Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/3d39LwvLIF3GTcvcu2ZPWEFAIuY.roa
File: 3d39LwvLIF3GTcvcu2ZPWEFAIuY.roa (raw, json)
Hash identifier: Zzd6QqebSDF2gxY2ZIDDIbYD3kTdy1tQy+UsDenhl+4=
Subject key identifier: DD:DD:FD:2F:0B:CB:20:5D:C6:4D:CB:DC:BB:66:4F:58:41:40:22:E6
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 0828B5B4
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/3d39LwvLIF3GTcvcu2ZPWEFAIuY.roa
Signing time: Sat 01 Jan 2022 05:06:12 +0000
ROA not before: Sat 01 Jan 2022 05:06:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34854
IP address blocks: 45.92.40.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136885684 (0x828b5b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 1 05:06:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ddddfd2f0bcb205dc64dcbdcbb664f58414022e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:ac:ab:1a:70:89:47:e0:69:2a:3c:34:81:40:
ab:e7:94:2f:ff:fc:f4:f0:4f:52:8b:3d:8b:ad:b1:
67:13:b8:90:a6:d8:98:ed:aa:45:08:1a:32:6c:23:
ca:56:10:a2:9a:bc:78:87:43:ad:2e:93:6b:7d:49:
08:cf:e6:3f:6a:34:47:c8:64:51:d0:c5:d8:35:3a:
84:5d:74:bd:16:38:30:95:38:a2:7f:98:5c:c2:9d:
71:2b:70:cd:0a:ec:d0:3a:77:a1:bd:1d:e6:4f:c8:
ab:65:c7:d2:57:c3:d5:a6:1b:a2:c5:15:87:36:89:
40:ee:71:39:b0:cf:f2:0b:4b:20:dd:98:32:ad:ae:
87:35:5a:22:18:7d:44:c8:d4:c0:f4:8a:4b:eb:a7:
20:ee:78:99:58:c9:51:3d:ae:9c:cc:78:38:90:80:
59:5e:0f:e6:91:54:2c:09:06:8f:bf:b7:30:d1:db:
da:e2:54:f3:83:cc:bb:d0:24:3f:a4:62:9a:3f:9d:
31:ef:dc:65:da:65:2a:7f:ce:a9:ce:11:3a:2c:a8:
f1:3f:5a:f7:48:e7:59:bc:49:8c:c3:66:5f:b9:85:
aa:21:b5:c2:47:d7:0c:c7:68:f1:c5:bc:c4:51:62:
0b:e0:d0:30:e0:9e:e8:13:41:9d:73:3a:65:83:bd:
c3:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:DD:FD:2F:0B:CB:20:5D:C6:4D:CB:DC:BB:66:4F:58:41:40:22:E6
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/3d39LwvLIF3GTcvcu2ZPWEFAIuY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.40.0/24
Signature Algorithm: sha256WithRSAEncryption
2b:8f:9a:85:f5:f6:4d:52:35:4e:85:77:56:ee:1d:be:72:ca:
3e:fb:68:5a:28:68:68:4e:bc:9a:3c:26:4e:05:b8:ed:67:59:
8d:00:20:f2:11:0c:8d:0f:8c:99:35:90:d9:9f:0a:ce:9f:0d:
be:4e:71:97:40:17:0d:e3:80:62:c7:f4:b7:87:8e:18:5a:a2:
7b:d1:7f:ec:0d:d3:ad:76:12:f1:93:00:da:36:ba:00:23:d9:
ae:24:2c:40:0b:a2:7e:93:9b:a2:68:ee:77:0e:23:df:56:e8:
ca:95:77:02:e1:81:d4:0b:28:dc:93:ad:f5:d7:d3:d4:34:15:
78:f3:ce:64:84:55:24:72:f7:72:51:d0:51:4e:48:67:07:ab:
95:c0:ab:59:f0:15:54:d4:1e:44:fc:d2:ea:4f:84:43:50:46:
c1:41:47:06:16:e1:4f:87:95:20:c5:e7:2d:61:b2:d2:70:76:
80:7e:18:6e:c2:93:03:4a:22:f4:37:69:9c:b6:ff:dd:29:d0:
4c:f1:99:0e:d4:b1:5d:c0:2e:b3:c7:9b:a9:2c:de:6e:5b:d2:
a6:6d:cf:d5:6d:9e:bc:4d:3d:08:b6:b3:63:ea:d3:a6:9a:13:
e8:af:6d:bf:e5:78:38:1c:15:ad:b0:1e:33:3a:94:23:0e:b0:
f0:73:a4:84
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECCi1tDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZTMxMzY3ZGY2ZDE4NjEwNzFjOTJiYWU3MjY1MjMzMjZmNDViYTJhMB4XDTIyMDEw
MTA1MDYxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZGRkZGZkMmYwYmNi
MjA1ZGM2NGRjYmRjYmI2NjRmNTg0MTQwMjJlNjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANKsqxpwiUfgaSo8NIFAq+eUL//89PBPUos9i62xZxO4kKbY
mO2qRQgaMmwjylYQopq8eIdDrS6Ta31JCM/mP2o0R8hkUdDF2DU6hF10vRY4MJU4
on+YXMKdcStwzQrs0Dp3ob0d5k/Iq2XH0lfD1aYbosUVhzaJQO5xObDP8gtLIN2Y
Mq2uhzVaIhh9RMjUwPSKS+unIO54mVjJUT2unMx4OJCAWV4P5pFULAkGj7+3MNHb
2uJU84PMu9AkP6Rimj+dMe/cZdplKn/Oqc4ROiyo8T9a90jnWbxJjMNmX7mFqiG1
wkfXDMdo8cW8xFFiC+DQMOCe6BNBnXM6ZYO9w9kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTd3f0vC8sgXcZNy9y7Zk9YQUAi5jAfBgNVHSMEGDAWgBTuMTZ99tGGEHHJ
K65yZSMyb0W6KjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdqRTJmZmJSaGhCeHlTdXVjbVVqTW05RnVpby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvMWJiNGRkLWU5YzQtNGQzZC05YTNiLTExNTlkYmZiZWQ1NC8x
LzNkMzlMd3ZMSUYzR1RjdmN1MlpQV0VGQUl1WS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
MWJiNGRkLWU5YzQtNGQzZC05YTNiLTExNTlkYmZiZWQ1NC8xLzdqRTJmZmJSaGhC
eHlTdXVjbVVqTW05RnVpby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1cKDANBgkqhkiG9w0BAQsFAAOC
AQEAK4+ahfX2TVI1ToV3Vu4dvnLKPvtoWihoaE68mjwmTgW47WdZjQAg8hEMjQ+M
mTWQ2Z8Kzp8Nvk5xl0AXDeOAYsf0t4eOGFqie9F/7A3TrXYS8ZMA2ja6ACPZriQs
QAuifpObomjudw4j31boypV3AuGB1Aso3JOt9dfT1DQVePPOZIRVJHL3clHQUU5I
ZwerlcCrWfAVVNQeRPzS6k+EQ1BGwUFHBhbhT4eVIMXnLWGy0nB2gH4YbsKTA0oi
9DdpnLb/3SnQTPGZDtSxXcAus8ebqSzeblvSpm3P1W2evE09CLazY+rTppoT6K9t
v+V4OBwVrbAeMzqUIw6w8HOkhA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:37 2024 by rpki-client on console-ams.rpki-client.org