Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/uDu9Ino5kvyjZaIdz6uYIvNUi7c.roa
File: uDu9Ino5kvyjZaIdz6uYIvNUi7c.roa (raw, json)
Hash identifier: 2q8khYZe4RYlQrUJsRiSkFsfxCAvWIFFS5MayGJLOmQ=
Subject key identifier: B8:3B:BD:22:7A:39:92:FC:A3:65:A2:1D:CF:AB:98:22:F3:54:8B:B7
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 3870EF9A
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/uDu9Ino5kvyjZaIdz6uYIvNUi7c.roa
Signing time: Tue 01 Feb 2022 15:45:50 +0000
ROA not before: Tue 01 Feb 2022 15:45:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15466
IP address blocks: 45.150.28.0/22 maxlen: 22
217.169.224.0/20 maxlen: 20
2a04:8f80:2000::/36 maxlen: 36
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 946925466 (0x3870ef9a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: Feb 1 15:45:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b83bbd227a3992fca365a21dcfab9822f3548bb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:3b:c7:2c:f5:7a:fa:4f:34:d7:d2:64:7b:ee:
c7:cc:91:6e:78:f4:85:49:01:26:6e:99:66:c1:63:
22:79:9a:06:9d:4c:6d:1f:39:d8:17:57:0c:c7:1a:
9c:31:7a:e3:eb:ee:9d:c0:57:03:7d:e2:d5:35:29:
0e:58:1e:3b:90:b6:1c:f5:97:bd:c7:86:6a:3c:9a:
dc:af:d4:63:a3:cb:ae:2c:5e:51:90:e8:19:34:96:
23:c6:51:da:1b:93:3e:6f:ad:bf:af:46:4d:3b:a8:
5c:8d:23:d2:33:d8:88:d2:d7:59:49:6f:72:bb:36:
c9:c1:86:d8:8e:ba:01:23:83:4f:0b:75:34:8d:9d:
aa:47:06:8e:a7:9f:5b:d9:73:a4:2b:f0:6e:f0:4b:
22:ae:17:9a:8b:f2:77:28:e0:9b:7c:2f:eb:e4:21:
cf:ad:7f:8e:24:93:bc:d4:e0:9f:52:1f:9f:14:d6:
49:d2:f2:3b:b1:05:04:a9:f1:45:33:cc:ad:47:03:
10:51:fc:f7:52:b9:73:f9:c0:94:58:08:08:7e:a3:
5f:05:1d:26:69:e2:77:73:fe:9f:61:9d:60:b0:0b:
95:4a:33:f6:34:70:ac:27:97:72:1f:38:d4:cc:12:
7c:9a:1a:69:d9:84:79:f2:4f:d1:0a:3c:18:a5:55:
53:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:3B:BD:22:7A:39:92:FC:A3:65:A2:1D:CF:AB:98:22:F3:54:8B:B7
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/uDu9Ino5kvyjZaIdz6uYIvNUi7c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.28.0/22
217.169.224.0/20
IPv6:
2a04:8f80:2000::/36
Signature Algorithm: sha256WithRSAEncryption
2b:e8:38:a1:05:12:cf:8a:6a:19:3d:5a:11:07:93:a6:e5:34:
9a:19:38:81:9f:3c:1d:70:c7:f5:69:21:52:a5:cd:c4:d1:d5:
64:b6:e1:04:02:9d:db:8a:5d:1f:ba:a8:c1:17:a7:54:5b:f7:
85:d7:98:f8:16:6c:96:12:40:55:80:3e:37:45:43:b6:8f:89:
27:60:3e:f6:cd:66:7f:8e:22:44:08:96:f8:a9:e1:85:e9:89:
6e:26:1e:7e:d6:6a:77:22:f8:ff:dd:2a:58:fd:3d:eb:11:e7:
04:0a:e2:ed:99:2a:78:82:cf:07:29:6a:f9:1f:97:54:d0:b5:
55:27:88:c9:f6:8e:70:90:2f:8b:3c:a0:b2:eb:25:e6:15:77:
93:42:56:8a:4f:e0:c1:02:9a:d1:ed:48:ae:e4:e5:5b:08:b6:
06:90:c7:d0:87:8a:bd:2d:cc:ba:39:a2:78:49:11:8e:60:fe:
79:05:48:57:7a:13:1a:45:2f:bf:41:c8:73:d3:92:bd:18:71:
ae:8b:24:92:d3:9b:d7:d6:28:07:a3:9c:5b:54:84:cf:7b:ae:
ef:43:16:53:27:2d:4a:5d:fb:38:c0:05:22:19:a7:7a:ad:7a:
2e:31:80:92:cf:7f:8a:f1:2d:f7:4a:ee:26:c6:4a:2a:f8:c5:
1a:2b:f8:60
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgIEOHDvmjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ODMwZTYwM2U5Y2E4YzA1ZDRjMWJjNjJiMGI3NmU3YmQ5ZDE4OTA5MB4XDTIyMDIw
MTE1NDU1MFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjgzYmJkMjI3YTM5
OTJmY2EzNjVhMjFkY2ZhYjk4MjJmMzU0OGJiNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMg7xyz1evpPNNfSZHvux8yRbnj0hUkBJm6ZZsFjInmaBp1M
bR852BdXDMcanDF64+vuncBXA33i1TUpDlgeO5C2HPWXvceGajya3K/UY6PLrixe
UZDoGTSWI8ZR2huTPm+tv69GTTuoXI0j0jPYiNLXWUlvcrs2ycGG2I66ASODTwt1
NI2dqkcGjqefW9lzpCvwbvBLIq4Xmovydyjgm3wv6+Qhz61/jiSTvNTgn1IfnxTW
SdLyO7EFBKnxRTPMrUcDEFH891K5c/nAlFgICH6jXwUdJmnid3P+n2GdYLALlUoz
9jRwrCeXch841MwSfJoaadmEefJP0Qo8GKVVU7MCAwEAAaOCAh8wggIbMB0GA1Ud
DgQWBBS4O70iejmS/KNloh3Pq5gi81SLtzAfBgNVHSMEGDAWgBQYMOYD6cqMBdTB
vGKwt2572dGJCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0dERG1BLW5LakFYVXdieGlzTGR1ZTluUmlRay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvNzYvMjE5MWQ3LWZkYTAtNGIwNy04YThmLTE3ODllNjRkMzIxMC8x
L3VEdTlJbm81a3Z5alphSWR6NnVZSXZOVWk3Yy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYv
MjE5MWQ3LWZkYTAtNGIwNy04YThmLTE3ODllNjRkMzIxMC8xL0dERG1BLW5LakFY
VXdieGlzTGR1ZTluUmlRay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA1
BggrBgEFBQcBBwEB/wQmMCQwEgQCAAEwDAMEAi2WHAMEBNmp4DAOBAIAAjAIAwYE
KgSPgCAwDQYJKoZIhvcNAQELBQADggEBACvoOKEFEs+Kahk9WhEHk6blNJoZOIGf
PB1wx/VpIVKlzcTR1WS24QQCnduKXR+6qMEXp1Rb94XXmPgWbJYSQFWAPjdFQ7aP
iSdgPvbNZn+OIkQIlvip4YXpiW4mHn7Wanci+P/dKlj9PesR5wQK4u2ZKniCzwcp
avkfl1TQtVUniMn2jnCQL4s8oLLrJeYVd5NCVopP4MECmtHtSK7k5VsItgaQx9CH
ir0tzLo5onhJEY5g/nkFSFd6ExpFL79ByHPTkr0Yca6LJJLTm9fWKAejnFtUhM97
ru9DFlMnLUpd+zjABSIZp3qtei4xgJLPf4rxLfdK7ibGSir4xRor+GA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:35:19 2024 by rpki-client on console-fra.rpki-client.org