Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/f82c8f-e5ad-41e2-9e69-49d60dd317ef/1/ZdAGgWScF42zDcIwwS_NKH48E2U.roa
File: ZdAGgWScF42zDcIwwS_NKH48E2U.roa (raw, json)
Hash identifier: iNDu52PmkqpKlcoQisKJC0Tkt0v55Zj2Pd3e3Ue5cJc=
Subject key identifier: 65:D0:06:81:64:9C:17:8D:B3:0D:C2:30:C1:2F:CD:28:7E:3C:13:65
Certificate issuer: /CN=0fbe444b6150c04304227f94bfa2768306d7f4c8
Certificate serial: 06047A72
Authority key identifier: 0F:BE:44:4B:61:50:C0:43:04:22:7F:94:BF:A2:76:83:06:D7:F4:C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/D75ES2FQwEMEIn-Uv6J2gwbX9Mg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/f82c8f-e5ad-41e2-9e69-49d60dd317ef/1/ZdAGgWScF42zDcIwwS_NKH48E2U.roa
Signing time: Sat 01 Jan 2022 10:58:42 +0000
ROA not before: Sat 01 Jan 2022 10:58:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43915
IP address blocks: 45.80.160.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100956786 (0x6047a72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0fbe444b6150c04304227f94bfa2768306d7f4c8
Validity
Not Before: Jan 1 10:58:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=65d00681649c178db30dc230c12fcd287e3c1365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:e4:b6:33:af:64:07:a7:76:9b:9f:21:32:94:
b6:d2:ec:59:0d:f3:9e:c3:ef:54:d9:3f:b7:58:7a:
96:04:5d:29:58:13:91:dd:78:98:c2:81:21:d9:5e:
10:14:ea:47:bd:2a:71:4b:3e:4a:84:bc:d4:28:0b:
af:83:43:1f:5f:c2:f6:44:f7:c5:d6:f4:d5:94:7e:
09:e8:a4:3f:1b:f2:e9:44:e5:36:d7:aa:4d:88:e4:
3a:29:08:3d:55:e2:19:83:f1:f3:57:5c:76:87:88:
48:48:84:0d:7c:fe:8c:30:b2:be:f9:30:0f:4f:0b:
0a:77:bb:7b:61:65:3a:22:be:20:6d:a3:2c:64:ab:
46:95:26:8f:7c:46:b2:bc:47:3c:f5:97:14:64:b3:
76:b4:a3:8f:ad:18:76:5f:87:47:58:33:34:89:30:
42:fe:ca:38:c7:c1:36:c2:1a:fd:ec:71:1b:d8:8a:
f7:1d:e0:13:cf:dd:35:22:32:f6:b2:79:9c:8a:d2:
d7:82:0f:e8:16:12:9e:04:33:7d:62:25:d6:80:04:
03:a5:6b:34:c1:35:40:60:8e:56:7e:03:2d:5b:b2:
2b:ea:c7:8a:41:04:0c:16:00:20:88:c5:b3:eb:b2:
39:f3:41:66:4a:52:df:35:3b:3b:9e:63:b6:2c:9c:
61:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:D0:06:81:64:9C:17:8D:B3:0D:C2:30:C1:2F:CD:28:7E:3C:13:65
X509v3 Authority Key Identifier:
keyid:0F:BE:44:4B:61:50:C0:43:04:22:7F:94:BF:A2:76:83:06:D7:F4:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/D75ES2FQwEMEIn-Uv6J2gwbX9Mg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f82c8f-e5ad-41e2-9e69-49d60dd317ef/1/ZdAGgWScF42zDcIwwS_NKH48E2U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/f82c8f-e5ad-41e2-9e69-49d60dd317ef/1/D75ES2FQwEMEIn-Uv6J2gwbX9Mg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.160.0/22
Signature Algorithm: sha256WithRSAEncryption
77:54:9d:d6:10:55:46:8a:59:04:7d:86:53:22:d4:08:bb:fd:
9b:2b:af:bd:2c:df:19:c4:ff:2e:30:0a:5c:83:ba:c9:a9:e4:
80:27:8f:ca:96:0f:61:b5:02:57:e7:41:7a:fd:c4:94:d1:fd:
73:a2:1c:bf:78:f9:cc:d5:1d:ca:ff:4e:1b:72:d6:21:26:75:
d3:e3:df:29:06:5d:21:39:0e:c6:88:29:fc:f1:87:4b:80:1a:
63:8d:6f:74:64:76:72:d4:ff:88:97:6c:2b:8d:b8:ea:7a:f1:
6c:9a:f1:87:53:a8:61:ce:ec:ea:54:39:e4:80:ab:5c:60:55:
54:1a:c7:e3:2e:3e:1b:c9:6d:a6:88:19:58:c0:bb:08:10:5e:
5f:77:fd:fe:5e:a8:46:27:8a:c2:51:3d:98:41:f0:4d:47:c4:
10:f8:ba:d0:11:4e:17:c4:ea:37:d4:5a:92:4d:70:fa:b9:fc:
9c:45:07:dd:f0:d9:12:b1:ca:33:4e:da:3d:b1:23:b6:38:4e:
46:ab:40:0d:21:49:36:4c:00:c0:0d:cf:27:e8:3b:dd:f5:b4:
e1:34:fb:a6:99:85:62:c1:49:16:b7:6c:94:4f:77:cf:d6:5b:
2f:db:5b:1c:0c:f4:ee:13:34:1e:ea:f1:cb:bd:b7:0d:77:75:
1b:31:f0:ba
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBgR6cjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZmJlNDQ0YjYxNTBjMDQzMDQyMjdmOTRiZmEyNzY4MzA2ZDdmNGM4MB4XDTIyMDEw
MTEwNTg0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjVkMDA2ODE2NDlj
MTc4ZGIzMGRjMjMwYzEyZmNkMjg3ZTNjMTM2NTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANzktjOvZAendpufITKUttLsWQ3znsPvVNk/t1h6lgRdKVgT
kd14mMKBIdleEBTqR70qcUs+SoS81CgLr4NDH1/C9kT3xdb01ZR+CeikPxvy6UTl
NteqTYjkOikIPVXiGYPx81dcdoeISEiEDXz+jDCyvvkwD08LCne7e2FlOiK+IG2j
LGSrRpUmj3xGsrxHPPWXFGSzdrSjj60Ydl+HR1gzNIkwQv7KOMfBNsIa/exxG9iK
9x3gE8/dNSIy9rJ5nIrS14IP6BYSngQzfWIl1oAEA6VrNME1QGCOVn4DLVuyK+rH
ikEEDBYAIIjFs+uyOfNBZkpS3zU7O55jtiycYXECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRl0AaBZJwXjbMNwjDBL80ofjwTZTAfBgNVHSMEGDAWgBQPvkRLYVDAQwQi
f5S/onaDBtf0yDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0Q3NUVTMkZRd0VNRUluLVV2NkoyZ3diWDlNZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNWQvZjgyYzhmLWU1YWQtNDFlMi05ZTY5LTQ5ZDYwZGQzMTdlZi8x
L1pkQUdnV1NjRjQyekRjSXd3U19OS0g0OEUyVS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQv
ZjgyYzhmLWU1YWQtNDFlMi05ZTY5LTQ5ZDYwZGQzMTdlZi8xL0Q3NUVTMkZRd0VN
RUluLVV2NkoyZ3diWDlNZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1QoDANBgkqhkiG9w0BAQsFAAOC
AQEAd1Sd1hBVRopZBH2GUyLUCLv9myuvvSzfGcT/LjAKXIO6yankgCePypYPYbUC
V+dBev3ElNH9c6Icv3j5zNUdyv9OG3LWISZ10+PfKQZdITkOxogp/PGHS4AaY41v
dGR2ctT/iJdsK4246nrxbJrxh1OoYc7s6lQ55ICrXGBVVBrH4y4+G8ltpogZWMC7
CBBeX3f9/l6oRieKwlE9mEHwTUfEEPi60BFOF8TqN9Rakk1w+rn8nEUH3fDZErHK
M07aPbEjtjhORqtADSFJNkwAwA3PJ+g73fW04TT7ppmFYsFJFrdslE93z9ZbL9tb
HAz07hM0Hurxy723DXd1GzHwug==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:06 2023 by rpki-client on console-fra.rpki-client.org