Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/PLQPQdOkpnV8_c5rDYWZtWPCuZo.roa
File: PLQPQdOkpnV8_c5rDYWZtWPCuZo.roa (raw, json)
Hash identifier: 43JhZ7e2ETHRre9wjKAXv7eUijXONymEDMRgjqG+xm0=
Subject key identifier: 3C:B4:0F:41:D3:A4:A6:75:7C:FD:CE:6B:0D:85:99:B5:63:C2:B9:9A
Certificate issuer: /CN=e0afb160a97338ab21114840addc6180a5ba42b1
Certificate serial: 03F29926
Authority key identifier: E0:AF:B1:60:A9:73:38:AB:21:11:48:40:AD:DC:61:80:A5:BA:42:B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4K-xYKlzOKshEUhArdxhgKW6QrE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/PLQPQdOkpnV8_c5rDYWZtWPCuZo.roa
Signing time: Wed 09 Feb 2022 13:55:03 +0000
ROA not before: Wed 09 Feb 2022 13:55:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 24586
IP address blocks: 45.153.84.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66230566 (0x3f29926)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e0afb160a97338ab21114840addc6180a5ba42b1
Validity
Not Before: Feb 9 13:55:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3cb40f41d3a4a6757cfdce6b0d8599b563c2b99a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8b:a6:5b:27:be:ac:de:7a:b1:e9:46:96:d7:
bc:75:6e:b5:1a:52:9f:6c:03:85:7d:12:4e:80:2d:
07:62:5b:7e:0c:74:9f:c0:44:09:d4:24:3c:d6:6d:
dd:b2:7e:85:9d:95:0c:cf:75:7f:8d:3e:9b:3d:b4:
be:ef:e0:67:eb:90:a2:10:fd:6e:d1:2f:50:f1:66:
23:95:f5:34:8d:60:6f:0f:58:0b:b6:0f:93:67:15:
e7:7d:e9:d4:e6:76:ef:f8:a9:11:17:a2:04:f3:b3:
a9:3f:28:88:0d:43:66:7d:69:2f:50:a5:4c:2a:7e:
a7:34:67:ee:e0:18:d0:b6:08:fd:d1:42:f3:c0:45:
92:fb:72:ab:de:7b:9b:47:09:31:ac:6e:5c:75:e5:
b7:ac:47:be:e8:19:00:c4:13:1c:49:18:26:3a:b8:
7c:c5:e9:63:ca:e4:f2:a0:92:30:f5:60:c9:c0:7a:
ec:cb:da:62:75:1e:35:45:91:0e:9e:50:4c:96:91:
d1:a5:4b:49:b3:24:d8:5f:47:e2:e9:56:2f:a0:8e:
c0:fe:60:a7:e3:94:5d:cb:9f:6d:73:77:5c:31:c1:
2f:89:d6:ea:e0:78:21:d5:74:ed:02:af:25:af:44:
f6:18:93:cc:5e:f4:b6:a1:cc:55:27:d7:d7:40:1d:
34:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:B4:0F:41:D3:A4:A6:75:7C:FD:CE:6B:0D:85:99:B5:63:C2:B9:9A
X509v3 Authority Key Identifier:
keyid:E0:AF:B1:60:A9:73:38:AB:21:11:48:40:AD:DC:61:80:A5:BA:42:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4K-xYKlzOKshEUhArdxhgKW6QrE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/PLQPQdOkpnV8_c5rDYWZtWPCuZo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/466119-873f-4cfd-91a6-b1e313d79893/1/4K-xYKlzOKshEUhArdxhgKW6QrE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.84.0/22
Signature Algorithm: sha256WithRSAEncryption
5d:bb:5e:4c:f5:11:2e:4c:09:c0:20:99:0e:10:ce:75:ea:ea:
c9:e4:f0:81:cc:0f:09:af:5f:01:4b:9b:8d:91:b9:da:44:f1:
34:98:81:68:d2:be:31:9f:9b:dc:dc:e8:23:1b:fb:8c:ae:ff:
93:d9:ce:c8:81:f5:65:30:16:ed:27:b2:7d:64:e8:59:73:40:
bb:f5:fa:fc:bf:62:69:54:74:c2:aa:91:ab:b2:7c:66:62:ec:
c6:c0:c8:ea:11:56:b9:ad:2c:db:a0:79:17:77:e3:16:61:0a:
80:7c:69:a9:94:cb:e7:79:31:67:a3:a2:e3:f4:1c:0d:9c:38:
3d:26:42:d7:5c:2b:51:c0:83:1e:d1:f8:4f:88:4d:5a:6e:fb:
9e:66:07:9b:01:8d:d0:1f:2e:07:bb:bd:30:47:d4:2a:ed:d9:
a4:eb:5a:e3:8c:db:80:aa:86:93:9a:c0:23:de:46:55:51:96:
62:d5:e8:3a:2b:29:5a:bd:3e:04:46:d1:08:af:6e:f6:30:fe:
d7:f9:48:af:11:6d:03:e1:bb:80:21:48:e6:90:c9:55:c1:6c:
19:0e:ed:4f:78:a1:a7:58:19:9a:89:b1:18:69:07:c1:3a:6c:
fc:a8:00:19:e1:47:a5:1a:16:18:7e:58:f5:f6:63:ac:e7:e3:
a8:3b:10:08
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA/KZJjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MGFmYjE2MGE5NzMzOGFiMjExMTQ4NDBhZGRjNjE4MGE1YmE0MmIxMB4XDTIyMDIw
OTEzNTUwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2NiNDBmNDFkM2E0
YTY3NTdjZmRjZTZiMGQ4NTk5YjU2M2MyYjk5YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMSLplsnvqzeerHpRpbXvHVutRpSn2wDhX0SToAtB2Jbfgx0
n8BECdQkPNZt3bJ+hZ2VDM91f40+mz20vu/gZ+uQohD9btEvUPFmI5X1NI1gbw9Y
C7YPk2cV533p1OZ27/ipEReiBPOzqT8oiA1DZn1pL1ClTCp+pzRn7uAY0LYI/dFC
88BFkvtyq957m0cJMaxuXHXlt6xHvugZAMQTHEkYJjq4fMXpY8rk8qCSMPVgycB6
7MvaYnUeNUWRDp5QTJaR0aVLSbMk2F9H4ulWL6COwP5gp+OUXcufbXN3XDHBL4nW
6uB4IdV07QKvJa9E9hiTzF70tqHMVSfX10AdNPECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ8tA9B06SmdXz9zmsNhZm1Y8K5mjAfBgNVHSMEGDAWgBTgr7FgqXM4qyER
SECt3GGApbpCsTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzRLLXhZS2x6T0tzaEVVaEFyZHhoZ0tXNlFyRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmIvNDY2MTE5LTg3M2YtNGNmZC05MWE2LWIxZTMxM2Q3OTg5My8x
L1BMUVBRZE9rcG5WOF9jNXJEWVdadFdQQ3Vaby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmIv
NDY2MTE5LTg3M2YtNGNmZC05MWE2LWIxZTMxM2Q3OTg5My8xLzRLLXhZS2x6T0tz
aEVVaEFyZHhoZ0tXNlFyRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2ZVDANBgkqhkiG9w0BAQsFAAOC
AQEAXbteTPURLkwJwCCZDhDOderqyeTwgcwPCa9fAUubjZG52kTxNJiBaNK+MZ+b
3NzoIxv7jK7/k9nOyIH1ZTAW7SeyfWToWXNAu/X6/L9iaVR0wqqRq7J8ZmLsxsDI
6hFWua0s26B5F3fjFmEKgHxpqZTL53kxZ6Oi4/QcDZw4PSZC11wrUcCDHtH4T4hN
Wm77nmYHmwGN0B8uB7u9MEfUKu3ZpOta44zbgKqGk5rAI95GVVGWYtXoOispWr0+
BEbRCK9u9jD+1/lIrxFtA+G7gCFI5pDJVcFsGQ7tT3ihp1gZmomxGGkHwTps/KgA
GeFHpRoWGH5Y9fZjrOfjqDsQCA==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:20:14 2025 by rpki-client