Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/r3EfZvc3vyELwtdwsPWxHLtIQXk.roa
File: r3EfZvc3vyELwtdwsPWxHLtIQXk.roa (raw, json)
Hash identifier: kyDWUE+sdJYYh953Wdua+t0/zUD5skBs7AsclMcoTMc=
Subject key identifier: AF:71:1F:66:F7:37:BF:21:0B:C2:D7:70:B0:F5:B1:1C:BB:48:41:79
Certificate issuer: /CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Certificate serial: 07E00FD0
Authority key identifier: 0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/r3EfZvc3vyELwtdwsPWxHLtIQXk.roa
Signing time: Sat 01 Jan 2022 05:52:12 +0000
ROA not before: Sat 01 Jan 2022 05:52:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 40676
IP address blocks: 45.12.186.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132124624 (0x7e00fd0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a30b635d357468d7f932d3e1f59d5373cf9f465
Validity
Not Before: Jan 1 05:52:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=af711f66f737bf210bc2d770b0f5b11cbb484179
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:bf:56:89:3a:75:99:29:f1:3b:61:75:9c:2f:
3f:29:e2:6c:a2:78:74:54:23:46:ff:15:23:f4:94:
0d:d8:0b:ea:42:80:37:25:a1:b1:f9:c3:1d:76:88:
5b:7c:92:13:cf:83:29:6f:51:04:7b:e2:dd:21:b0:
c8:13:3a:8f:a5:81:3f:23:67:cc:5c:23:7e:a6:c0:
e6:ac:9a:a3:3e:9d:94:34:2a:0c:4e:a0:ca:df:84:
2c:97:07:9a:1e:81:1e:7a:24:08:00:65:da:8a:8b:
ab:3b:5b:5f:00:d8:ef:c4:bd:aa:8b:d7:43:91:3d:
7b:0f:4b:47:84:0a:8c:96:0d:cd:5b:aa:e1:1b:f9:
b7:f2:e3:18:05:39:8e:52:fd:52:96:f7:80:5a:58:
c9:79:aa:3e:ce:33:1d:bb:cb:d3:7f:49:b4:af:96:
34:cc:70:53:a2:b7:30:ef:64:1d:61:f9:ec:4b:bf:
ed:b8:2c:a0:20:27:e3:a6:98:05:2b:0e:56:7f:2e:
a9:a7:e4:c4:81:d7:f7:40:5a:cd:f9:e1:d7:4c:6c:
2e:62:72:4a:9b:24:cf:10:ef:58:44:81:c3:d2:01:
73:3b:6e:19:81:61:88:b9:b0:52:0a:f3:98:1a:42:
61:c3:77:c3:13:4c:60:e2:c9:e6:ce:a9:8d:c9:28:
15:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:71:1F:66:F7:37:BF:21:0B:C2:D7:70:B0:F5:B1:1C:BB:48:41:79
X509v3 Authority Key Identifier:
keyid:0A:30:B6:35:D3:57:46:8D:7F:93:2D:3E:1F:59:D5:37:3C:F9:F4:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CjC2NdNXRo1_ky0-H1nVNzz59GU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/r3EfZvc3vyELwtdwsPWxHLtIQXk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/1785f1-ae23-40f0-83f2-6def398ce5c9/1/CjC2NdNXRo1_ky0-H1nVNzz59GU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.186.0/24
Signature Algorithm: sha256WithRSAEncryption
56:7a:ad:23:c0:06:6d:8a:83:86:ce:18:3e:d0:b2:b5:4e:1a:
5e:f8:ef:84:c5:b2:8f:6a:b5:16:ae:ee:5a:cc:ec:1f:7e:9f:
b5:b4:0d:b8:95:50:bb:a0:07:49:90:13:a3:a5:3f:36:7a:c2:
35:72:a9:29:76:b9:76:70:a3:04:91:41:19:63:90:63:66:40:
75:ae:26:fc:d7:39:24:06:de:ad:8f:74:cc:6f:22:62:7c:db:
8c:d4:aa:13:18:05:61:92:bf:36:f4:77:11:65:69:26:e0:2b:
7a:d4:65:08:f1:be:9b:d0:90:a0:59:9d:c4:2b:52:34:3b:bc:
a2:3a:ed:9f:71:f7:75:0a:d5:18:c8:a5:ed:c7:cc:70:a8:ef:
24:e5:a8:aa:62:b0:e7:94:92:47:0f:91:3a:01:7c:a8:ee:10:
16:ac:78:8e:47:34:f6:95:f3:a5:1b:bc:77:b3:55:29:9a:b9:
33:76:4a:5b:50:10:17:a7:36:ed:56:d8:93:be:b7:53:6a:eb:
e9:60:3b:50:18:49:a9:9a:2d:88:3b:18:5d:84:b9:2d:a3:79:
c3:dc:aa:13:90:96:f6:7d:f9:26:6d:ae:ef:51:60:32:3c:af:
c9:b2:c8:e1:76:7e:79:b1:9e:ba:ed:0e:e9:1f:17:a3:e6:2a:
b0:73:9e:0a
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB+AP0DANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
YTMwYjYzNWQzNTc0NjhkN2Y5MzJkM2UxZjU5ZDUzNzNjZjlmNDY1MB4XDTIyMDEw
MTA1NTIxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWY3MTFmNjZmNzM3
YmYyMTBiYzJkNzcwYjBmNWIxMWNiYjQ4NDE3OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ6/Vok6dZkp8TthdZwvPynibKJ4dFQjRv8VI/SUDdgL6kKA
NyWhsfnDHXaIW3ySE8+DKW9RBHvi3SGwyBM6j6WBPyNnzFwjfqbA5qyaoz6dlDQq
DE6gyt+ELJcHmh6BHnokCABl2oqLqztbXwDY78S9qovXQ5E9ew9LR4QKjJYNzVuq
4Rv5t/LjGAU5jlL9Upb3gFpYyXmqPs4zHbvL039JtK+WNMxwU6K3MO9kHWH57Eu/
7bgsoCAn46aYBSsOVn8uqafkxIHX90Bazfnh10xsLmJySpskzxDvWESBw9IBcztu
GYFhiLmwUgrzmBpCYcN3wxNMYOLJ5s6pjckoFS0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSvcR9m9ze/IQvC13Cw9bEcu0hBeTAfBgNVHSMEGDAWgBQKMLY101dGjX+T
LT4fWdU3PPn0ZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NqQzJOZE5YUm8xX2t5MC1IMW5WTnp6NTlHVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzUvMTc4NWYxLWFlMjMtNDBmMC04M2YyLTZkZWYzOThjZTVjOS8x
L3IzRWZadmMzdnlFTHd0ZHdzUFd4SEx0SVFYay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzUv
MTc4NWYxLWFlMjMtNDBmMC04M2YyLTZkZWYzOThjZTVjOS8xL0NqQzJOZE5YUm8x
X2t5MC1IMW5WTnp6NTlHVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0MujANBgkqhkiG9w0BAQsFAAOC
AQEAVnqtI8AGbYqDhs4YPtCytU4aXvjvhMWyj2q1Fq7uWszsH36ftbQNuJVQu6AH
SZATo6U/NnrCNXKpKXa5dnCjBJFBGWOQY2ZAda4m/Nc5JAberY90zG8iYnzbjNSq
ExgFYZK/NvR3EWVpJuAretRlCPG+m9CQoFmdxCtSNDu8ojrtn3H3dQrVGMil7cfM
cKjvJOWoqmKw55SSRw+ROgF8qO4QFqx4jkc09pXzpRu8d7NVKZq5M3ZKW1AQF6c2
7VbYk763U2rr6WA7UBhJqZotiDsYXYS5LaN5w9yqE5CW9n35Jm2u71FgMjyvybLI
4XZ+ebGeuu0O6R8Xo+YqsHOeCg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:01 2023 by rpki-client on console-fra.rpki-client.org