27:3f:cf:41:7c:ac:8b:d7:12:c8:9b:
e7:b2:6c:45:e9:c0:4b:a0:7d:3c:22:92:b3:e3:15:
2d:8f:e6:26:e8:90:b5:89:45:a0:3e:bd:ec:ea:a1:
3d:b9:24:97:71:59:34:7c:89:85:35:bf:cc:dc:9f:
57:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:A2:8E:86:92:56:B0:5F:D6:8B:3F:AA:5E:6E:DE:10:47:75:FD:71
X509v3 Authority Key Identifier:
keyid:7C:4B:91:7D:C9:04:6A:06:56:78:AE:0D:F4:D3:E3:03:69:C5:9C:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fEuRfckEagZWeK4N9NPjA2nFnGk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/E6KOhpJWsF_Wiz-qXm7eEEd1_XE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5b/8d85d7-4049-4b5a-9bf7-91c70f61a067/1/fEuRfckEagZWeK4N9NPjA2nFnGk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.120.0/24
IPv6:
2a0e:af00::/44
Signature Algorithm: sha256WithRSAEncryption
2f:d2:cc:80:75:8c:30:77:98:48:f0:06:e8:a0:b9:d0:86:91:
78:ec:38:8b:0b:d0:23:53:2f:57:33:e2:4e:bf:08:4f:08:23:
cb:cb:74:07:9a:34:de:fa:67:ab:a6:9a:68:7e:de:6b:fa:52:
60:8d:10:10:1c:18:f0:3c:a2:6d:27:d9:9f:90:fd:fe:bf:8e:
03:11:61:75:55:c8:c1:55:67:d3:be:32:ac:ee:0e:13:4f:a6:
a8:33:9e:53:5b:37:02:6a:91:a5:b5:7c:dd:e7:b6:7a:75:4c:
9a:bc:ae:4b:fa:32:bd:74:f4:38:ee:18:24:be:e4:a9:89:37:
16:03:74:f4:80:fd:26:64:07:97:2f:f1:30:aa:dd:eb:52:41:
be:44:07:4c:6b:a5:4b:a5:98:21:81:a3:8d:92:16:41:61:ed:
8b:19:2c:8a:00:c7:87:d4:af:c6:1f:fa:bf:9f:5d:b2:60:dd:
de:c8:c4:38:ce:b2:d8:11:ea:ec:83:3b:3e:8a:d8:57:05:f7:
c6:40:0d:d0:70:82:7c:b0:2c:01:bf:36:bf:4c:2c:4f:03:39:
05:70:cb:d7:e5:67:88:ab:64:2e:a9:73:5b:96:f6:b9:92:a0:
3a:20:fe:da:05:a5:7d:5c:3c:10:d1:a6:47:7b:08:bb:09:5a:
42:f3:0d:68
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIECJR8JDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
YzRiOTE3ZGM5MDQ2YTA2NTY3OGFlMGRmNGQzZTMwMzY5YzU5YzY5MB4XDTIyMDEw
MTEzNTY0MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTNhMjhlODY5MjU2
YjA1ZmQ2OGIzZmFhNWU2ZWRlMTA0Nzc1ZmQ3MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK1n2IccYuiajTvPV/tF+c/k8sjNxZKQSlDp6OE+2Z3YP+0X
YQpJZ4Drzzz6Gkz0Y1h/N/JCycnSaQHcO5KI0/U7q7RSuhnoqpG2L0fzr0CwEMQP
IEl/pOYw+PtE9ctHs737MnEeIbmvcSlI3YbZo9xNLzNY6JrJyKe7R+li2x1K/CzI
AiyGsvWo4gp7USiLlgUUxn2fzmfaiqIZ0+SXMHFzOdKVHZYpOQTH0CEtU2MqwLyQ
edVcwnbTznpQJo+iL0iLI8sJkyc/z0F8rIvXEsib57JsRenAS6B9PCKSs+MVLY/m
JuiQtYlFoD697OqhPbkkl3FZNHyJhTW/zNyfV88CAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBQToo6GklawX9aLP6pebt4QR3X9cTAfBgNVHSMEGDAWgBR8S5F9yQRqBlZ4
rg300+MDacWcaTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZFdVJmY2tFYWdaV2VLNE45TlBqQTJuRm5Hay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWIvOGQ4NWQ3LTQwNDktNGI1YS05YmY3LTkxYzcwZjYxYTA2Ny8x
L0U2S09ocEpXc0ZfV2l6LXFYbTdlRUVkMV9YRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWIv
OGQ4NWQ3LTQwNDktNGI1YS05YmY3LTkxYzcwZjYxYTA2Ny8xL2ZFdVJmY2tFYWda
V2VLNE45TlBqQTJuRm5Hay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAC0MeDAPBAIAAjAJAwcEKg6vAAAA
MA0GCSqGSIb3DQEBCwUAA4IBAQAv0syAdYwwd5hI8AbooLnQhpF47DiLC9AjUy9X
M+JOvwhPCCPLy3QHmjTe+merpppoft5r+lJgjRAQHBjwPKJtJ9mfkP3+v44DEWF1
VcjBVWfTvjKs7g4TT6aoM55TWzcCapGltXzd57Z6dUyavK5L+jK9dPQ47hgkvuSp
iTcWA3T0gP0mZAeXL/Ewqt3rUkG+RAdMa6VLpZghgaONkhZBYe2LGSyKAMeH1K/G
H/q/n12yYN3eyMQ4zrLYEersgzs+ithXBffGQA3QcIJ8sCwBvza/TCxPAzkFcMvX
5WeIq2QuqXNblva5kqA6IP7aBaV9XDwQ0aZHewi7CVpC8w1o
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:48:59 2023 by rpki-client on console-fra.rpki-client.org