Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/IJiUDJUSgvz4GGh13EuuZTLyBus.roa
File: IJiUDJUSgvz4GGh13EuuZTLyBus.roa (raw, json)
Hash identifier: 4lhgpiiBghJw3rfpE1/1TfPhEwCwONQHzNr5jde6Z/E=
Subject key identifier: 20:98:94:0C:95:12:82:FC:F8:18:68:75:DC:4B:AE:65:32:F2:06:EB
Certificate issuer: /CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Certificate serial: 03042C78
Authority key identifier: 81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/IJiUDJUSgvz4GGh13EuuZTLyBus.roa
Signing time: Sat 01 Jan 2022 01:55:28 +0000
ROA not before: Sat 01 Jan 2022 01:55:28 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47576
IP address blocks: 45.12.99.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 50605176 (0x3042c78)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cdc17dad03bcb9bc34a9e377ab2070852dca65
Validity
Not Before: Jan 1 01:55:28 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2098940c951282fcf8186875dc4bae6532f206eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:d4:e6:98:7e:fb:bd:77:60:fd:e9:11:e5:ca:
9f:12:12:74:66:ce:20:45:c5:4b:95:4f:c5:ea:1c:
11:f7:4c:f3:35:35:05:56:2a:41:36:f7:73:87:02:
84:6a:1b:b2:d6:8f:a9:4e:90:52:94:98:1b:d5:66:
c9:db:ce:8b:78:00:72:a1:db:1f:17:fb:de:f5:b7:
50:50:7d:b7:e5:f9:fa:eb:87:49:0c:07:41:6c:f1:
ae:e6:75:25:a6:a0:f3:f9:47:18:0a:fc:b1:8d:13:
76:ff:1d:df:74:55:4e:b6:28:2a:94:11:2b:11:3f:
6f:f4:de:fe:ac:bf:01:e8:81:1b:2a:36:83:db:17:
58:54:0e:49:05:ac:5c:26:a9:7b:17:1d:63:28:ab:
d6:fa:4b:03:05:74:f1:38:eb:52:b6:f2:a6:86:39:
81:5f:d9:2b:0e:f7:58:a2:71:fc:7b:42:ef:20:ca:
b8:31:7e:c0:87:0e:e4:ed:ad:ba:29:f0:49:be:28:
16:5f:3e:d6:33:35:2e:c9:53:68:46:ff:aa:36:41:
4f:82:45:15:47:18:92:85:2a:79:a6:99:a9:bc:ab:
93:77:57:89:93:6c:fa:ec:a8:6b:d3:df:c0:ce:38:
54:99:22:0b:26:36:f9:9f:57:a6:6d:c3:41:2f:e8:
3c:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:98:94:0C:95:12:82:FC:F8:18:68:75:DC:4B:AE:65:32:F2:06:EB
X509v3 Authority Key Identifier:
keyid:81:CD:C1:7D:AD:03:BC:B9:BC:34:A9:E3:77:AB:20:70:85:2D:CA:65
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc3Bfa0DvLm8NKnjd6sgcIUtymU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/IJiUDJUSgvz4GGh13EuuZTLyBus.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/efc9f1-bec3-4771-b480-0184e81aead9/1/gc3Bfa0DvLm8NKnjd6sgcIUtymU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.12.99.0/24
Signature Algorithm: sha256WithRSAEncryption
61:02:c4:5a:75:e0:2f:13:d4:e7:bb:e1:b1:d4:22:49:92:3c:
85:5d:82:1e:01:cf:b3:16:c0:d4:e7:70:36:89:fa:1d:75:d0:
f2:0f:ec:00:54:78:eb:a9:8f:9e:ac:2b:c1:38:94:49:fd:15:
cc:50:b7:e4:97:7f:16:c7:e7:f5:9d:d3:f4:b7:53:76:dd:a6:
99:cd:2f:27:d9:41:4b:cd:6e:b6:70:96:e0:11:ca:24:41:1e:
67:d9:56:6f:d3:7a:cf:99:17:ca:32:ad:fc:79:64:84:62:ef:
07:fd:e6:ed:33:b1:a4:68:c6:20:e0:a8:3e:b4:ed:e2:0b:a9:
dd:85:4a:05:0c:1a:34:6a:66:76:b8:3b:1f:c9:02:51:2f:d8:
0e:81:8b:4d:aa:55:3f:4f:ab:99:58:df:7b:ea:10:d1:80:1f:
91:6d:76:9d:08:c8:9e:b6:2b:0d:1a:e9:94:7d:f6:0a:90:92:
9b:e9:f6:f4:29:5b:e3:53:1a:02:bf:86:5d:71:7a:df:fa:dd:
d9:df:61:96:d5:02:6b:64:d4:e6:1d:a1:d2:72:1c:a9:39:88:
0c:8e:83:ba:b4:de:97:94:e8:e4:dc:b3:53:e9:94:2f:b0:ef:
de:0b:0a:2f:5b:a3:3d:09:a4:3a:23:9a:01:d3:e4:2e:bd:72:
c8:b0:11:33
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAwQseDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MWNkYzE3ZGFkMDNiY2I5YmMzNGE5ZTM3N2FiMjA3MDg1MmRjYTY1MB4XDTIyMDEw
MTAxNTUyOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMjA5ODk0MGM5NTEy
ODJmY2Y4MTg2ODc1ZGM0YmFlNjUzMmYyMDZlYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMfU5ph++713YP3pEeXKnxISdGbOIEXFS5VPxeocEfdM8zU1
BVYqQTb3c4cChGobstaPqU6QUpSYG9VmydvOi3gAcqHbHxf73vW3UFB9t+X5+uuH
SQwHQWzxruZ1Jaag8/lHGAr8sY0Tdv8d33RVTrYoKpQRKxE/b/Te/qy/AeiBGyo2
g9sXWFQOSQWsXCapexcdYyir1vpLAwV08TjrUrbypoY5gV/ZKw73WKJx/HtC7yDK
uDF+wIcO5O2tuinwSb4oFl8+1jM1LslTaEb/qjZBT4JFFUcYkoUqeaaZqbyrk3dX
iZNs+uyoa9PfwM44VJkiCyY2+Z9Xpm3DQS/oPP0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQgmJQMlRKC/PgYaHXcS65lMvIG6zAfBgNVHSMEGDAWgBSBzcF9rQO8ubw0
qeN3qyBwhS3KZTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2djM0JmYTBEdkxtOE5LbmpkNnNnY0lVdHltVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOTYvZWZjOWYxLWJlYzMtNDc3MS1iNDgwLTAxODRlODFhZWFkOS8x
L0lKaVVESlVTZ3Z6NEdHaDEzRXV1WlRMeUJ1cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTYv
ZWZjOWYxLWJlYzMtNDc3MS1iNDgwLTAxODRlODFhZWFkOS8xL2djM0JmYTBEdkxt
OE5LbmpkNnNnY0lVdHltVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0MYzANBgkqhkiG9w0BAQsFAAOC
AQEAYQLEWnXgLxPU57vhsdQiSZI8hV2CHgHPsxbA1OdwNon6HXXQ8g/sAFR466mP
nqwrwTiUSf0VzFC35Jd/Fsfn9Z3T9LdTdt2mmc0vJ9lBS81utnCW4BHKJEEeZ9lW
b9N6z5kXyjKt/HlkhGLvB/3m7TOxpGjGIOCoPrTt4gup3YVKBQwaNGpmdrg7H8kC
US/YDoGLTapVP0+rmVjfe+oQ0YAfkW12nQjInrYrDRrplH32CpCSm+n29Clb41Ma
Ar+GXXF63/rd2d9hltUCa2TU5h2h0nIcqTmIDI6DurTel5To5NyzU+mUL7Dv3gsK
L1ujPQmkOiOaAdPkLr1yyLARMw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:03:29 2023 by rpki-client on console-ams.rpki-client.org