Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/bd0TU7xKQfl1gNrnyWiGVyIFqwk.roa
File: bd0TU7xKQfl1gNrnyWiGVyIFqwk.roa (raw, json)
Hash identifier: WwALIVmf/mqWpJ2NdCTRvpcS7n1B+MFrIk4V2M3SU0Q=
Subject key identifier: 6D:DD:13:53:BC:4A:41:F9:75:80:DA:E7:C9:68:86:57:22:05:AB:09
Certificate issuer: /CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Certificate serial: 08915373
Authority key identifier: E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/bd0TU7xKQfl1gNrnyWiGVyIFqwk.roa
Signing time: Sat 01 Jan 2022 03:51:01 +0000
ROA not before: Sat 01 Jan 2022 03:51:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 202819
IP address blocks: 84.245.95.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143741811 (0x8915373)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7f881401abacc88c941fdf740f1ab1536f05dba
Validity
Not Before: Jan 1 03:51:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6ddd1353bc4a41f97580dae7c96886572205ab09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:de:44:cf:ce:ae:d1:3e:48:98:49:1a:d0:11:
f3:89:92:86:84:47:cc:53:e8:b5:0b:fb:38:a6:c1:
c5:73:b1:36:54:b5:e5:33:47:a3:d8:0e:a4:6f:49:
6d:2c:c0:0a:5e:ed:9d:89:7e:34:d3:07:ed:dc:d1:
bc:46:fd:10:74:a9:49:44:e2:9a:97:67:5a:a4:8f:
d5:3b:9d:2d:48:48:80:c5:91:98:b9:00:82:09:63:
4e:24:ec:84:59:54:00:f8:f3:30:dc:1a:08:89:1b:
67:a9:ea:59:db:55:a8:17:ec:58:e2:a9:0d:20:c7:
c5:b5:bb:bb:5d:be:b1:64:29:b5:cb:dc:ad:1a:eb:
5c:f2:d1:ce:ef:30:e9:77:61:b5:76:57:54:e2:e6:
ec:ed:bd:5b:9c:f6:30:67:d7:7d:f2:5a:c6:b5:80:
f6:7f:c2:dd:b4:f9:02:29:b4:c7:01:f8:52:e6:3d:
07:af:c1:4c:a4:26:fb:56:83:a2:b6:18:5e:73:c6:
f2:e6:cc:66:db:7e:81:c7:4d:f9:11:9e:18:91:d0:
ba:84:5c:7c:f6:b0:2c:17:fb:67:ba:73:29:f7:7f:
14:24:be:d1:3b:e6:7d:de:16:2a:a5:3e:01:ef:e1:
be:f3:11:93:cc:7b:66:e6:e0:2f:e0:62:b8:40:60:
a6:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:DD:13:53:BC:4A:41:F9:75:80:DA:E7:C9:68:86:57:22:05:AB:09
X509v3 Authority Key Identifier:
keyid:E7:F8:81:40:1A:BA:CC:88:C9:41:FD:F7:40:F1:AB:15:36:F0:5D:BA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_iBQBq6zIjJQf33QPGrFTbwXbo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/bd0TU7xKQfl1gNrnyWiGVyIFqwk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/f5534a-a613-47be-b42b-e2fbc3a68800/1/5_iBQBq6zIjJQf33QPGrFTbwXbo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.245.95.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:1f:7d:3e:1c:ac:20:b5:9d:7c:ed:0f:36:5c:84:3e:e3:fc:
b7:b0:53:48:ff:04:12:dc:44:ea:b9:f7:9e:bb:cc:b6:23:13:
ec:c5:fc:8f:c0:f9:a7:12:3b:9e:29:fc:92:a4:15:f4:5a:8f:
4a:e8:4f:bc:67:8f:fc:fb:e6:ad:3d:36:c9:1d:e3:19:20:aa:
cc:74:75:4a:96:b2:f2:69:1a:06:b6:9c:83:8f:2e:fa:29:be:
18:e8:b4:52:eb:0a:83:7a:24:44:f9:4c:dd:3d:44:e7:bd:7d:
42:16:1c:49:35:48:a5:e8:38:73:11:46:5d:71:80:8d:81:27:
46:ef:61:1b:52:1b:ac:20:7e:26:0c:22:74:00:1b:94:32:fc:
db:ac:d4:f2:cf:60:03:c0:c5:b7:f1:f5:89:54:fb:2e:7f:b3:
bd:83:3d:86:57:6a:66:8c:18:35:3e:13:35:c9:8e:87:03:de:
24:15:df:92:30:73:c5:50:a9:b8:44:31:65:b3:fa:5f:47:fd:
44:25:89:ab:d7:a3:63:f3:90:31:6e:da:22:61:fe:50:67:7a:
ea:11:17:47:3c:4d:d2:41:f1:a7:53:3d:e6:79:e3:26:d7:4a:
c7:2d:6b:88:3b:81:35:65:99:8a:3d:0e:e0:52:5e:a7:c4:6d:
0e:1d:bf:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECJFTczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
N2Y4ODE0MDFhYmFjYzg4Yzk0MWZkZjc0MGYxYWIxNTM2ZjA1ZGJhMB4XDTIyMDEw
MTAzNTEwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmRkZDEzNTNiYzRh
NDFmOTc1ODBkYWU3Yzk2ODg2NTcyMjA1YWIwOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALTeRM/OrtE+SJhJGtAR84mShoRHzFPotQv7OKbBxXOxNlS1
5TNHo9gOpG9JbSzACl7tnYl+NNMH7dzRvEb9EHSpSUTimpdnWqSP1TudLUhIgMWR
mLkAggljTiTshFlUAPjzMNwaCIkbZ6nqWdtVqBfsWOKpDSDHxbW7u12+sWQptcvc
rRrrXPLRzu8w6XdhtXZXVOLm7O29W5z2MGfXffJaxrWA9n/C3bT5Aim0xwH4UuY9
B6/BTKQm+1aDorYYXnPG8ubMZtt+gcdN+RGeGJHQuoRcfPawLBf7Z7pzKfd/FCS+
0Tvmfd4WKqU+Ae/hvvMRk8x7ZubgL+BiuEBgppECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRt3RNTvEpB+XWA2ufJaIZXIgWrCTAfBgNVHSMEGDAWgBTn+IFAGrrMiMlB
/fdA8asVNvBdujAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVfaUJRQnE2eklqSlFmMzNRUEdyRlRid1hiby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNjkvZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8x
L2JkMFRVN3hLUWZsMWdOcm55V2lHVnlJRnF3ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkv
ZjU1MzRhLWE2MTMtNDdiZS1iNDJiLWUyZmJjM2E2ODgwMC8xLzVfaUJRQnE2eklq
SlFmMzNRUEdyRlRid1hiby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAFT1XzANBgkqhkiG9w0BAQsFAAOC
AQEALB99PhysILWdfO0PNlyEPuP8t7BTSP8EEtxE6rn3nrvMtiMT7MX8j8D5pxI7
nin8kqQV9FqPSuhPvGeP/PvmrT02yR3jGSCqzHR1Spay8mkaBracg48u+im+GOi0
UusKg3okRPlM3T1E5719QhYcSTVIpeg4cxFGXXGAjYEnRu9hG1IbrCB+JgwidAAb
lDL826zU8s9gA8DFt/H1iVT7Ln+zvYM9hldqZowYNT4TNcmOhwPeJBXfkjBzxVCp
uEQxZbP6X0f9RCWJq9ejY/OQMW7aImH+UGd66hEXRzxN0kHxp1M95nnjJtdKxy1r
iDuBNWWZij0O4FJep8RtDh2/hA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:04 2023 by rpki-client on console-ams.rpki-client.org