Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/3511af-0b4e-40b3-bf8f-479c114656fc/1/R5ce4vv-LJ7DQ2DNw9IZmPqViGo.roa
File: R5ce4vv-LJ7DQ2DNw9IZmPqViGo.roa (raw, json)
Hash identifier: d8Ex8KvqjVpzV99eg4Kj6f6KKXv4SIB2gI5u47O/xWQ=
Subject key identifier: 47:97:1E:E2:FB:FE:2C:9E:C3:43:60:CD:C3:D2:19:98:FA:95:88:6A
Certificate issuer: /CN=de4682e6b28660bd88a9b4d28cb1d75ef7cc6d7f
Certificate serial: 0139B1E4
Authority key identifier: DE:46:82:E6:B2:86:60:BD:88:A9:B4:D2:8C:B1:D7:5E:F7:CC:6D:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3kaC5rKGYL2IqbTSjLHXXvfMbX8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/3511af-0b4e-40b3-bf8f-479c114656fc/1/R5ce4vv-LJ7DQ2DNw9IZmPqViGo.roa
Signing time: Sat 01 Jan 2022 12:01:24 +0000
ROA not before: Sat 01 Jan 2022 12:01:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 25160
IP address blocks: 45.88.112.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20558308 (0x139b1e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=de4682e6b28660bd88a9b4d28cb1d75ef7cc6d7f
Validity
Not Before: Jan 1 12:01:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=47971ee2fbfe2c9ec34360cdc3d21998fa95886a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:63:88:7b:f0:4e:cd:b9:29:45:61:47:00:e2:
a3:a9:f1:01:97:1e:b8:0e:2c:0c:9a:02:94:20:86:
4b:5f:56:b0:02:12:8b:d8:e8:6d:b3:d2:74:7f:a0:
e6:b0:32:17:c1:d1:2f:8e:c3:6a:06:1c:18:fa:15:
e2:4b:dc:dc:c6:10:1d:5f:ef:61:ee:95:5d:5e:ab:
db:de:8c:82:3e:b8:f7:84:7a:14:ca:59:8a:c7:8b:
81:a8:7c:74:29:69:38:0c:46:5e:40:a8:48:6b:16:
b7:60:3c:81:06:29:3c:75:e4:87:a3:e0:fe:1b:ff:
47:69:f0:8f:46:e9:b8:f4:a0:3f:81:4f:ef:6b:52:
f8:42:78:37:02:e0:b8:ee:47:e3:38:88:b0:c3:98:
61:6c:66:ea:08:fd:a2:12:36:fa:09:22:65:ca:42:
54:7a:25:ee:b9:f7:99:30:5a:b6:08:61:23:75:db:
4b:7d:10:c6:cd:2a:9a:2b:de:93:03:1e:84:70:58:
44:6e:b3:f0:42:a7:ef:a7:8f:e0:c6:93:aa:73:ad:
5c:39:3f:ae:47:d8:ea:c4:02:a8:37:73:e5:fa:a4:
2b:6b:af:9c:ec:b4:a3:c1:33:b0:3a:03:d5:13:1d:
c4:4c:e6:e2:5c:22:ea:b2:3b:32:f9:61:d2:f4:af:
7f:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:97:1E:E2:FB:FE:2C:9E:C3:43:60:CD:C3:D2:19:98:FA:95:88:6A
X509v3 Authority Key Identifier:
keyid:DE:46:82:E6:B2:86:60:BD:88:A9:B4:D2:8C:B1:D7:5E:F7:CC:6D:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3kaC5rKGYL2IqbTSjLHXXvfMbX8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3511af-0b4e-40b3-bf8f-479c114656fc/1/R5ce4vv-LJ7DQ2DNw9IZmPqViGo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/3511af-0b4e-40b3-bf8f-479c114656fc/1/3kaC5rKGYL2IqbTSjLHXXvfMbX8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.112.0/22
Signature Algorithm: sha256WithRSAEncryption
36:c2:bf:f6:12:32:dc:88:bd:03:f9:57:7a:c3:a8:f2:12:98:
c2:5f:d9:cb:02:d9:b0:f5:1c:89:a5:e5:0b:84:9d:3b:49:4a:
1e:8f:85:f0:5e:fe:77:71:fc:27:d5:51:bc:1a:de:b0:87:43:
2e:97:27:c1:c3:83:62:f7:17:e6:aa:f2:00:7d:df:b7:db:3e:
db:db:48:49:ee:ea:39:f8:e4:50:c4:12:1e:0c:cb:42:b9:6c:
56:52:b8:ac:2f:71:ed:59:7d:d3:e4:70:79:9a:9d:25:d1:14:
a3:44:fe:8c:84:e0:a7:22:0c:5f:d3:48:0a:7c:f7:fe:46:0d:
80:6a:9b:06:84:09:c5:05:91:68:5b:e5:35:e5:54:64:72:e1:
11:69:f6:cf:25:27:09:bb:bf:da:34:e0:2b:96:d1:a3:bb:ea:
6d:bf:f1:93:93:14:8f:29:a8:50:9d:43:1a:a7:e0:9f:10:c8:
59:e4:65:a9:16:da:d6:68:56:93:f6:5a:5c:99:19:f5:c0:50:
59:07:d4:d6:ec:42:65:bd:72:e2:c5:8d:ab:ff:b1:f7:4f:be:
00:a3:8e:46:7a:73:ff:1a:09:33:15:e1:e1:dc:cb:97:a4:63:
21:80:73:60:d3:98:e9:56:69:4b:87:c2:2e:80:30:d2:68:3a:
73:e3:be:7e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEATmx5DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZTQ2ODJlNmIyODY2MGJkODhhOWI0ZDI4Y2IxZDc1ZWY3Y2M2ZDdmMB4XDTIyMDEw
MTEyMDEyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDc5NzFlZTJmYmZl
MmM5ZWMzNDM2MGNkYzNkMjE5OThmYTk1ODg2YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMFjiHvwTs25KUVhRwDio6nxAZceuA4sDJoClCCGS19WsAIS
i9jobbPSdH+g5rAyF8HRL47DagYcGPoV4kvc3MYQHV/vYe6VXV6r296Mgj6494R6
FMpZiseLgah8dClpOAxGXkCoSGsWt2A8gQYpPHXkh6Pg/hv/R2nwj0bpuPSgP4FP
72tS+EJ4NwLguO5H4ziIsMOYYWxm6gj9ohI2+gkiZcpCVHol7rn3mTBatghhI3Xb
S30Qxs0qmivekwMehHBYRG6z8EKn76eP4MaTqnOtXDk/rkfY6sQCqDdz5fqkK2uv
nOy0o8EzsDoD1RMdxEzm4lwi6rI7Mvlh0vSvf8cCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRHlx7i+/4snsNDYM3D0hmY+pWIajAfBgNVHSMEGDAWgBTeRoLmsoZgvYip
tNKMsdde98xtfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzNrYUM1cktHWUwySXFiVFNqTEhYWHZmTWJYOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzQvMzUxMWFmLTBiNGUtNDBiMy1iZjhmLTQ3OWMxMTQ2NTZmYy8x
L1I1Y2U0dnYtTEo3RFEyRE53OUlabVBxVmlHby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzQv
MzUxMWFmLTBiNGUtNDBiMy1iZjhmLTQ3OWMxMTQ2NTZmYy8xLzNrYUM1cktHWUwy
SXFiVFNqTEhYWHZmTWJYOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1YcDANBgkqhkiG9w0BAQsFAAOC
AQEANsK/9hIy3Ii9A/lXesOo8hKYwl/ZywLZsPUciaXlC4SdO0lKHo+F8F7+d3H8
J9VRvBresIdDLpcnwcODYvcX5qryAH3ft9s+29tISe7qOfjkUMQSHgzLQrlsVlK4
rC9x7Vl90+RweZqdJdEUo0T+jITgpyIMX9NICnz3/kYNgGqbBoQJxQWRaFvlNeVU
ZHLhEWn2zyUnCbu/2jTgK5bRo7vqbb/xk5MUjymoUJ1DGqfgnxDIWeRlqRba1mhW
k/ZaXJkZ9cBQWQfU1uxCZb1y4sWNq/+x90++AKOORnpz/xoJMxXh4dzLl6RjIYBz
YNOY6VZpS4fCLoAw0mg6c+O+fg==
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:27:26 2025 by rpki-client