Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/5eRD72IjqRAPYASaNxfmgU6H_Wg.roa
File: 5eRD72IjqRAPYASaNxfmgU6H_Wg.roa (raw, json)
Hash identifier: hjorl/PF81oX4khsaceI2SZxuiBygaukcJTENjfNqdE=
Subject key identifier: E5:E4:43:EF:62:23:A9:10:0F:60:04:9A:37:17:E6:81:4E:87:FD:68
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 01847ADEFA91608CCA4C7580B7977C65B48C
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/5eRD72IjqRAPYASaNxfmgU6H_Wg.roa
Signing time: Tue 15 Nov 2022 10:39:04 +0000
ROA not before: Tue 15 Nov 2022 10:39:04 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211827
IP address blocks: 45.93.149.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:7a:de:fa:91:60:8c:ca:4c:75:80:b7:97:7c:65:b4:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Nov 15 10:39:04 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5e443ef6223a9100f60049a3717e6814e87fd68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:83:81:f0:e7:41:f4:6b:64:f6:68:de:94:e5:11:
8e:ed:9c:20:3b:96:3f:f7:d8:59:22:2b:ae:f2:6b:
de:9a:c0:4b:9a:04:ea:48:2f:49:97:ed:fe:99:7c:
9e:90:0e:f8:91:55:0c:d5:4c:49:09:04:d6:55:95:
72:c6:82:02:8d:1c:d8:49:7c:fb:5f:ae:6f:a9:58:
e3:1f:3a:36:10:97:a5:a7:36:d7:76:73:99:e8:41:
cf:ea:5d:da:71:78:68:03:c5:6c:44:a0:37:51:61:
a9:ad:af:31:e8:8e:51:99:a8:78:e4:c9:e9:5d:d7:
81:f4:39:66:49:09:eb:71:d1:00:71:c0:f5:d3:f8:
4a:03:73:3f:f8:11:74:1a:24:3b:01:87:5c:88:d9:
d2:1b:20:3c:bc:9b:99:95:9d:90:c9:1e:ee:29:fd:
62:b5:a9:ab:b3:2c:9a:38:bd:25:03:4a:c0:d6:d6:
6f:95:c5:32:d6:9b:f8:08:51:c1:87:4b:e8:4a:de:
1b:5c:b8:b2:b1:86:1f:2f:ec:35:2e:0d:23:09:1f:
f6:18:a8:8c:76:07:00:5e:e6:14:59:5f:c8:2d:de:
22:b8:15:47:19:fe:26:e4:37:0a:84:7c:da:a8:5b:
03:60:b0:eb:fd:65:bf:bf:6f:ed:50:27:8b:2a:32:
86:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E4:43:EF:62:23:A9:10:0F:60:04:9A:37:17:E6:81:4E:87:FD:68
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/5eRD72IjqRAPYASaNxfmgU6H_Wg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.93.149.0/24
Signature Algorithm: sha256WithRSAEncryption
65:b8:d0:37:6d:6c:40:06:62:b1:3a:b7:70:43:1a:b7:95:41:
76:89:6c:ad:59:ab:8c:77:22:23:f1:0b:32:45:7d:a7:80:c4:
11:7f:e0:41:2f:2a:13:e5:e1:17:ca:27:46:bd:49:7a:6d:b7:
2f:a0:50:95:51:a1:a3:89:02:bc:a2:12:45:ec:ad:e9:a0:fb:
e6:06:2b:f1:74:67:7c:29:19:7a:55:08:13:70:49:4e:dd:de:
ac:a1:c9:49:82:60:d2:e3:60:21:d7:54:a5:51:4c:31:ff:f4:
38:d0:d2:d3:e3:8a:b4:2f:77:5c:5e:a1:cb:4d:32:4b:34:26:
83:fa:7c:44:f2:41:1b:27:73:11:23:20:9a:ce:e9:96:26:c3:
bc:71:c6:24:79:5c:4f:a8:07:7a:6b:82:b2:61:99:92:0f:3c:
bd:fd:0a:ed:2a:6e:af:24:76:cf:aa:ee:61:02:84:bf:59:73:
88:3c:a2:67:18:15:3d:ac:bc:c3:b2:36:6a:92:9e:ed:22:e2:
00:c3:99:d5:28:82:99:8b:89:4e:0a:e2:3a:f9:91:36:20:f8:
1b:94:98:a0:97:f0:c1:50:5f:c0:4b:cf:7c:a3:62:e8:1d:c0:
e3:71:b0:9f:d1:49:4e:3d:20:7c:f0:90:33:eb:8c:59:1e:56:
e8:fb:c7:33
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYR63vqRYIzKTHWAt5d8ZbSMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDhlMWMxMTY1OGQyMDQxZWFmMjUwMmZlNTQwOGVkNDkzYmJk
NGYzMTgwHhcNMjIxMTE1MTAzOTA0WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWU0NDNlZjYyMjNhOTEwMGY2MDA0OWEzNzE3ZTY4MTRlODdmZDY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg4Hw50H0a2T2aN6U5RGO7ZwgO5Y/
99hZIiuu8mvemsBLmgTqSC9Jl+3+mXyekA74kVUM1UxJCQTWVZVyxoICjRzYSXz7
X65vqVjjHzo2EJelpzbXdnOZ6EHP6l3acXhoA8VsRKA3UWGpra8x6I5Rmah45Mnp
XdeB9DlmSQnrcdEAccD10/hKA3M/+BF0GiQ7AYdciNnSGyA8vJuZlZ2QyR7uKf1i
tamrsyyaOL0lA0rA1tZvlcUy1pv4CFHBh0voSt4bXLiysYYfL+w1Lg0jCR/2GKiM
dgcAXuYUWV/ILd4iuBVHGf4m5DcKhHzaqFsDYLDr/WW/v2/tUCeLKjKG7QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOXkQ+9iI6kQD2AEmjcX5oFOh/1oMB8GA1UdIwQY
MBaAFI4cEWWNIEHq8lAv5UCO1JO71PMYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjIt
NjMzNDhjZGJmMDI0LzEvNWVSRDcySWpxUkFQWUFTYU54Zm1nVTZIX1dnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Mi83MGJmOGItZDhjNC00MGMzLTkwMjItNjMzNDhjZGJmMDI0
LzEvamh3UlpZMGdRZXJ5VUNfbFFJN1VrN3ZVOHhnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALV2VMA0G
CSqGSIb3DQEBCwUAA4IBAQBluNA3bWxABmKxOrdwQxq3lUF2iWytWauMdyIj8Qsy
RX2ngMQRf+BBLyoT5eEXyidGvUl6bbcvoFCVUaGjiQK8ohJF7K3poPvmBivxdGd8
KRl6VQgTcElO3d6soclJgmDS42Ah11SlUUwx//Q40NLT44q0L3dcXqHLTTJLNCaD
+nxE8kEbJ3MRIyCazumWJsO8ccYkeVxPqAd6a4KyYZmSDzy9/QrtKm6vJHbPqu5h
AoS/WXOIPKJnGBU9rLzDsjZqkp7tIuIAw5nVKIKZi4lOCuI6+ZE2IPgblJigl/DB
UF/AS898o2LoHcDjcbCf0UlOPSB88JAz64xZHlbo+8cz
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:43 2023 by rpki-client on console-ams.rpki-client.org