Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/aV4M5W40XK3PTe3ppjPltdd0JIM.roa
File: aV4M5W40XK3PTe3ppjPltdd0JIM.roa (raw, json)
Hash identifier: FuJ2K78GiGVNVEnNdWm2XlimNlqGIIFIy9g6QtVhabU=
Subject key identifier: 69:5E:0C:E5:6E:34:5C:AD:CF:4D:ED:E9:A6:33:E5:B5:D7:74:24:83
Certificate issuer: /CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Certificate serial: 09A522B8
Authority key identifier: BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/aV4M5W40XK3PTe3ppjPltdd0JIM.roa
Signing time: Wed 20 Apr 2022 15:00:03 +0000
ROA not before: Wed 20 Apr 2022 15:00:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 185.151.44.0/23 maxlen: 23
185.151.47.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 161817272 (0x9a522b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4e21b27d6f84ebdd888c68e79ce555c846dacb
Validity
Not Before: Apr 20 15:00:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=695e0ce56e345cadcf4dede9a633e5b5d7742483
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:5a:75:a3:8f:19:15:c1:38:54:da:cb:e4:bc:
88:e3:f9:2d:51:9f:b3:e5:49:26:ae:a5:af:45:f5:
70:34:b0:1d:2a:6d:2c:f1:18:72:90:5b:0b:30:f1:
d2:aa:95:98:3e:2a:49:a8:3b:86:70:ad:c7:e9:fb:
38:17:4f:29:82:3a:82:4e:ad:bb:90:6c:e6:c5:3a:
26:8e:b3:c6:15:57:22:44:aa:e4:30:61:29:8c:2a:
e8:c8:1b:fc:d7:92:bb:6e:77:4c:62:cd:59:db:12:
49:b5:f2:c4:fd:59:97:1b:65:44:34:13:4a:ba:96:
dd:25:b8:8d:67:fb:66:78:c6:2b:33:4d:cf:53:f7:
d4:03:92:f7:76:8e:3f:2c:de:38:2b:46:59:85:05:
b3:8c:5a:21:fb:df:37:da:95:d7:bd:48:1a:aa:40:
b4:a2:c1:e1:cb:71:d3:83:57:ff:f3:09:2b:d6:79:
79:1f:e4:df:a8:72:ad:c5:88:21:78:31:c6:2c:c5:
7c:ed:e8:43:ef:b4:41:d3:77:4e:42:0f:f1:ba:db:
45:6b:0b:aa:c5:04:b7:63:5e:77:a3:57:1e:7a:ce:
ae:88:c7:d6:fd:cc:24:20:75:53:8e:de:17:72:2c:
ab:55:61:d6:3e:2a:12:90:23:19:db:62:3c:0f:59:
fc:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:5E:0C:E5:6E:34:5C:AD:CF:4D:ED:E9:A6:33:E5:B5:D7:74:24:83
X509v3 Authority Key Identifier:
keyid:BC:4E:21:B2:7D:6F:84:EB:DD:88:8C:68:E7:9C:E5:55:C8:46:DA:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE4hsn1vhOvdiIxo55zlVchG2ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/aV4M5W40XK3PTe3ppjPltdd0JIM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/a0d73d-6564-4142-a6ee-83e73cb25ea5/1/vE4hsn1vhOvdiIxo55zlVchG2ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.151.44.0/23
185.151.47.0/24
Signature Algorithm: sha256WithRSAEncryption
68:7c:a3:14:98:7d:e3:61:ff:04:3f:f4:91:33:42:a2:d0:93:
e5:62:05:8a:1d:d2:05:fc:44:9b:a1:cd:8c:f9:0f:64:9d:37:
0b:6f:1e:ea:cb:b1:a5:02:c6:16:d4:a8:05:9f:f3:65:88:97:
2b:96:77:e6:41:52:89:6a:e8:f1:5d:5d:11:d3:ad:03:29:9a:
50:28:2e:24:59:38:8a:74:96:05:85:2f:10:52:74:50:60:81:
e6:4b:b8:ea:84:1f:49:fb:93:7d:2b:49:b6:b1:b2:d6:c8:e5:
65:33:71:9a:47:7d:99:56:f4:87:17:6a:85:b6:1c:be:0d:50:
42:be:67:74:ac:da:29:6e:c0:e4:16:a4:e8:3f:c8:af:fa:82:
51:2d:af:8b:b0:b4:d0:85:72:86:e1:f7:17:1e:bc:34:83:e6:
b3:97:65:0c:d9:08:8e:bf:fd:6c:fe:9b:e3:6c:29:cd:41:f3:
2e:7f:2a:46:5d:a8:cf:47:79:5f:06:30:1c:52:6c:49:6f:6c:
67:51:b8:18:28:5e:4d:50:94:2d:81:13:47:56:17:3f:68:58:
a8:fa:23:00:9e:74:7c:f0:da:86:cd:50:84:ef:9a:17:58:07:
38:74:db:74:53:91:6f:cb:e5:fd:19:13:28:12:17:f1:40:6a:
83:54:da:f2
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIECaUiuDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YzRlMjFiMjdkNmY4NGViZGQ4ODhjNjhlNzljZTU1NWM4NDZkYWNiMB4XDTIyMDQy
MDE1MDAwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjk1ZTBjZTU2ZTM0
NWNhZGNmNGRlZGU5YTYzM2U1YjVkNzc0MjQ4MzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANladaOPGRXBOFTay+S8iOP5LVGfs+VJJq6lr0X1cDSwHSpt
LPEYcpBbCzDx0qqVmD4qSag7hnCtx+n7OBdPKYI6gk6tu5Bs5sU6Jo6zxhVXIkSq
5DBhKYwq6Mgb/NeSu253TGLNWdsSSbXyxP1ZlxtlRDQTSrqW3SW4jWf7ZnjGKzNN
z1P31AOS93aOPyzeOCtGWYUFs4xaIfvfN9qV171IGqpAtKLB4ctx04NX//MJK9Z5
eR/k36hyrcWIIXgxxizFfO3oQ++0QdN3TkIP8brbRWsLqsUEt2Ned6NXHnrOrojH
1v3MJCB1U47eF3Isq1Vh1j4qEpAjGdtiPA9Z/I0CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBRpXgzlbjRcrc9N7emmM+W113QkgzAfBgNVHSMEGDAWgBS8TiGyfW+E692I
jGjnnOVVyEbayzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3ZFNGhzbjF2aE92ZGlJeG81NXpsVmNoRzJzcy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjUvYTBkNzNkLTY1NjQtNDE0Mi1hNmVlLTgzZTczY2IyNWVhNS8x
L2FWNE01VzQwWEszUFRlM3BwalBsdGRkMEpJTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUv
YTBkNzNkLTY1NjQtNDE0Mi1hNmVlLTgzZTczY2IyNWVhNS8xL3ZFNGhzbjF2aE92
ZGlJeG81NXpsVmNoRzJzcy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAbmXLAMEALmXLzANBgkqhkiG9w0B
AQsFAAOCAQEAaHyjFJh942H/BD/0kTNCotCT5WIFih3SBfxEm6HNjPkPZJ03C28e
6suxpQLGFtSoBZ/zZYiXK5Z35kFSiWro8V1dEdOtAymaUCguJFk4inSWBYUvEFJ0
UGCB5ku46oQfSfuTfStJtrGy1sjlZTNxmkd9mVb0hxdqhbYcvg1QQr5ndKzaKW7A
5Bak6D/Ir/qCUS2vi7C00IVyhuH3Fx68NIPms5dlDNkIjr/9bP6b42wpzUHzLn8q
Rl2oz0d5XwYwHFJsSW9sZ1G4GCheTVCULYETR1YXP2hYqPojAJ50fPDahs1QhO+a
F1gHOHTbdFORb8vl/RkTKBIX8UBqg1Ta8g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:15:04 2024 by rpki-client on console-ams.rpki-client.org