Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/e29a57-6b76-4a06-a116-f6f323fd96e0/1/c9QN7-XyDziWAizfT3oiMo-Dwgs.roa
File: c9QN7-XyDziWAizfT3oiMo-Dwgs.roa (raw, json)
Hash identifier: b6I61FEC3lQIJCY8oDwuqZkWe8KHZhOWCmkA2qJpgzM=
Subject key identifier: 73:D4:0D:EF:E5:F2:0F:38:96:02:2C:DF:4F:7A:22:32:8F:83:C2:0B
Certificate issuer: /CN=d643aec22f819cf01f2c6363035d97f8e0e38233
Certificate serial: 07A60E76
Authority key identifier: D6:43:AE:C2:2F:81:9C:F0:1F:2C:63:63:03:5D:97:F8:E0:E3:82:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kOuwi-BnPAfLGNjA12X-ODjgjM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/e29a57-6b76-4a06-a116-f6f323fd96e0/1/c9QN7-XyDziWAizfT3oiMo-Dwgs.roa
Signing time: Sat 01 Jan 2022 07:55:02 +0000
ROA not before: Sat 01 Jan 2022 07:55:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56851
IP address blocks: 45.94.156.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128323190 (0x7a60e76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d643aec22f819cf01f2c6363035d97f8e0e38233
Validity
Not Before: Jan 1 07:55:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=73d40defe5f20f3896022cdf4f7a22328f83c20b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:bf:66:32:3f:e8:74:72:7c:ab:ab:2b:75:f0:
fc:ac:27:8f:56:f0:4e:e5:ae:76:39:e0:a6:25:63:
b7:66:35:73:5c:b9:df:70:f7:fb:62:47:c2:e2:a1:
d3:0c:e2:56:d6:42:74:5b:94:0e:3a:bd:49:59:3c:
67:74:7d:8a:f6:85:5f:43:c7:0e:d8:2d:4a:7f:e8:
e2:5b:ea:a5:0e:7d:26:64:8c:d2:eb:45:00:97:b9:
cd:7f:d2:fa:e5:62:f9:5b:95:2e:b0:5f:14:cc:e8:
c7:9d:e8:ee:a3:4f:f4:e2:cd:13:78:f4:1d:be:ad:
50:30:46:ff:b5:4e:80:3e:38:44:be:06:09:9a:43:
62:c3:b3:45:41:67:a2:e9:a2:3a:2f:4c:97:f9:a8:
3e:be:ad:f6:f7:bc:df:78:d1:0f:e0:fb:02:86:83:
0e:de:f7:04:01:18:2f:26:be:a7:c2:ab:4a:4d:3b:
87:29:93:82:28:7b:91:ae:13:d7:86:97:89:2e:43:
94:00:e3:ab:28:be:d3:56:91:9b:19:c2:64:2e:f4:
52:72:96:56:41:6d:93:ec:85:33:4c:4f:6a:24:7b:
94:d7:ae:0c:9b:ae:f8:08:74:8d:f2:11:63:04:0c:
4a:59:91:00:af:63:81:10:11:79:f5:b0:4c:78:ba:
e9:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:D4:0D:EF:E5:F2:0F:38:96:02:2C:DF:4F:7A:22:32:8F:83:C2:0B
X509v3 Authority Key Identifier:
keyid:D6:43:AE:C2:2F:81:9C:F0:1F:2C:63:63:03:5D:97:F8:E0:E3:82:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kOuwi-BnPAfLGNjA12X-ODjgjM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e29a57-6b76-4a06-a116-f6f323fd96e0/1/c9QN7-XyDziWAizfT3oiMo-Dwgs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/e29a57-6b76-4a06-a116-f6f323fd96e0/1/1kOuwi-BnPAfLGNjA12X-ODjgjM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.94.156.0/22
Signature Algorithm: sha256WithRSAEncryption
14:8b:c8:44:92:90:e6:a4:d4:f2:bc:d7:0d:be:9f:26:8c:43:
6d:33:be:57:2a:f8:ec:b6:51:46:d7:83:e1:ab:6f:1d:67:3a:
77:07:02:62:9d:b1:65:c7:c3:ae:0b:e0:3c:44:07:95:d5:cc:
a9:c7:b5:f1:1a:a0:04:21:49:d5:69:e3:88:b5:23:fb:fd:dc:
0c:91:8a:fd:84:33:5c:c8:81:89:26:04:6c:8c:e6:8b:d9:cf:
6a:13:40:a2:8a:75:02:e6:e7:ab:4e:02:cb:31:3f:eb:7c:02:
14:a7:a0:61:fe:e8:64:2e:44:0f:a6:ad:8d:3e:d1:42:ff:e6:
6f:22:11:9a:3f:7a:f8:bd:62:a6:b2:29:81:45:00:ca:04:6e:
e4:11:1f:e3:cf:b7:be:78:f0:78:27:7a:09:10:9d:6e:22:6b:
fd:c7:8e:db:6b:e8:74:5f:48:ea:63:af:52:12:3c:36:6d:a4:
f8:63:1b:38:18:81:d4:65:a3:10:41:27:77:75:90:ef:b0:d7:
75:2e:fb:cc:08:ec:c7:d7:d1:5e:e1:7e:f6:22:1c:bd:0d:95:
df:4a:31:91:0b:cf:33:df:f9:b0:89:58:88:0c:cf:dd:6e:2a:
e2:90:fe:d9:36:5a:47:c6:ae:0a:c7:ef:d0:40:3a:8e:bf:d4:
3a:56:20:e5
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB6YOdjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NjQzYWVjMjJmODE5Y2YwMWYyYzYzNjMwMzVkOTdmOGUwZTM4MjMzMB4XDTIyMDEw
MTA3NTUwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNzNkNDBkZWZlNWYy
MGYzODk2MDIyY2RmNGY3YTIyMzI4ZjgzYzIwYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMe/ZjI/6HRyfKurK3Xw/Kwnj1bwTuWudjngpiVjt2Y1c1y5
33D3+2JHwuKh0wziVtZCdFuUDjq9SVk8Z3R9ivaFX0PHDtgtSn/o4lvqpQ59JmSM
0utFAJe5zX/S+uVi+VuVLrBfFMzox53o7qNP9OLNE3j0Hb6tUDBG/7VOgD44RL4G
CZpDYsOzRUFnoumiOi9Ml/moPr6t9ve833jRD+D7AoaDDt73BAEYLya+p8KrSk07
hymTgih7ka4T14aXiS5DlADjqyi+01aRmxnCZC70UnKWVkFtk+yFM0xPaiR7lNeu
DJuu+Ah0jfIRYwQMSlmRAK9jgRARefWwTHi66bcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRz1A3v5fIPOJYCLN9PeiIyj4PCCzAfBgNVHSMEGDAWgBTWQ67CL4Gc8B8s
Y2MDXZf44OOCMzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFrT3V3aS1CblBBZkxHTmpBMTJYLU9EamdqTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODUvZTI5YTU3LTZiNzYtNGEwNi1hMTE2LWY2ZjMyM2ZkOTZlMC8x
L2M5UU43LVh5RHppV0FpemZUM29pTW8tRHdncy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUv
ZTI5YTU3LTZiNzYtNGEwNi1hMTE2LWY2ZjMyM2ZkOTZlMC8xLzFrT3V3aS1CblBB
ZkxHTmpBMTJYLU9EamdqTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1enDANBgkqhkiG9w0BAQsFAAOC
AQEAFIvIRJKQ5qTU8rzXDb6fJoxDbTO+Vyr47LZRRteD4atvHWc6dwcCYp2xZcfD
rgvgPEQHldXMqce18RqgBCFJ1WnjiLUj+/3cDJGK/YQzXMiBiSYEbIzmi9nPahNA
oop1Aubnq04CyzE/63wCFKegYf7oZC5ED6atjT7RQv/mbyIRmj96+L1iprIpgUUA
ygRu5BEf48+3vnjweCd6CRCdbiJr/ceO22vodF9I6mOvUhI8Nm2k+GMbOBiB1GWj
EEEnd3WQ77DXdS77zAjsx9fRXuF+9iIcvQ2V30oxkQvPM9/5sIlYiAzP3W4q4pD+
2TZaR8auCsfv0EA6jr/UOlYg5Q==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:58:53 2023 by rpki-client on console-fra.rpki-client.org