Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7e/7d2e64-10d9-4a4e-a4c6-4a9bb2fe7331/1/WZ8zVemJMnPZ1ZDe3u7v0Z2JXBk.roa
File: WZ8zVemJMnPZ1ZDe3u7v0Z2JXBk.roa (raw, json)
Hash identifier: AiKL7b8mDb07tuCMpZ6QkHIetJfpdYyu8AjOdhhphVs=
Subject key identifier: 59:9F:33:55:E9:89:32:73:D9:D5:90:DE:DE:EE:EF:D1:9D:89:5C:19
Certificate issuer: /CN=250e7df43c82d120a13d3c865f1f06f49644b1e1
Certificate serial: 0140B7
Authority key identifier: 25:0E:7D:F4:3C:82:D1:20:A1:3D:3C:86:5F:1F:06:F4:96:44:B1:E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JQ599DyC0SChPTyGXx8G9JZEseE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7e/7d2e64-10d9-4a4e-a4c6-4a9bb2fe7331/1/WZ8zVemJMnPZ1ZDe3u7v0Z2JXBk.roa
Signing time: Tue 01 Feb 2022 12:46:09 +0000
ROA not before: Tue 01 Feb 2022 12:46:09 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.143.132.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 82103 (0x140b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=250e7df43c82d120a13d3c865f1f06f49644b1e1
Validity
Not Before: Feb 1 12:46:09 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=599f3355e9893273d9d590dedeeeefd19d895c19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:b8:61:17:f8:db:d0:34:78:b7:46:68:63:1a:
19:9c:d4:4e:87:38:8e:ae:ba:6f:34:79:49:19:93:
84:01:57:40:ec:fb:c8:07:be:9f:09:99:98:27:a1:
05:ac:73:4f:04:21:30:04:39:30:30:32:67:42:88:
8d:ba:bd:57:f6:92:f5:36:e1:62:34:14:22:d7:fc:
08:27:a1:96:05:af:0f:7e:99:05:5a:ea:5a:3d:0f:
0d:64:2c:9f:3c:25:54:51:a5:ec:4d:14:33:f6:fd:
93:21:55:27:cc:4f:17:4b:6a:8a:85:17:50:8b:61:
d3:53:df:f1:33:69:f3:f7:f8:73:7d:f4:61:a6:ca:
3e:d0:50:31:60:c5:e1:ff:fb:ac:30:de:ae:43:97:
89:41:c9:ae:ae:12:2d:c5:5a:6a:d2:da:85:70:d1:
59:b0:84:d5:39:a6:8c:d0:e2:57:ad:4f:08:85:3e:
f1:39:aa:04:ac:cd:7f:ec:ac:38:9a:2f:f2:83:3c:
c1:7f:f0:d0:c4:97:b9:94:26:22:1d:67:cb:a0:d4:
8a:ec:88:63:cb:40:e0:68:65:47:73:08:7c:d8:e4:
12:17:2e:76:7f:32:cd:c4:4c:8b:a7:aa:98:60:b2:
a4:91:d1:65:98:45:de:a7:d4:2c:83:22:32:b5:3c:
ef:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:9F:33:55:E9:89:32:73:D9:D5:90:DE:DE:EE:EF:D1:9D:89:5C:19
X509v3 Authority Key Identifier:
keyid:25:0E:7D:F4:3C:82:D1:20:A1:3D:3C:86:5F:1F:06:F4:96:44:B1:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JQ599DyC0SChPTyGXx8G9JZEseE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7d2e64-10d9-4a4e-a4c6-4a9bb2fe7331/1/WZ8zVemJMnPZ1ZDe3u7v0Z2JXBk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7e/7d2e64-10d9-4a4e-a4c6-4a9bb2fe7331/1/JQ599DyC0SChPTyGXx8G9JZEseE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.132.0/24
Signature Algorithm: sha256WithRSAEncryption
78:3e:00:77:f3:07:a8:a6:8b:05:f9:e0:95:f7:bf:05:fe:69:
9e:e3:77:af:9e:5e:4d:c7:e3:97:64:b2:0d:7f:4a:af:1b:b7:
52:73:3c:08:bc:df:73:ed:e7:2d:04:97:3b:3a:61:b8:41:6b:
28:97:9a:9b:58:68:e9:52:8a:2c:6b:ea:cb:ea:6c:72:2b:2b:
66:7a:e5:7e:e9:60:1b:c8:5f:a6:d3:79:6f:4a:75:ec:65:06:
a5:c1:7d:6c:df:bc:f1:47:c1:96:c5:a1:12:f9:81:9c:a2:a9:
09:8a:ae:c3:2d:a9:18:cf:26:2c:54:fc:ca:9d:46:80:33:b8:
ce:8d:ca:f6:90:82:1f:4d:c8:fd:44:76:4e:05:88:8a:6c:3e:
75:fc:bb:58:2e:a3:13:d4:39:f7:3c:ae:32:b8:ac:c3:49:a7:
c5:ea:b6:0b:45:42:34:34:54:7a:b8:d3:02:96:7a:2a:c8:47:
86:aa:4f:f7:6b:a0:fe:9c:c2:40:25:8c:3b:40:2b:63:9f:9e:
a4:6f:0b:6d:74:27:0b:28:77:2e:0c:bd:2b:f7:d5:a9:48:92:
5b:76:9f:4f:03:15:b9:19:a3:1c:7a:d0:d2:76:98:5b:66:1e:
ee:9c:85:ca:bb:4f:51:77:31:75:06:0a:64:3f:82:64:56:1d:
b8:a6:51:7d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDAUC3MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDI1
MGU3ZGY0M2M4MmQxMjBhMTNkM2M4NjVmMWYwNmY0OTY0NGIxZTEwHhcNMjIwMjAx
MTI0NjA5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyg1OTlmMzM1NWU5ODkz
MjczZDlkNTkwZGVkZWVlZWZkMTlkODk1YzE5MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAyrhhF/jb0DR4t0ZoYxoZnNROhziOrrpvNHlJGZOEAVdA7PvI
B76fCZmYJ6EFrHNPBCEwBDkwMDJnQoiNur1X9pL1NuFiNBQi1/wIJ6GWBa8PfpkF
WupaPQ8NZCyfPCVUUaXsTRQz9v2TIVUnzE8XS2qKhRdQi2HTU9/xM2nz9/hzffRh
pso+0FAxYMXh//usMN6uQ5eJQcmurhItxVpq0tqFcNFZsITVOaaM0OJXrU8IhT7x
OaoErM1/7Kw4mi/ygzzBf/DQxJe5lCYiHWfLoNSK7Ihjy0DgaGVHcwh82OQSFy52
fzLNxEyLp6qYYLKkkdFlmEXep9QsgyIytTzvwwIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFFmfM1XpiTJz2dWQ3t7u79GdiVwZMB8GA1UdIwQYMBaAFCUOffQ8gtEgoT08
hl8fBvSWRLHhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
SlE1OTlEeUMwU0NoUFR5R1h4OEc5SlpFc2VFLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC83ZS83ZDJlNjQtMTBkOS00YTRlLWE0YzYtNGE5YmIyZmU3MzMxLzEv
V1o4elZlbUpNblBaMVpEZTN1N3YwWjJKWEJrLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC83ZS83
ZDJlNjQtMTBkOS00YTRlLWE0YzYtNGE5YmIyZmU3MzMxLzEvSlE1OTlEeUMwU0No
UFR5R1h4OEc5SlpFc2VFLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY+EMA0GCSqGSIb3DQEBCwUAA4IB
AQB4PgB38weoposF+eCV978F/mme43evnl5Nx+OXZLINf0qvG7dSczwIvN9z7ect
BJc7OmG4QWsol5qbWGjpUoosa+rL6mxyKytmeuV+6WAbyF+m03lvSnXsZQalwX1s
37zxR8GWxaES+YGcoqkJiq7DLakYzyYsVPzKnUaAM7jOjcr2kIIfTcj9RHZOBYiK
bD51/LtYLqMT1Dn3PK4yuKzDSafF6rYLRUI0NFR6uNMClnoqyEeGqk/3a6D+nMJA
JYw7QCtjn56kbwttdCcLKHcuDL0r99WpSJJbdp9PAxW5GaMcetDSdphbZh7unIXK
u09RdzF1BgpkP4JkVh24plF9
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:29 2023 by rpki-client on console-fra.rpki-client.org