Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/xGTZkEjQ_LQZslJ-EUNseiFyJM4.roa
File: xGTZkEjQ_LQZslJ-EUNseiFyJM4.roa (raw, json)
Hash identifier: dfVFIfrmJUpo9y91s/0GVLCmA2AEBU5eAgUuM9olVvs=
Subject key identifier: C4:64:D9:90:48:D0:FC:B4:19:B2:52:7E:11:43:6C:7A:21:72:24:CE
Certificate issuer: /CN=5bee051a93901ecc01744079aa4ac2fb077b9fc1
Certificate serial: 043337FC
Authority key identifier: 5B:EE:05:1A:93:90:1E:CC:01:74:40:79:AA:4A:C2:FB:07:7B:9F:C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/W-4FGpOQHswBdEB5qkrC-wd7n8E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/xGTZkEjQ_LQZslJ-EUNseiFyJM4.roa
Signing time: Sat 01 Jan 2022 16:06:07 +0000
ROA not before: Sat 01 Jan 2022 16:06:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211215
IP address blocks: 45.128.224.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 70465532 (0x43337fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5bee051a93901ecc01744079aa4ac2fb077b9fc1
Validity
Not Before: Jan 1 16:06:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c464d99048d0fcb419b2527e11436c7a217224ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:2a:b2:22:b1:13:1f:3d:ca:61:f2:6c:22:20:
a9:ea:30:f7:8a:96:a8:cc:17:a2:6a:a0:d3:41:44:
81:e3:61:b7:45:9c:f6:70:32:82:d2:e2:39:05:85:
b7:d0:da:89:fa:d1:07:8c:a1:ec:aa:39:5d:91:59:
8e:53:86:3f:a1:83:e8:3e:2b:8d:6f:47:64:7a:23:
90:26:cd:20:ff:35:7b:10:16:17:cb:f5:39:20:9b:
8f:48:c8:a8:58:62:8d:21:18:f3:5d:0f:a7:f9:3c:
33:98:38:2d:4c:41:8f:98:5d:ca:dc:67:37:5b:05:
59:c2:d0:33:20:0b:6f:6a:10:3f:12:0b:f7:f4:88:
bf:38:18:4d:94:51:3c:b7:32:d9:a2:c3:ab:11:da:
43:76:aa:4a:94:a8:7b:01:f5:31:6c:4c:c8:4a:8b:
dc:60:de:27:9e:a0:8e:b7:29:9e:01:56:5e:b5:97:
4c:9e:31:22:cf:bb:1b:2d:d0:2e:c0:2b:e5:10:e9:
ef:3f:9a:ff:da:97:36:8c:01:81:d3:43:5f:c2:7e:
b5:b6:8b:9c:87:f3:bb:22:00:3e:bc:8e:db:c1:b7:
2a:80:24:dc:1c:8f:86:a7:17:84:e9:e3:d3:df:03:
4a:c0:8f:c3:47:2c:d1:45:e3:2e:e2:ac:46:d4:cd:
35:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:64:D9:90:48:D0:FC:B4:19:B2:52:7E:11:43:6C:7A:21:72:24:CE
X509v3 Authority Key Identifier:
keyid:5B:EE:05:1A:93:90:1E:CC:01:74:40:79:AA:4A:C2:FB:07:7B:9F:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/W-4FGpOQHswBdEB5qkrC-wd7n8E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/xGTZkEjQ_LQZslJ-EUNseiFyJM4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8eff42-5b55-4e6f-8222-a52a8795d956/1/W-4FGpOQHswBdEB5qkrC-wd7n8E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.128.224.0/22
Signature Algorithm: sha256WithRSAEncryption
a4:46:1f:06:1a:de:f1:64:24:b1:f5:30:72:d0:94:d2:46:09:
ca:c0:e7:57:cf:d6:6e:37:4a:39:8b:ff:61:9c:16:13:b6:ca:
75:f5:d6:da:95:96:70:1f:e4:68:31:0b:08:4d:8f:bb:03:3c:
d9:f7:11:85:74:c7:80:cf:86:89:5f:54:fd:5a:3c:62:4b:c2:
cb:f2:ba:77:84:b6:17:98:4d:c7:e2:c9:dd:53:13:57:ed:83:
d2:45:c1:10:2d:5d:05:6e:76:dd:05:1a:ef:fb:6c:29:97:e0:
62:1c:7c:55:b9:b3:d7:6b:21:cd:b4:b5:75:64:20:4e:60:39:
cb:91:06:fa:3b:36:7e:74:84:0c:f8:26:f7:96:55:7c:42:56:
aa:8c:28:a8:f6:9f:a3:fc:e7:92:b5:cf:e0:30:5d:81:25:35:
02:55:b0:00:16:88:88:82:71:1f:e1:c7:82:ea:85:73:82:5e:
1c:00:de:16:a7:f8:27:22:40:17:be:18:34:27:48:fc:a8:ec:
ca:99:8c:69:ab:ab:7e:46:de:64:d7:fd:72:25:2a:7d:3d:ea:
01:88:30:c2:aa:e2:bd:db:83:77:f9:2c:53:16:9b:36:34:63:
63:ab:99:2c:ef:1c:ba:c9:a3:9a:42:e0:1e:e8:12:aa:84:a5:
38:e0:2a:ee
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBDM3/DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
YmVlMDUxYTkzOTAxZWNjMDE3NDQwNzlhYTRhYzJmYjA3N2I5ZmMxMB4XDTIyMDEw
MTE2MDYwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzQ2NGQ5OTA0OGQw
ZmNiNDE5YjI1MjdlMTE0MzZjN2EyMTcyMjRjZTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALIqsiKxEx89ymHybCIgqeow94qWqMwXomqg00FEgeNht0Wc
9nAygtLiOQWFt9DaifrRB4yh7Ko5XZFZjlOGP6GD6D4rjW9HZHojkCbNIP81exAW
F8v1OSCbj0jIqFhijSEY810Pp/k8M5g4LUxBj5hdytxnN1sFWcLQMyALb2oQPxIL
9/SIvzgYTZRRPLcy2aLDqxHaQ3aqSpSoewH1MWxMyEqL3GDeJ56gjrcpngFWXrWX
TJ4xIs+7Gy3QLsAr5RDp7z+a/9qXNowBgdNDX8J+tbaLnIfzuyIAPryO28G3KoAk
3ByPhqcXhOnj098DSsCPw0cs0UXjLuKsRtTNNcECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTEZNmQSND8tBmyUn4RQ2x6IXIkzjAfBgNVHSMEGDAWgBRb7gUak5AezAF0
QHmqSsL7B3ufwTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1ctNEZHcE9RSHN3QmRFQjVxa3JDLXdkN244RS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjYvOGVmZjQyLTViNTUtNGU2Zi04MjIyLWE1MmE4Nzk1ZDk1Ni8x
L3hHVFprRWpRX0xRWnNsSi1FVU5zZWlGeUpNNC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYv
OGVmZjQyLTViNTUtNGU2Zi04MjIyLWE1MmE4Nzk1ZDk1Ni8xL1ctNEZHcE9RSHN3
QmRFQjVxa3JDLXdkN244RS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2A4DANBgkqhkiG9w0BAQsFAAOC
AQEApEYfBhre8WQksfUwctCU0kYJysDnV8/WbjdKOYv/YZwWE7bKdfXW2pWWcB/k
aDELCE2PuwM82fcRhXTHgM+GiV9U/Vo8YkvCy/K6d4S2F5hNx+LJ3VMTV+2D0kXB
EC1dBW523QUa7/tsKZfgYhx8Vbmz12shzbS1dWQgTmA5y5EG+js2fnSEDPgm95ZV
fEJWqowoqPafo/znkrXP4DBdgSU1AlWwABaIiIJxH+HHguqFc4JeHADeFqf4JyJA
F74YNCdI/KjsypmMaaurfkbeZNf9ciUqfT3qAYgwwqrivduDd/ksUxabNjRjY6uZ
LO8cusmjmkLgHugSqoSlOOAq7g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:33:13 2024 by rpki-client on console-fra.rpki-client.org