Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/4b2cf9-d8ed-4a27-93ba-93b691ee1cce/1/Fys_Ly8ggMtST4hhseiy76wxeSY.roa
File: Fys_Ly8ggMtST4hhseiy76wxeSY.roa (raw, json)
Hash identifier: V04sEikT6UlR8jLfQJZYu31W36oGssA3a9/yI8JNuIc=
Subject key identifier: 17:2B:3F:2F:2F:20:80:CB:52:4F:88:61:B1:E8:B2:EF:AC:31:79:26
Certificate issuer: /CN=e43dd424384759b5e85595825019b69fe9bf9220
Certificate serial: 0646391C
Authority key identifier: E4:3D:D4:24:38:47:59:B5:E8:55:95:82:50:19:B6:9F:E9:BF:92:20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D3UJDhHWbXoVZWCUBm2n-m_kiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/4b2cf9-d8ed-4a27-93ba-93b691ee1cce/1/Fys_Ly8ggMtST4hhseiy76wxeSY.roa
Signing time: Sat 01 Jan 2022 04:57:07 +0000
ROA not before: Sat 01 Jan 2022 04:57:07 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51269
IP address blocks: 45.157.60.0/22 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 105265436 (0x646391c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e43dd424384759b5e85595825019b69fe9bf9220
Validity
Not Before: Jan 1 04:57:07 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=172b3f2f2f2080cb524f8861b1e8b2efac317926
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:63:12:31:99:aa:b8:c6:d2:64:69:ca:53:e0:
ba:bb:c1:9b:57:fe:b9:16:a8:38:c9:a3:e6:fe:c7:
a5:92:23:d1:67:c2:98:dc:58:0c:5d:7a:a3:5d:64:
aa:c0:3f:ba:57:29:e2:dd:a4:75:93:53:fd:96:62:
d2:2d:68:1e:69:d3:54:cf:c6:8b:8f:2a:15:b0:ac:
50:c4:a8:3f:f9:17:fc:66:15:d9:67:49:e3:47:2f:
d2:f6:1c:18:df:8d:85:99:7f:de:77:4f:f2:c5:2d:
67:7d:a1:1e:09:45:c5:43:32:a7:ce:66:b3:f4:5c:
9e:85:a3:92:22:b3:dd:fb:43:aa:03:76:d0:13:51:
69:2e:9c:da:5f:6a:59:dc:e2:ed:c5:fa:91:03:54:
6a:a8:8d:93:4d:c3:cb:93:8c:4d:a5:90:6b:97:ab:
06:f4:eb:75:c6:92:3c:04:68:aa:86:a4:c8:9c:08:
4b:ff:1e:8a:87:c5:dc:16:2e:0d:fd:c6:77:76:28:
aa:f0:6a:60:61:45:2d:7b:30:76:42:1b:fe:7b:06:
40:9a:f4:86:f9:ab:d8:5b:87:62:6d:75:7d:6c:f5:
14:0f:d6:34:43:c5:da:39:c5:7d:e8:ad:ea:37:ab:
a5:6d:a2:2a:ad:39:e6:52:c6:ed:6d:3a:83:c4:b1:
4b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:2B:3F:2F:2F:20:80:CB:52:4F:88:61:B1:E8:B2:EF:AC:31:79:26
X509v3 Authority Key Identifier:
keyid:E4:3D:D4:24:38:47:59:B5:E8:55:95:82:50:19:B6:9F:E9:BF:92:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D3UJDhHWbXoVZWCUBm2n-m_kiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/4b2cf9-d8ed-4a27-93ba-93b691ee1cce/1/Fys_Ly8ggMtST4hhseiy76wxeSY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/4b2cf9-d8ed-4a27-93ba-93b691ee1cce/1/5D3UJDhHWbXoVZWCUBm2n-m_kiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.60.0/22
Signature Algorithm: sha256WithRSAEncryption
0d:4d:57:14:32:c8:63:51:13:fb:0c:91:7e:7b:7f:ae:16:a1:
21:65:74:79:83:54:8a:aa:e4:7f:0a:2f:45:7d:bf:6e:7e:e9:
95:92:b4:fb:dc:c9:96:da:95:3f:7d:27:8d:d6:59:0d:04:33:
b7:e7:a3:92:62:56:c2:13:b3:cf:9c:5d:4a:b0:61:f6:b1:48:
58:23:81:79:f3:a0:bd:1d:f2:c0:0f:35:80:a2:88:a8:b0:7a:
65:4a:62:95:9e:93:d4:a0:d5:55:f5:f4:44:52:76:eb:bb:92:
66:1b:d8:00:d8:a0:f3:00:bd:3d:d0:b8:b1:ef:92:69:3a:08:
67:a9:4b:5e:d2:57:d4:a7:05:88:3b:29:5d:57:b7:b8:27:2a:
b9:f8:c0:a0:9e:45:47:5e:bf:ad:72:57:09:7d:ef:89:61:0f:
3d:e2:c6:2a:63:c4:f1:a7:2f:7b:44:ab:f5:fd:a5:31:7d:63:
5a:4c:83:52:60:90:93:dc:bb:b2:48:4f:95:2b:f4:7d:c6:4b:
10:d3:7d:a2:b7:0c:eb:b6:62:6b:b9:69:c3:78:c8:73:6f:18:
f6:26:7a:54:e5:49:26:03:b9:4e:af:c3:c6:b4:e1:08:ab:dc:
11:97:ee:b5:23:91:f7:0d:36:e4:9d:2d:a2:2c:8c:13:d6:c4:
72:3e:b0:89
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBkY5HDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NDNkZDQyNDM4NDc1OWI1ZTg1NTk1ODI1MDE5YjY5ZmU5YmY5MjIwMB4XDTIyMDEw
MTA0NTcwN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMTcyYjNmMmYyZjIw
ODBjYjUyNGY4ODYxYjFlOGIyZWZhYzMxNzkyNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKtjEjGZqrjG0mRpylPgurvBm1f+uRaoOMmj5v7HpZIj0WfC
mNxYDF16o11kqsA/ulcp4t2kdZNT/ZZi0i1oHmnTVM/Gi48qFbCsUMSoP/kX/GYV
2WdJ40cv0vYcGN+NhZl/3ndP8sUtZ32hHglFxUMyp85ms/RcnoWjkiKz3ftDqgN2
0BNRaS6c2l9qWdzi7cX6kQNUaqiNk03Dy5OMTaWQa5erBvTrdcaSPARoqoakyJwI
S/8eiofF3BYuDf3Gd3YoqvBqYGFFLXswdkIb/nsGQJr0hvmr2FuHYm11fWz1FA/W
NEPF2jnFfeit6jerpW2iKq055lLG7W06g8SxS3UCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQXKz8vLyCAy1JPiGGx6LLvrDF5JjAfBgNVHSMEGDAWgBTkPdQkOEdZtehV
lYJQGbaf6b+SIDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzVEM1VKRGhIV2JYb1ZaV0NVQm0ybi1tX2tpQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNmMvNGIyY2Y5LWQ4ZWQtNGEyNy05M2JhLTkzYjY5MWVlMWNjZS8x
L0Z5c19MeThnZ010U1Q0aGhzZWl5NzZ3eGVTWS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmMv
NGIyY2Y5LWQ4ZWQtNGEyNy05M2JhLTkzYjY5MWVlMWNjZS8xLzVEM1VKRGhIV2JY
b1ZaV0NVQm0ybi1tX2tpQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2dPDANBgkqhkiG9w0BAQsFAAOC
AQEADU1XFDLIY1ET+wyRfnt/rhahIWV0eYNUiqrkfwovRX2/bn7plZK0+9zJltqV
P30njdZZDQQzt+ejkmJWwhOzz5xdSrBh9rFIWCOBefOgvR3ywA81gKKIqLB6ZUpi
lZ6T1KDVVfX0RFJ267uSZhvYANig8wC9PdC4se+SaToIZ6lLXtJX1KcFiDspXVe3
uCcqufjAoJ5FR16/rXJXCX3viWEPPeLGKmPE8acve0Sr9f2lMX1jWkyDUmCQk9y7
skhPlSv0fcZLENN9orcM67Zia7lpw3jIc28Y9iZ6VOVJJgO5Tq/DxrThCKvcEZfu
tSOR9w025J0toiyME9bEcj6wiQ==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:31 2023 by rpki-client on console-fra.rpki-client.org