Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/xOB3R3aOY4_bPVzceVAKg5K6eso.roa
File: xOB3R3aOY4_bPVzceVAKg5K6eso.roa (raw, json)
Hash identifier: BXiV8tkiM1lydrtTTeDI8mMi6nPpuw6734Z3S6bgtAQ=
Subject key identifier: C4:E0:77:47:76:8E:63:8F:DB:3D:5C:DC:79:50:0A:83:92:BA:7A:CA
Certificate issuer: /CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Certificate serial: 149B48FA
Authority key identifier: 2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/xOB3R3aOY4_bPVzceVAKg5K6eso.roa
Signing time: Mon 18 Apr 2022 13:02:23 +0000
ROA not before: Mon 18 Apr 2022 13:02:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 0
IP address blocks: 45.146.240.0/22 maxlen: 24
82.115.12.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 345721082 (0x149b48fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ac3daa1b14850f2e61c592b2191915a5e65a478
Validity
Not Before: Apr 18 13:02:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c4e07747768e638fdb3d5cdc79500a8392ba7aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:77:8b:42:d7:5b:7b:f9:a7:1e:a5:58:82:76:
c7:60:d8:07:6e:bc:6f:ef:7a:35:9a:c3:f4:1c:77:
15:f7:72:ce:85:a7:cf:8e:75:d2:79:26:cc:ea:63:
af:69:5f:96:ae:29:41:cc:34:b6:6f:0b:9c:32:45:
da:4a:cd:a1:3f:30:2f:15:5f:c4:8b:67:86:12:2e:
80:e0:86:e7:73:6a:d9:cd:e7:13:a4:f9:43:5b:a4:
4e:1e:ca:71:ae:9d:52:e3:74:c9:f7:0f:e5:b9:5d:
0a:2a:41:8b:85:eb:fa:fd:c8:a6:14:ec:8c:21:6d:
9b:c9:41:54:80:83:79:33:dd:d8:f5:63:6d:9e:ee:
f4:f8:7f:38:85:42:32:10:24:a7:16:56:bc:18:9c:
43:d1:44:5b:3f:96:3a:30:1a:8d:71:ab:4f:51:d1:
3b:b1:29:63:3b:22:c0:b8:2d:7b:ce:5b:b9:b9:98:
bc:9a:14:7f:f9:90:2c:83:ea:cc:dc:71:65:b1:bb:
6b:f1:93:99:46:b2:78:7d:00:17:23:ca:e1:c8:12:
e9:3d:d7:98:10:35:23:e6:2e:cd:ce:43:4a:1f:65:
f2:a9:ee:92:62:5b:f0:78:19:a5:20:fd:94:a3:9d:
18:a0:9b:a0:0c:2f:5d:84:d6:55:92:ec:35:52:c2:
71:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:E0:77:47:76:8E:63:8F:DB:3D:5C:DC:79:50:0A:83:92:BA:7A:CA
X509v3 Authority Key Identifier:
keyid:2A:C3:DA:A1:B1:48:50:F2:E6:1C:59:2B:21:91:91:5A:5E:65:A4:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KsPaobFIUPLmHFkrIZGRWl5lpHg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/xOB3R3aOY4_bPVzceVAKg5K6eso.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/405bbd-5913-4e95-8e75-fe0659176a56/1/KsPaobFIUPLmHFkrIZGRWl5lpHg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.240.0/22
82.115.12.0/23
Signature Algorithm: sha256WithRSAEncryption
6b:2a:47:59:70:ff:52:0d:dd:bd:3a:a9:77:ae:c9:17:ac:4f:
af:8a:c4:7b:bc:19:d2:1e:f1:48:29:bb:85:30:a2:86:fd:dd:
86:b0:61:ad:d6:ef:0b:b7:94:4c:33:10:7f:0e:e0:f7:1c:4e:
35:b4:cf:09:67:bd:ca:4a:ae:84:08:cc:80:bb:c5:7b:0e:cb:
7f:80:c7:f4:4d:4f:78:45:bd:72:0b:52:f6:20:2a:b3:fc:78:
11:c6:91:e2:87:ff:a5:87:2d:a4:4b:c2:c9:03:ad:cf:40:03:
eb:a4:6d:e1:4a:e2:96:b6:d3:81:98:a3:b5:a2:d4:c9:05:f4:
d8:0c:ea:a6:a4:b9:8b:3e:fe:a4:3a:77:46:7a:e7:33:8a:71:
68:df:9d:ea:d5:d3:e0:84:52:2c:32:77:ca:b5:fc:24:06:c2:
9c:ce:3b:02:90:d1:57:81:54:2a:fa:d3:8c:f8:af:91:2e:76:
a9:21:10:97:fa:80:6e:fc:f6:72:cb:16:0b:e4:70:1f:76:f4:
52:a2:b0:21:e2:c0:f5:1d:cd:18:45:fe:9c:79:6d:c7:b4:9c:
b5:8b:68:4f:d1:90:1b:52:3a:b1:48:ca:40:38:23:56:60:2d:
76:98:75:86:4b:97:55:42:a5:17:9b:55:d1:3f:05:d6:ab:8f:
ea:6a:db:08
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEFJtI+jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
YWMzZGFhMWIxNDg1MGYyZTYxYzU5MmIyMTkxOTE1YTVlNjVhNDc4MB4XDTIyMDQx
ODEzMDIyM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzRlMDc3NDc3Njhl
NjM4ZmRiM2Q1Y2RjNzk1MDBhODM5MmJhN2FjYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJF3i0LXW3v5px6lWIJ2x2DYB268b+96NZrD9Bx3FfdyzoWn
z4510nkmzOpjr2lflq4pQcw0tm8LnDJF2krNoT8wLxVfxItnhhIugOCG53Nq2c3n
E6T5Q1ukTh7Kca6dUuN0yfcP5bldCipBi4Xr+v3IphTsjCFtm8lBVICDeTPd2PVj
bZ7u9Ph/OIVCMhAkpxZWvBicQ9FEWz+WOjAajXGrT1HRO7EpYzsiwLgte85bubmY
vJoUf/mQLIPqzNxxZbG7a/GTmUayeH0AFyPK4cgS6T3XmBA1I+Yuzc5DSh9l8qnu
kmJb8HgZpSD9lKOdGKCboAwvXYTWVZLsNVLCcbcCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTE4HdHdo5jj9s9XNx5UAqDkrp6yjAfBgNVHSMEGDAWgBQqw9qhsUhQ8uYc
WSshkZFaXmWkeDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0tzUGFvYkZJVVBMbUhGa3JJWkdSV2w1bHBIZy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzAvNDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8x
L3hPQjNSM2FPWTRfYlBWemNlVkFLZzVLNmVzby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAv
NDA1YmJkLTU5MTMtNGU5NS04ZTc1LWZlMDY1OTE3NmE1Ni8xL0tzUGFvYkZJVVBM
bUhGa3JJWkdSV2w1bHBIZy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAi2S8AMEAVJzDDANBgkqhkiG9w0B
AQsFAAOCAQEAaypHWXD/Ug3dvTqpd67JF6xPr4rEe7wZ0h7xSCm7hTCihv3dhrBh
rdbvC7eUTDMQfw7g9xxONbTPCWe9ykquhAjMgLvFew7Lf4DH9E1PeEW9cgtS9iAq
s/x4EcaR4of/pYctpEvCyQOtz0AD66Rt4UrilrbTgZijtaLUyQX02AzqpqS5iz7+
pDp3RnrnM4pxaN+d6tXT4IRSLDJ3yrX8JAbCnM47ApDRV4FUKvrTjPivkS52qSEQ
l/qAbvz2cssWC+RwH3b0UqKwIeLA9R3NGEX+nHltx7SctYtoT9GQG1I6sUjKQDgj
VmAtdph1hkuXVUKlF5tV0T8F1quP6mrbCA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:25 2023 by rpki-client on console-ams.rpki-client.org