Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/555221-000d-49f6-8335-4fd28c6619ae/1/ToyGgiOTvtNYZwV6GBdzKhCOGZE.roa
File: ToyGgiOTvtNYZwV6GBdzKhCOGZE.roa (raw, json)
Hash identifier: Zx5urXmQIPf4IQOhQ3fGAu1N3eqJYxJwteNFn3CVAcE=
Subject key identifier: 4E:8C:86:82:23:93:BE:D3:58:67:05:7A:18:17:73:2A:10:8E:19:91
Certificate issuer: /CN=a66246b806e89aba40e7e58888f3576513a3934a
Certificate serial: 08238C38
Authority key identifier: A6:62:46:B8:06:E8:9A:BA:40:E7:E5:88:88:F3:57:65:13:A3:93:4A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pmJGuAbomrpA5-WIiPNXZROjk0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/555221-000d-49f6-8335-4fd28c6619ae/1/ToyGgiOTvtNYZwV6GBdzKhCOGZE.roa
Signing time: Sat 01 Jan 2022 04:02:11 +0000
ROA not before: Sat 01 Jan 2022 04:02:11 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 34984
IP address blocks: 45.83.34.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136547384 (0x8238c38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a66246b806e89aba40e7e58888f3576513a3934a
Validity
Not Before: Jan 1 04:02:11 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4e8c86822393bed35867057a1817732a108e1991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:c8:1f:3a:60:d3:3d:a3:1b:4b:0c:bd:93:f1:
a7:42:25:e3:48:fb:c5:c5:e7:49:af:60:a7:ce:5e:
93:71:61:71:84:31:43:eb:53:aa:4d:ad:2b:81:61:
a3:17:07:4a:a4:09:0c:77:ea:ee:57:70:0c:4c:ab:
58:b8:6d:a0:11:eb:a6:05:95:db:a1:d4:1c:a5:23:
cc:19:69:8e:c6:3e:65:be:6f:78:07:80:9d:37:e7:
d9:ae:bd:63:ef:99:97:88:8a:1a:30:a0:f2:a3:30:
c6:3e:3f:2c:e7:78:dc:e9:1b:b1:ce:9b:2f:49:98:
6e:c1:4c:50:bc:d1:7b:91:f6:e4:91:30:21:8f:bf:
3d:22:0a:05:0c:cf:5f:de:1f:ed:ff:b9:f2:e4:44:
a0:89:ec:f2:b1:ab:99:bc:7c:2e:48:5b:d3:74:b0:
50:cc:c8:e6:21:fc:2f:5a:4b:86:dd:8a:75:6f:03:
4c:f0:52:62:3a:b4:8c:b9:16:49:da:6b:72:db:ad:
f1:0a:9c:b7:f2:4f:2a:bc:c8:8a:5a:34:aa:a7:db:
06:4e:cd:c8:a5:26:76:99:05:bc:76:ff:c0:41:33:
3b:9f:26:e1:87:07:88:4b:55:06:60:48:35:4f:c2:
ce:04:38:01:bb:0d:b1:8d:f9:e6:45:c1:57:fc:5d:
c0:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:8C:86:82:23:93:BE:D3:58:67:05:7A:18:17:73:2A:10:8E:19:91
X509v3 Authority Key Identifier:
keyid:A6:62:46:B8:06:E8:9A:BA:40:E7:E5:88:88:F3:57:65:13:A3:93:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pmJGuAbomrpA5-WIiPNXZROjk0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/555221-000d-49f6-8335-4fd28c6619ae/1/ToyGgiOTvtNYZwV6GBdzKhCOGZE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/84/555221-000d-49f6-8335-4fd28c6619ae/1/pmJGuAbomrpA5-WIiPNXZROjk0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.83.34.0/24
Signature Algorithm: sha256WithRSAEncryption
4b:25:78:27:05:1b:d3:7a:c6:35:da:53:6b:3b:64:5c:38:67:
b8:73:79:bb:88:9e:9e:87:42:9f:b7:bf:e5:04:25:28:e5:12:
89:94:36:5d:ee:9d:c0:41:0b:00:48:9a:e5:00:e9:c0:2d:e1:
dc:55:e1:3e:5b:49:97:d1:1b:d6:44:d8:e1:89:bb:e5:79:b2:
40:53:fa:89:27:8d:b9:08:f2:d2:5c:7d:73:e8:4a:d9:ca:37:
eb:99:3c:8e:e8:b8:02:9e:8a:83:d7:f1:d2:29:7b:42:be:a8:
49:08:56:88:c0:11:e2:13:2c:d9:51:44:89:3c:80:4d:4f:3b:
c0:8a:d5:fc:e0:0f:4b:f8:03:a8:c4:55:ae:bb:85:e5:40:9f:
8a:4b:a2:56:7f:db:9d:3d:7f:4e:e9:c0:d5:4a:40:ca:76:86:
ba:27:a1:73:b5:b5:c1:67:e2:7a:bd:30:37:0e:00:f4:ca:38:
da:16:b5:c7:e6:71:6c:41:be:36:49:4d:7b:8f:b6:93:5f:5a:
d1:c5:22:48:22:d6:2c:7b:cd:3a:c3:95:e8:ef:0b:c5:85:ea:
c1:5d:39:60:f7:f4:cb:34:8f:48:ca:a3:79:41:e6:78:b7:8b:
66:95:86:04:de:22:ec:4e:cb:c7:ac:6f:3e:0a:fd:7e:c0:28:
15:5a:7f:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECCOMODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
NjYyNDZiODA2ZTg5YWJhNDBlN2U1ODg4OGYzNTc2NTEzYTM5MzRhMB4XDTIyMDEw
MTA0MDIxMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGU4Yzg2ODIyMzkz
YmVkMzU4NjcwNTdhMTgxNzczMmExMDhlMTk5MTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3IHzpg0z2jG0sMvZPxp0Il40j7xcXnSa9gp85ek3FhcYQx
Q+tTqk2tK4FhoxcHSqQJDHfq7ldwDEyrWLhtoBHrpgWV26HUHKUjzBlpjsY+Zb5v
eAeAnTfn2a69Y++Zl4iKGjCg8qMwxj4/LOd43Okbsc6bL0mYbsFMULzRe5H25JEw
IY+/PSIKBQzPX94f7f+58uREoIns8rGrmbx8Lkhb03SwUMzI5iH8L1pLht2KdW8D
TPBSYjq0jLkWSdprctut8Qqct/JPKrzIilo0qqfbBk7NyKUmdpkFvHb/wEEzO58m
4YcHiEtVBmBINU/CzgQ4AbsNsY355kXBV/xdwOkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBROjIaCI5O+01hnBXoYF3MqEI4ZkTAfBgNVHSMEGDAWgBSmYka4BuiaukDn
5YiI81dlE6OTSjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3BtSkd1QWJvbXJwQTUtV0lpUE5YWlJPamswby5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODQvNTU1MjIxLTAwMGQtNDlmNi04MzM1LTRmZDI4YzY2MTlhZS8x
L1RveUdnaU9UdnROWVp3VjZHQmR6S2hDT0daRS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQv
NTU1MjIxLTAwMGQtNDlmNi04MzM1LTRmZDI4YzY2MTlhZS8xL3BtSkd1QWJvbXJw
QTUtV0lpUE5YWlJPamswby5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC1TIjANBgkqhkiG9w0BAQsFAAOC
AQEASyV4JwUb03rGNdpTaztkXDhnuHN5u4ienodCn7e/5QQlKOUSiZQ2Xe6dwEEL
AEia5QDpwC3h3FXhPltJl9Eb1kTY4Ym75XmyQFP6iSeNuQjy0lx9c+hK2co365k8
jui4Ap6Kg9fx0il7Qr6oSQhWiMAR4hMs2VFEiTyATU87wIrV/OAPS/gDqMRVrruF
5UCfikuiVn/bnT1/TunA1UpAynaGuiehc7W1wWfier0wNw4A9Mo42ha1x+ZxbEG+
NklNe4+2k19a0cUiSCLWLHvNOsOV6O8LxYXqwV05YPf0yzSPSMqjeUHmeLeLZpWG
BN4i7E7Lx6xvPgr9fsAoFVp/ng==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:25 2023 by rpki-client on console-ams.rpki-client.org