Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/e28iOrhccrzUVsbXYp-X-K3M_6U.roa
File: e28iOrhccrzUVsbXYp-X-K3M_6U.roa (raw, json)
Hash identifier: 79l/mlQuYYy9X2BUlDVodklO8+GdqSLXBoG69FZ2oTA=
Subject key identifier: 7B:6F:22:3A:B8:5C:72:BC:D4:56:C6:D7:62:9F:97:F8:AD:CC:FF:A5
Certificate issuer: /CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Certificate serial: 049C83BD
Authority key identifier: D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/e28iOrhccrzUVsbXYp-X-K3M_6U.roa
Signing time: Sat 01 Jan 2022 08:56:48 +0000
ROA not before: Sat 01 Jan 2022 08:56:48 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209879
IP address blocks: 45.148.88.0/22 maxlen: 27
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77366205 (0x49c83bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3a7c3be06bc45c3f12b90b185278ad4ec919756
Validity
Not Before: Jan 1 08:56:48 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7b6f223ab85c72bcd456c6d7629f97f8adccffa5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:27:91:84:86:82:b1:44:4a:60:cf:2d:ac:aa:
65:f4:dc:bd:e4:f9:15:37:b1:86:4b:a9:be:da:06:
68:3f:c7:72:74:b0:02:e4:71:6e:ee:a5:3b:14:2a:
82:bd:c0:76:2c:17:42:13:bc:ac:1a:94:f4:bc:22:
da:78:33:a8:92:b6:1b:8a:82:a0:a5:2d:b4:ac:5d:
18:7d:b2:d6:08:34:c4:86:23:b6:f5:92:1a:57:72:
8e:b9:4f:4c:a7:f5:8d:d3:25:28:fe:85:3f:9c:c4:
b6:8d:dc:d8:f5:a4:d6:82:b7:23:34:29:57:c3:5e:
09:42:ed:54:6f:b0:d5:c6:f4:dd:ce:66:2b:e3:37:
40:57:a0:50:0f:50:c2:ce:65:4a:14:0c:d4:af:66:
22:a7:33:72:4b:44:e0:63:ca:f8:0f:9f:3c:1a:7e:
7a:ad:d8:ba:19:a1:39:0d:d9:8b:df:10:31:86:95:
67:89:02:b4:e0:fb:54:fe:b5:c7:ae:fd:4b:44:e8:
61:07:e5:8a:88:e2:0e:b7:9c:03:20:c7:ba:d5:2c:
61:69:fb:d4:23:49:e6:dd:2f:bc:95:f2:ca:1e:b0:
5a:75:23:22:7d:c6:cd:23:aa:a6:cf:1a:73:eb:bb:
e9:5a:8a:b5:5b:36:78:09:b0:e2:70:b4:80:1c:35:
63:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:6F:22:3A:B8:5C:72:BC:D4:56:C6:D7:62:9F:97:F8:AD:CC:FF:A5
X509v3 Authority Key Identifier:
keyid:D3:A7:C3:BE:06:BC:45:C3:F1:2B:90:B1:85:27:8A:D4:EC:91:97:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/06fDvga8RcPxK5CxhSeK1OyRl1Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/e28iOrhccrzUVsbXYp-X-K3M_6U.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/cecfb6-07fb-4275-b06a-8aa50d67037c/1/06fDvga8RcPxK5CxhSeK1OyRl1Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.148.88.0/22
Signature Algorithm: sha256WithRSAEncryption
6d:82:82:35:35:f8:f0:91:36:c9:ca:51:ff:b6:85:fd:d1:3d:
67:d7:16:58:e6:24:a2:ec:9c:68:a3:78:b9:90:cc:46:88:89:
86:d4:91:c4:4c:64:2e:a8:35:e4:db:79:b2:a6:c5:25:15:78:
2e:de:34:4e:32:d5:bd:c5:d5:80:6d:5e:0c:9e:69:65:f0:ea:
4e:33:90:70:8d:fd:a3:c6:8f:ba:96:bf:24:81:da:51:a8:11:
19:57:3d:16:fe:60:3b:e1:41:3b:f7:06:56:e6:7f:84:4e:6c:
1e:3b:6b:aa:01:2a:38:cd:93:ba:33:5f:8b:de:84:a7:be:84:
b1:31:d3:c7:ef:b8:42:61:9d:1f:46:47:02:8d:13:07:f6:8f:
0b:d4:71:62:9a:e7:06:48:49:3b:22:d9:62:77:b4:47:68:ea:
f8:00:22:e9:b5:d4:3c:7a:d8:df:a0:aa:9f:3a:78:ae:96:a3:
e8:c8:e9:a0:32:23:2c:26:51:1c:85:70:c7:8a:b2:ed:82:8c:
73:05:be:f9:b5:a8:e8:33:f1:15:a1:19:f9:f4:0c:17:3f:0b:
54:fd:1c:03:e4:b2:f3:80:23:2e:00:9d:85:a9:25:7c:d0:ee:
c0:a9:0c:b4:21:26:df:ba:73:b3:7f:15:37:ef:12:01:a4:5d:
2e:17:6f:9e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBJyDvTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
M2E3YzNiZTA2YmM0NWMzZjEyYjkwYjE4NTI3OGFkNGVjOTE5NzU2MB4XDTIyMDEw
MTA4NTY0OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoN2I2ZjIyM2FiODVj
NzJiY2Q0NTZjNmQ3NjI5Zjk3ZjhhZGNjZmZhNTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALonkYSGgrFESmDPLayqZfTcveT5FTexhkupvtoGaD/HcnSw
AuRxbu6lOxQqgr3AdiwXQhO8rBqU9Lwi2ngzqJK2G4qCoKUttKxdGH2y1gg0xIYj
tvWSGldyjrlPTKf1jdMlKP6FP5zEto3c2PWk1oK3IzQpV8NeCULtVG+w1cb03c5m
K+M3QFegUA9Qws5lShQM1K9mIqczcktE4GPK+A+fPBp+eq3YuhmhOQ3Zi98QMYaV
Z4kCtOD7VP61x679S0ToYQfliojiDrecAyDHutUsYWn71CNJ5t0vvJXyyh6wWnUj
In3GzSOqps8ac+u76VqKtVs2eAmw4nC0gBw1YycCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBR7byI6uFxyvNRWxtdin5f4rcz/pTAfBgNVHSMEGDAWgBTTp8O+BrxFw/Er
kLGFJ4rU7JGXVjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzA2ZkR2Z2E4UmNQeEs1Q3hoU2VLMU95UmwxWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvODYvY2VjZmI2LTA3ZmItNDI3NS1iMDZhLThhYTUwZDY3MDM3Yy8x
L2UyOGlPcmhjY3J6VVZzYlhZcC1YLUszTV82VS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODYv
Y2VjZmI2LTA3ZmItNDI3NS1iMDZhLThhYTUwZDY3MDM3Yy8xLzA2ZkR2Z2E4UmNQ
eEs1Q3hoU2VLMU95UmwxWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2UWDANBgkqhkiG9w0BAQsFAAOC
AQEAbYKCNTX48JE2ycpR/7aF/dE9Z9cWWOYkouycaKN4uZDMRoiJhtSRxExkLqg1
5Nt5sqbFJRV4Lt40TjLVvcXVgG1eDJ5pZfDqTjOQcI39o8aPupa/JIHaUagRGVc9
Fv5gO+FBO/cGVuZ/hE5sHjtrqgEqOM2TujNfi96Ep76EsTHTx++4QmGdH0ZHAo0T
B/aPC9RxYprnBkhJOyLZYne0R2jq+AAi6bXUPHrY36Cqnzp4rpaj6MjpoDIjLCZR
HIVwx4qy7YKMcwW++bWo6DPxFaEZ+fQMFz8LVP0cA+Sy84AjLgCdhaklfNDuwKkM
tCEm37pzs38VN+8SAaRdLhdvng==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:37:41 2024 by rpki-client on console-fra.rpki-client.org