Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/p5HMaCSq7cVeU-vLS-aMOlw2qNI.roa
File: p5HMaCSq7cVeU-vLS-aMOlw2qNI.roa (raw, json)
Hash identifier: VrPhZCb7rpE6l6vo3l6NaJkWI3J7yRx3NvR2jQ10jgg=
Subject key identifier: A7:91:CC:68:24:AA:ED:C5:5E:53:EB:CB:4B:E6:8C:3A:5C:36:A8:D2
Certificate issuer: /CN=ee31367df6d1861071c92bae726523326f45ba2a
Certificate serial: 0830B0BE
Authority key identifier: EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/p5HMaCSq7cVeU-vLS-aMOlw2qNI.roa
Signing time: Sat 01 Jan 2022 05:06:16 +0000
ROA not before: Sat 01 Jan 2022 05:06:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208634
IP address blocks: 45.92.40.0/22 maxlen: 24
2a0e:1cc0::/29 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137408702 (0x830b0be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ee31367df6d1861071c92bae726523326f45ba2a
Validity
Not Before: Jan 1 05:06:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a791cc6824aaedc55e53ebcb4be68c3a5c36a8d2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:d9:9e:11:df:ba:7c:a3:63:f5:b3:a1:d3:2e:
b9:75:96:08:0a:29:22:e2:df:72:21:4f:67:85:26:
9b:6d:7f:b4:f6:b6:07:8a:25:5d:25:e6:d3:f4:a5:
ef:ce:ae:46:ed:f9:9e:23:bc:18:23:1c:86:d1:6c:
dd:6b:a7:51:0e:da:fb:37:4d:af:0e:5d:25:c5:07:
41:94:15:d7:70:af:1c:93:c9:f4:69:d3:49:e7:2a:
b7:22:72:4d:75:44:92:21:bd:70:ae:2f:8b:ec:bf:
4d:df:da:32:67:c5:92:df:34:0c:4e:f2:c0:02:01:
c5:43:fd:d5:db:ae:f3:f0:f4:95:e0:06:b0:32:cc:
1a:fb:8f:6f:9d:46:ae:d4:69:06:7e:dc:5d:01:04:
10:4b:22:df:b7:10:28:b8:d2:cd:e7:45:79:98:ae:
fb:82:96:46:30:46:ae:7b:82:b8:4d:0b:70:d0:79:
b8:59:d1:e4:35:49:04:76:f8:19:68:e3:d6:68:ee:
ea:9d:06:2a:ff:ee:85:c7:31:d6:60:19:b8:b1:2a:
ad:ff:f8:61:7a:97:bc:da:9b:0e:ee:4c:7b:e1:85:
b7:15:ce:f6:ce:7c:5a:1b:76:70:8c:60:85:2b:c5:
fc:c7:32:10:64:07:62:a2:9d:6f:17:e2:7a:fc:11:
f7:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:91:CC:68:24:AA:ED:C5:5E:53:EB:CB:4B:E6:8C:3A:5C:36:A8:D2
X509v3 Authority Key Identifier:
keyid:EE:31:36:7D:F6:D1:86:10:71:C9:2B:AE:72:65:23:32:6F:45:BA:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/7jE2ffbRhhBxySuucmUjMm9Fuio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/p5HMaCSq7cVeU-vLS-aMOlw2qNI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/1bb4dd-e9c4-4d3d-9a3b-1159dbfbed54/1/7jE2ffbRhhBxySuucmUjMm9Fuio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.92.40.0/22
IPv6:
2a0e:1cc0::/29
Signature Algorithm: sha256WithRSAEncryption
0f:f6:50:50:6b:3c:50:00:d2:8e:3e:e9:d5:d1:fc:33:0e:f5:
3d:eb:73:fc:85:77:72:01:64:b3:a7:a8:68:01:68:a2:ca:74:
16:98:1a:11:d2:22:10:50:3b:1e:86:a3:f6:92:f5:8b:4f:9d:
37:11:88:37:de:91:86:e7:36:84:f5:6f:54:e9:dc:d2:2f:25:
33:31:bf:94:47:e5:d3:9e:fa:be:af:16:7f:f9:5d:08:ce:df:
b8:27:d6:28:cb:db:0d:c6:9c:fc:57:11:cb:4e:ce:5a:c6:25:
b3:04:bf:f3:cb:10:51:bf:30:cd:55:ff:2c:c8:6d:2e:a6:5b:
0c:44:47:5e:8f:09:54:4f:88:07:84:71:17:bd:e5:09:63:91:
b5:fd:43:75:14:c8:48:e2:c1:85:a7:76:b7:46:81:1d:80:97:
29:b8:79:c1:d4:fc:6b:f8:0d:09:d6:87:ef:14:d4:93:1e:fb:
26:77:78:00:b5:67:af:ea:66:c6:f0:64:e4:11:79:a6:ea:77:
d2:3f:53:02:79:1c:35:ed:3e:20:ca:c9:6a:b6:a0:82:12:49:
f1:71:1d:18:0f:34:b0:96:b0:90:98:79:49:3d:fd:3c:c3:78:
f4:ef:84:dc:5b:2f:0f:82:f3:8c:e6:65:99:35:67:bb:da:c4:
7e:fa:55:81
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECDCwvjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
ZTMxMzY3ZGY2ZDE4NjEwNzFjOTJiYWU3MjY1MjMzMjZmNDViYTJhMB4XDTIyMDEw
MTA1MDYxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTc5MWNjNjgyNGFh
ZWRjNTVlNTNlYmNiNGJlNjhjM2E1YzM2YThkMjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKbZnhHfunyjY/WzodMuuXWWCAopIuLfciFPZ4Umm21/tPa2
B4olXSXm0/Sl786uRu35niO8GCMchtFs3WunUQ7a+zdNrw5dJcUHQZQV13CvHJPJ
9GnTSecqtyJyTXVEkiG9cK4vi+y/Td/aMmfFkt80DE7ywAIBxUP91duu8/D0leAG
sDLMGvuPb51GrtRpBn7cXQEEEEsi37cQKLjSzedFeZiu+4KWRjBGrnuCuE0LcNB5
uFnR5DVJBHb4GWjj1mju6p0GKv/uhccx1mAZuLEqrf/4YXqXvNqbDu5Me+GFtxXO
9s58Wht2cIxghSvF/McyEGQHYqKdbxfievwR93kCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSnkcxoJKrtxV5T68tL5ow6XDao0jAfBgNVHSMEGDAWgBTuMTZ99tGGEHHJ
K65yZSMyb0W6KjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzdqRTJmZmJSaGhCeHlTdXVjbVVqTW05RnVpby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODEvMWJiNGRkLWU5YzQtNGQzZC05YTNiLTExNTlkYmZiZWQ1NC8x
L3A1SE1hQ1NxN2NWZVUtdkxTLWFNT2x3MnFOSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODEv
MWJiNGRkLWU5YzQtNGQzZC05YTNiLTExNTlkYmZiZWQ1NC8xLzdqRTJmZmJSaGhC
eHlTdXVjbVVqTW05RnVpby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAi1cKDANBAIAAjAHAwUDKg4cwDAN
BgkqhkiG9w0BAQsFAAOCAQEAD/ZQUGs8UADSjj7p1dH8Mw71Petz/IV3cgFks6eo
aAFoosp0FpgaEdIiEFA7Hoaj9pL1i0+dNxGIN96Rhuc2hPVvVOnc0i8lMzG/lEfl
0576vq8Wf/ldCM7fuCfWKMvbDcac/FcRy07OWsYlswS/88sQUb8wzVX/LMhtLqZb
DERHXo8JVE+IB4RxF73lCWORtf1DdRTISOLBhad2t0aBHYCXKbh5wdT8a/gNCdaH
7xTUkx77Jnd4ALVnr+pmxvBk5BF5pup30j9TAnkcNe0+IMrJaragghJJ8XEdGA80
sJawkJh5ST39PMN49O+E3FsvD4LzjOZlmTVnu9rEfvpVgQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:36:59 2024 by rpki-client on console-fra.rpki-client.org