Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/7e8c17-e201-4ff4-8366-f0df23898f64/1/Bbm2Lv7fvMGMXUnD6vcLxw2zbw4.roa
File: Bbm2Lv7fvMGMXUnD6vcLxw2zbw4.roa (raw, json)
Hash identifier: gKIYASzDB730GYs08czsO5EJxmTezLqOGE9xDAXAtts=
Subject key identifier: 05:B9:B6:2E:FE:DF:BC:C1:8C:5D:49:C3:EA:F7:0B:C7:0D:B3:6F:0E
Certificate issuer: /CN=aaa314592ef5ea8bbe84d064b256171fe2afc83e
Certificate serial: 018539E6F3A1E03721F75B531D92CBA74CBE
Authority key identifier: AA:A3:14:59:2E:F5:EA:8B:BE:84:D0:64:B2:56:17:1F:E2:AF:C8:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qqMUWS716ou-hNBkslYXH-KvyD4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/7e8c17-e201-4ff4-8366-f0df23898f64/1/Bbm2Lv7fvMGMXUnD6vcLxw2zbw4.roa
Signing time: Thu 22 Dec 2022 12:55:15 +0000
ROA not before: Thu 22 Dec 2022 12:55:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 16509
IP address blocks: 45.80.110.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:39:e6:f3:a1:e0:37:21:f7:5b:53:1d:92:cb:a7:4c:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aaa314592ef5ea8bbe84d064b256171fe2afc83e
Validity
Not Before: Dec 22 12:55:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=05b9b62efedfbcc18c5d49c3eaf70bc70db36f0e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:00:0d:17:21:ae:26:71:79:f3:23:34:2f:2c:
48:48:ce:59:0a:39:c7:e3:d1:d1:13:2b:bc:37:c6:
f7:a8:8c:bb:11:a7:df:06:ba:1f:8b:48:1f:2a:ca:
65:b7:71:76:49:cb:dd:ad:93:d2:e2:66:f8:18:3a:
17:bc:8c:d4:0f:5a:22:40:67:f1:5c:d9:71:cc:08:
f8:d2:a5:db:00:3f:c0:b4:2f:fd:6e:24:ed:54:7a:
8e:1a:0b:8f:7e:93:35:08:80:80:60:a8:20:20:82:
af:4a:f9:84:56:7b:39:24:c8:2b:b8:83:ba:7a:8b:
c7:4c:ea:c9:80:fe:9f:d6:61:2c:57:f9:e5:6b:52:
af:6b:89:e1:7a:5a:a2:ae:89:2b:48:82:71:15:6f:
d4:a9:fb:ef:46:14:f5:c9:72:8b:86:ac:af:04:25:
01:f2:f5:1c:94:16:e2:49:c6:6d:ed:fa:1a:8d:62:
1d:2d:a2:2e:3b:34:e4:d5:66:4c:ad:f3:a3:72:3e:
ae:ff:40:4b:b4:73:b0:72:aa:d0:50:88:32:ce:af:
6a:62:87:bc:5d:e0:bc:cc:7d:bc:9f:cc:98:12:24:
53:7f:c6:b7:43:99:3e:84:fe:87:1b:71:2b:7a:c6:
b6:49:77:1b:11:8c:22:b6:13:fe:09:4a:c7:72:dd:
ad:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:B9:B6:2E:FE:DF:BC:C1:8C:5D:49:C3:EA:F7:0B:C7:0D:B3:6F:0E
X509v3 Authority Key Identifier:
keyid:AA:A3:14:59:2E:F5:EA:8B:BE:84:D0:64:B2:56:17:1F:E2:AF:C8:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qqMUWS716ou-hNBkslYXH-KvyD4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7e8c17-e201-4ff4-8366-f0df23898f64/1/Bbm2Lv7fvMGMXUnD6vcLxw2zbw4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/7e8c17-e201-4ff4-8366-f0df23898f64/1/qqMUWS716ou-hNBkslYXH-KvyD4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.80.110.0/24
Signature Algorithm: sha256WithRSAEncryption
11:9d:5a:34:a7:9b:94:6a:97:24:29:e6:17:c9:5a:38:7a:2c:
f7:03:2d:0d:25:dc:33:ea:e7:d6:74:3a:6c:5c:09:d1:12:99:
67:0b:83:7b:58:0f:55:7e:a9:ee:fd:49:e9:e8:26:68:c4:2b:
19:a2:ba:ad:26:05:98:3d:b0:36:e4:e9:10:b9:a5:12:50:cc:
f1:1b:ef:38:7e:1f:54:2b:61:4a:26:00:a4:5c:f2:9e:59:1f:
bb:36:19:ea:45:fb:ed:64:01:4b:2d:30:bf:81:36:8e:6e:db:
9f:6a:b4:f3:de:00:9a:de:de:8a:2c:aa:90:48:6f:3c:04:d4:
47:25:3d:95:87:d0:25:9e:90:29:3f:3b:bf:a4:9b:8b:62:87:
6f:77:0c:69:a2:df:95:84:8f:98:4e:37:44:81:2f:b2:ca:8d:
c8:f3:3a:f8:8c:bd:91:82:f4:03:0c:1e:11:c5:88:c2:88:cd:
34:7c:d9:f9:dc:51:6d:d8:53:d6:35:b2:32:e5:90:44:fc:e8:
bd:67:33:a1:e5:fb:d5:c8:d3:b9:fb:47:c5:55:b0:80:b0:29:
c9:57:93:17:7c:ff:e5:7b:a6:f0:d3:6f:c0:e0:b1:9e:ab:67:
b9:1e:63:6d:4e:f9:7b:21:35:95:02:ce:ff:d0:94:17:69:0d:
45:de:56:a9
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU55vOh4Dch91tTHZLLp0y+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFhYTMxNDU5MmVmNWVhOGJiZTg0ZDA2NGIyNTYxNzFmZTJh
ZmM4M2UwHhcNMjIxMjIyMTI1NTE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwNWI5YjYyZWZlZGZiY2MxOGM1ZDQ5YzNlYWY3MGJjNzBkYjM2ZjBlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAANFyGuJnF58yM0LyxISM5ZCjnH
49HREyu8N8b3qIy7EaffBrofi0gfKsplt3F2ScvdrZPS4mb4GDoXvIzUD1oiQGfx
XNlxzAj40qXbAD/AtC/9biTtVHqOGguPfpM1CICAYKggIIKvSvmEVns5JMgruIO6
eovHTOrJgP6f1mEsV/nla1Kva4nhelqirokrSIJxFW/UqfvvRhT1yXKLhqyvBCUB
8vUclBbiScZt7foajWIdLaIuOzTk1WZMrfOjcj6u/0BLtHOwcqrQUIgyzq9qYoe8
XeC8zH28n8yYEiRTf8a3Q5k+hP6HG3Eresa2SXcbEYwithP+CUrHct2tSwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFAW5ti7+37zBjF1Jw+r3C8cNs28OMB8GA1UdIwQY
MBaAFKqjFFku9eqLvoTQZLJWFx/ir8g+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcXFNVVdTNzE2b3UtaE5Ca3NsWVhILUt2eUQ0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC83ZThjMTctZTIwMS00ZmY0LTgzNjYt
ZjBkZjIzODk4ZjY0LzEvQmJtMkx2N2Z2TUdNWFVuRDZ2Y0x4dzJ6Ync0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC83ZThjMTctZTIwMS00ZmY0LTgzNjYtZjBkZjIzODk4ZjY0
LzEvcXFNVVdTNzE2b3UtaE5Ca3NsWVhILUt2eUQ0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVBuMA0G
CSqGSIb3DQEBCwUAA4IBAQARnVo0p5uUapckKeYXyVo4eiz3Ay0NJdwz6ufWdDps
XAnREplnC4N7WA9Vfqnu/Unp6CZoxCsZorqtJgWYPbA25OkQuaUSUMzxG+84fh9U
K2FKJgCkXPKeWR+7NhnqRfvtZAFLLTC/gTaObtufarTz3gCa3t6KLKqQSG88BNRH
JT2Vh9AlnpApPzu/pJuLYodvdwxpot+VhI+YTjdEgS+yyo3I8zr4jL2RgvQDDB4R
xYjCiM00fNn53FFt2FPWNbIy5ZBE/Oi9ZzOh5fvVyNO5+0fFVbCAsCnJV5MXfP/l
e6bw02/A4LGeq2e5HmNtTvl7ITWVAs7/0JQXaQ1F3lap
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:34:38 2024 by rpki-client on console-fra.rpki-client.org