Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/K6B9toHeeh_WhoKk7y3iuZYOVAI.roa
File: K6B9toHeeh_WhoKk7y3iuZYOVAI.roa (raw, json)
Hash identifier: ZFv1iwaCruzYpGlBSeJ/Ga9uw9dWgZ1MaUqMXF7R9kQ=
Subject key identifier: 2B:A0:7D:B6:81:DE:7A:1F:D6:86:82:A4:EF:2D:E2:B9:96:0E:54:02
Certificate issuer: /CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Certificate serial: 01830254
Authority key identifier: 8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/K6B9toHeeh_WhoKk7y3iuZYOVAI.roa
Signing time: Tue 15 Feb 2022 08:34:42 +0000
ROA not before: Tue 15 Feb 2022 08:34:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 62240
IP address blocks: 45.8.24.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25363028 (0x1830254)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1c11658d2041eaf2502fe5408ed493bbd4f318
Validity
Not Before: Feb 15 08:34:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2ba07db681de7a1fd68682a4ef2de2b9960e5402
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d2:c7:cf:a8:a8:fb:af:38:2f:7f:96:bc:7a:
2c:3b:22:7e:42:78:b4:36:16:a4:f9:65:ef:fc:bf:
84:ae:6e:48:b0:46:82:0b:88:9b:ec:3a:d7:5f:58:
4d:c8:aa:e9:6d:4c:ec:b7:23:93:72:37:67:59:53:
61:04:f8:77:5f:2d:e4:bd:1c:02:4d:13:fd:7f:a8:
0d:6d:62:bb:e3:01:a0:13:6b:16:ba:a3:63:83:fe:
27:88:d8:2d:95:28:a3:e4:ad:30:2d:07:b6:5d:5a:
26:bd:65:bb:d0:99:bf:60:27:4d:bd:e6:ba:cf:13:
ef:aa:5f:27:9e:b4:44:76:52:7f:3d:b4:6a:cc:19:
5f:b8:ab:5d:a8:da:83:0f:9e:b8:47:87:d6:e4:6c:
cc:21:2d:4b:3a:81:b6:e5:e4:61:f1:55:1d:17:4e:
01:32:96:d9:47:6f:07:7b:84:a3:ce:15:bf:9c:35:
fc:40:ac:02:71:9d:80:05:d7:22:8f:fa:2e:29:6c:
c6:97:70:e5:55:72:12:25:c2:41:5c:ea:48:d4:87:
f8:54:ee:d6:5f:b3:a9:18:9b:5d:11:50:e3:4e:00:
32:9c:be:2f:10:cf:ff:79:7e:d2:27:a4:23:7d:0f:
82:b7:c5:7a:35:e6:17:b0:53:cb:9c:fb:54:cf:64:
fa:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:A0:7D:B6:81:DE:7A:1F:D6:86:82:A4:EF:2D:E2:B9:96:0E:54:02
X509v3 Authority Key Identifier:
keyid:8E:1C:11:65:8D:20:41:EA:F2:50:2F:E5:40:8E:D4:93:BB:D4:F3:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhwRZY0gQeryUC_lQI7Uk7vU8xg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/K6B9toHeeh_WhoKk7y3iuZYOVAI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/70bf8b-d8c4-40c3-9022-63348cdbf024/1/jhwRZY0gQeryUC_lQI7Uk7vU8xg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.24.0/24
Signature Algorithm: sha256WithRSAEncryption
97:1a:ea:d8:56:e0:6c:99:10:98:4b:ac:3b:b8:6e:2d:d1:ab:
32:11:9e:cd:20:da:2d:cc:ee:b2:b6:81:15:4f:f6:71:b4:c8:
30:b7:9c:55:f8:5e:38:bb:16:91:88:e4:02:1b:1f:4b:dc:5a:
bc:66:ba:af:b0:45:7a:d3:20:d1:23:3b:7e:ff:9c:c4:36:2b:
f6:31:8b:17:e1:87:80:d9:84:02:28:f3:86:f5:b0:be:f7:bc:
48:88:12:b2:a3:80:a8:ab:94:ff:dc:54:9e:ef:67:5d:e3:44:
f6:6d:2b:75:cd:60:5d:2e:80:e0:55:28:6b:7d:75:fe:45:2d:
aa:37:d7:0e:ce:5f:3b:81:b4:7d:57:94:92:db:ea:70:3e:27:
fa:0b:2b:81:e9:7f:5e:96:7d:25:97:a2:f4:e2:cf:c3:85:f4:
75:a1:9a:90:a8:c8:f3:26:58:88:47:6f:ca:de:f5:82:be:98:
5f:41:c4:70:27:62:36:fc:86:bc:64:fe:26:7c:d8:02:7d:89:
83:47:04:1e:37:92:97:54:09:0e:b4:a4:0c:fe:36:be:b8:22:
8e:b5:76:2e:b3:64:f3:bf:45:88:a2:16:be:47:5a:02:45:16:
58:91:fd:0b:95:09:65:e5:48:c9:4b:29:a5:96:39:f1:eb:3f:
a1:57:1a:63
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAYMCVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
ZTFjMTE2NThkMjA0MWVhZjI1MDJmZTU0MDhlZDQ5M2JiZDRmMzE4MB4XDTIyMDIx
NTA4MzQ0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMmJhMDdkYjY4MWRl
N2ExZmQ2ODY4MmE0ZWYyZGUyYjk5NjBlNTQwMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKjSx8+oqPuvOC9/lrx6LDsifkJ4tDYWpPll7/y/hK5uSLBG
gguIm+w6119YTciq6W1M7Lcjk3I3Z1lTYQT4d18t5L0cAk0T/X+oDW1iu+MBoBNr
FrqjY4P+J4jYLZUoo+StMC0Htl1aJr1lu9CZv2AnTb3mus8T76pfJ560RHZSfz20
aswZX7irXajagw+euEeH1uRszCEtSzqBtuXkYfFVHRdOATKW2UdvB3uEo84Vv5w1
/ECsAnGdgAXXIo/6Lilsxpdw5VVyEiXCQVzqSNSH+FTu1l+zqRibXRFQ404AMpy+
LxDP/3l+0iekI30PgrfFejXmF7BTy5z7VM9k+h0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQroH22gd56H9aGgqTvLeK5lg5UAjAfBgNVHSMEGDAWgBSOHBFljSBB6vJQ
L+VAjtSTu9TzGDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2pod1JaWTBnUWVyeVVDX2xRSTdVazd2VTh4Zy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjIvNzBiZjhiLWQ4YzQtNDBjMy05MDIyLTYzMzQ4Y2RiZjAyNC8x
L0s2Qjl0b0hlZWhfV2hvS2s3eTNpdVpZT1ZBSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjIv
NzBiZjhiLWQ4YzQtNDBjMy05MDIyLTYzMzQ4Y2RiZjAyNC8xL2pod1JaWTBnUWVy
eVVDX2xRSTdVazd2VTh4Zy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0IGDANBgkqhkiG9w0BAQsFAAOC
AQEAlxrq2FbgbJkQmEusO7huLdGrMhGezSDaLczusraBFU/2cbTIMLecVfheOLsW
kYjkAhsfS9xavGa6r7BFetMg0SM7fv+cxDYr9jGLF+GHgNmEAijzhvWwvve8SIgS
sqOAqKuU/9xUnu9nXeNE9m0rdc1gXS6A4FUoa311/kUtqjfXDs5fO4G0fVeUktvq
cD4n+gsrgel/XpZ9JZei9OLPw4X0daGakKjI8yZYiEdvyt71gr6YX0HEcCdiNvyG
vGT+JnzYAn2Jg0cEHjeSl1QJDrSkDP42vrgijrV2LrNk879FiKIWvkdaAkUWWJH9
C5UJZeVIyUsppZY58es/oVcaYw==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:09:33 2025 by rpki-client