Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/e9a31f-1537-40c1-b62d-31adf6439643/1/RUA7EFJblGZ6VPyAI2-3JUFPUdc.roa
File: RUA7EFJblGZ6VPyAI2-3JUFPUdc.roa (raw, json)
Hash identifier: tNNluDz0NLqfZ1DZAVlGZHTUxui8EzTCUq8mLHZy0+U=
Subject key identifier: 45:40:3B:10:52:5B:94:66:7A:54:FC:80:23:6F:B7:25:41:4F:51:D7
Certificate issuer: /CN=08d493078812d09e1a1e0eb2a380fc6574983f5c
Certificate serial: 025E588C
Authority key identifier: 08:D4:93:07:88:12:D0:9E:1A:1E:0E:B2:A3:80:FC:65:74:98:3F:5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CNSTB4gS0J4aHg6yo4D8ZXSYP1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/e9a31f-1537-40c1-b62d-31adf6439643/1/RUA7EFJblGZ6VPyAI2-3JUFPUdc.roa
Signing time: Sat 01 Jan 2022 05:56:31 +0000
ROA not before: Sat 01 Jan 2022 05:56:31 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 2850
IP address blocks: 137.43.0.0/16 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39737484 (0x25e588c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08d493078812d09e1a1e0eb2a380fc6574983f5c
Validity
Not Before: Jan 1 05:56:31 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=45403b10525b94667a54fc80236fb725414f51d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3a:0b:0a:16:3f:a3:82:40:8c:6c:52:55:d4:
da:f1:62:9c:71:33:9a:6b:a0:15:fc:d4:7d:3b:f4:
80:dd:3c:4d:f3:1f:dc:ae:54:88:5c:c6:18:1a:37:
55:fe:a3:6f:d7:7f:25:be:6b:cf:b9:dc:d3:ad:ff:
22:7f:c5:04:42:cb:fe:e5:a3:81:39:70:27:3a:a4:
78:af:1a:65:91:5d:68:ee:f0:81:f6:d3:06:08:75:
d8:d1:c8:84:7a:22:ed:d0:29:67:20:e2:bd:c8:45:
9e:3e:4f:8c:07:69:5f:cf:e2:41:34:60:d1:3d:d2:
46:f7:fd:52:1b:11:cb:db:72:34:b4:10:3e:28:c8:
87:ff:e0:ef:be:55:6a:83:18:69:1c:28:ff:3a:ef:
88:74:ea:40:c0:fd:e1:7f:23:4e:13:4a:f9:1a:4b:
00:22:fc:33:24:f2:4a:03:1e:b7:f3:b3:81:7a:5a:
5c:33:27:12:e1:ea:13:eb:07:ea:49:62:93:1f:24:
b7:b9:95:48:41:89:f3:c6:ad:3d:2c:6d:b1:0f:c0:
6d:19:61:de:3c:91:4d:dc:e0:d3:b9:70:4e:3c:21:
ec:49:21:58:4e:e1:93:bf:04:69:9e:4d:2c:f8:fc:
85:a8:6a:7c:9a:3e:dc:f7:f6:2c:17:07:80:30:83:
c4:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:40:3B:10:52:5B:94:66:7A:54:FC:80:23:6F:B7:25:41:4F:51:D7
X509v3 Authority Key Identifier:
keyid:08:D4:93:07:88:12:D0:9E:1A:1E:0E:B2:A3:80:FC:65:74:98:3F:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CNSTB4gS0J4aHg6yo4D8ZXSYP1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e9a31f-1537-40c1-b62d-31adf6439643/1/RUA7EFJblGZ6VPyAI2-3JUFPUdc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/e9a31f-1537-40c1-b62d-31adf6439643/1/CNSTB4gS0J4aHg6yo4D8ZXSYP1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
137.43.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7a:dc:88:2c:01:2e:f7:d6:94:00:99:33:d0:34:bd:50:ba:1a:
1c:c4:ae:ac:b0:df:c5:a2:21:a8:25:46:17:4b:e1:62:c7:b9:
f0:97:a5:c6:6c:3e:90:ed:64:74:2e:f1:ce:99:a5:ce:a4:00:
2f:30:e2:a5:6e:5f:50:67:34:a8:02:92:5c:e7:f9:6c:57:36:
a3:89:7c:5f:0f:f1:48:08:8e:e9:a6:61:dd:07:17:58:61:6a:
25:dc:d7:3e:58:5b:b4:b3:ac:8c:d3:60:2c:15:c9:b1:cc:51:
36:48:aa:72:5d:c7:20:ba:d0:cf:fc:ed:f7:0e:40:f3:d9:55:
6d:97:31:4d:da:58:cc:dc:64:fe:08:1a:e2:60:dd:96:c3:e8:
c8:df:a7:86:75:ca:04:6f:76:1b:c1:b4:fb:37:94:6f:01:f3:
8d:31:0a:64:4c:40:c0:78:0c:b4:45:6e:f7:bc:51:77:63:a3:
eb:e1:49:e7:e1:1b:30:fc:3a:84:76:ac:20:b4:a6:d1:99:f5:
90:be:e1:99:ac:0b:a4:39:7a:4f:bc:d9:72:57:1f:b2:03:4b:
8a:46:1f:e9:1b:23:42:62:53:16:f6:fb:ac:3b:8c:93:cc:21:
08:c6:35:cf:e7:24:d7:35:d7:84:d1:80:6d:8a:99:30:cc:0f:
57:da:9b:6d
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEAl5YjDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
OGQ0OTMwNzg4MTJkMDllMWExZTBlYjJhMzgwZmM2NTc0OTgzZjVjMB4XDTIyMDEw
MTA1NTYzMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDU0MDNiMTA1MjVi
OTQ2NjdhNTRmYzgwMjM2ZmI3MjU0MTRmNTFkNzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALc6CwoWP6OCQIxsUlXU2vFinHEzmmugFfzUfTv0gN08TfMf
3K5UiFzGGBo3Vf6jb9d/Jb5rz7nc063/In/FBELL/uWjgTlwJzqkeK8aZZFdaO7w
gfbTBgh12NHIhHoi7dApZyDivchFnj5PjAdpX8/iQTRg0T3SRvf9UhsRy9tyNLQQ
PijIh//g775VaoMYaRwo/zrviHTqQMD94X8jThNK+RpLACL8MyTySgMet/OzgXpa
XDMnEuHqE+sH6klikx8kt7mVSEGJ88atPSxtsQ/AbRlh3jyRTdzg07lwTjwh7Ekh
WE7hk78EaZ5NLPj8hahqfJo+3Pf2LBcHgDCDxGcCAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBRFQDsQUluUZnpU/IAjb7clQU9R1zAfBgNVHSMEGDAWgBQI1JMHiBLQnhoe
DrKjgPxldJg/XDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0NOU1RCNGdTMEo0YUhnNnlvNEQ4WlhTWVAxdy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTIvZTlhMzFmLTE1MzctNDBjMS1iNjJkLTMxYWRmNjQzOTY0My8x
L1JVQTdFRkpibEdaNlZQeUFJMi0zSlVGUFVkYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTIv
ZTlhMzFmLTE1MzctNDBjMS1iNjJkLTMxYWRmNjQzOTY0My8xL0NOU1RCNGdTMEo0
YUhnNnlvNEQ4WlhTWVAxdy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIkrMA0GCSqGSIb3DQEBCwUAA4IB
AQB63IgsAS731pQAmTPQNL1QuhocxK6ssN/FoiGoJUYXS+Fix7nwl6XGbD6Q7WR0
LvHOmaXOpAAvMOKlbl9QZzSoApJc5/lsVzajiXxfD/FICI7ppmHdBxdYYWol3Nc+
WFu0s6yM02AsFcmxzFE2SKpyXccgutDP/O33DkDz2VVtlzFN2ljM3GT+CBriYN2W
w+jI36eGdcoEb3YbwbT7N5RvAfONMQpkTEDAeAy0RW73vFF3Y6Pr4Unn4Rsw/DqE
dqwgtKbRmfWQvuGZrAukOXpPvNlyVx+yA0uKRh/pGyNCYlMW9vusO4yTzCEIxjXP
5yTXNdeE0YBtipkwzA9X2ptt
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:59:34 2023 by rpki-client on console-fra.rpki-client.org