Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/ng5KT3Mqax56Emhi0ByF6cVYhtk.roa
File: ng5KT3Mqax56Emhi0ByF6cVYhtk.roa (raw, json)
Hash identifier: l55p58A09jhtrLMDxQNo0Rp1em391TtcazTXB4aOwMo=
Subject key identifier: 9E:0E:4A:4F:73:2A:6B:1E:7A:12:68:62:D0:1C:85:E9:C5:58:86:D9
Certificate issuer: /CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Certificate serial: 01850DDF4292CCC82C3B096AABA57C837817
Authority key identifier: 81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/ng5KT3Mqax56Emhi0ByF6cVYhtk.roa
Signing time: Tue 13 Dec 2022 23:43:33 +0000
ROA not before: Tue 13 Dec 2022 23:43:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203446
IP address blocks: 45.157.10.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0d:df:42:92:cc:c8:2c:3b:09:6a:ab:a5:7c:83:78:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8133d89c06a8a1cc9dbc362201f7ec559d7fdd48
Validity
Not Before: Dec 13 23:43:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9e0e4a4f732a6b1e7a126862d01c85e9c55886d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:93:53:d4:07:a8:54:91:7d:0e:b9:6b:45:7c:
ad:03:68:ea:01:59:e6:08:f7:84:ff:f1:9c:4a:b7:
3a:3b:53:43:1f:ca:99:e6:6b:b7:43:48:b7:f1:73:
0e:b6:e8:41:54:f8:d7:28:86:9a:fb:6c:e9:4a:59:
ed:f1:b6:fd:b8:9d:c7:3f:66:61:00:83:88:92:6a:
be:1d:0a:47:f7:bc:e7:d6:e7:e7:8f:5e:8c:72:39:
3a:ce:1d:6c:7d:af:d6:e7:d1:a2:e9:04:e0:49:1b:
5c:95:11:9b:52:a9:1d:5b:12:5a:71:b5:bd:4c:89:
b5:a3:36:51:e2:6c:4e:5b:bd:42:e7:40:56:ff:d9:
22:94:c4:2f:07:d4:dc:fc:4b:76:c5:4a:b4:0c:47:
73:86:01:1d:99:ee:f2:df:9d:e7:53:3f:38:83:47:
4e:92:5a:e2:0c:dc:ca:4b:f6:b4:a1:f5:8f:75:e3:
3c:87:36:40:d8:48:84:c3:ed:15:76:e9:03:5e:b5:
b7:7e:2f:60:f8:a1:9e:ad:6d:7e:ba:7b:f4:7e:7d:
fe:df:8f:87:a0:ef:ac:62:09:fb:56:19:d9:c9:0a:
d1:85:9f:8f:ae:67:6e:02:e7:c0:91:91:3a:b2:45:
91:9e:a9:9e:e7:1d:94:4f:9c:c2:f7:52:84:b4:8b:
6e:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:0E:4A:4F:73:2A:6B:1E:7A:12:68:62:D0:1C:85:E9:C5:58:86:D9
X509v3 Authority Key Identifier:
keyid:81:33:D8:9C:06:A8:A1:CC:9D:BC:36:22:01:F7:EC:55:9D:7F:DD:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gTPYnAaoocydvDYiAffsVZ1_3Ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/ng5KT3Mqax56Emhi0ByF6cVYhtk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/e90ff2-6c91-4eb8-a4b1-c5febe487c40/1/gTPYnAaoocydvDYiAffsVZ1_3Ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.10.0/24
Signature Algorithm: sha256WithRSAEncryption
43:d3:57:3b:0d:d9:87:e6:ce:ec:b9:e8:b5:b6:36:8c:59:0f:
60:7e:58:cb:6f:50:e7:9c:a6:22:0c:51:a6:c7:64:89:b2:b0:
e5:b4:ea:0a:3b:8b:ed:a1:e7:6e:25:7e:e8:8a:67:5e:a3:5e:
ec:a9:d0:f2:83:25:89:0c:6a:a0:be:16:2c:53:b7:b1:5a:7b:
65:c9:18:c2:88:e8:d7:30:96:76:f1:b2:c3:bb:51:9a:5c:c5:
7a:74:cb:8d:c4:c9:71:08:6d:92:7b:00:8c:6a:30:30:8e:72:
f2:5d:e2:22:39:a1:61:0f:d1:b5:cb:92:10:5e:6c:06:83:fc:
40:b0:a8:90:1c:b2:67:81:84:13:e7:1f:f0:30:64:b3:a4:07:
da:b8:60:ed:19:64:f1:a5:0e:2e:39:6b:04:76:40:1a:4e:80:
e6:f4:2a:a3:68:e0:fb:2a:f8:2f:d4:b9:42:b9:34:2c:f9:80:
05:6f:da:6e:3f:04:ee:18:14:7f:f0:52:02:75:f6:23:e8:60:
0e:c4:29:07:23:8c:86:9b:3f:34:11:4e:4c:a1:a1:12:bb:7a:
9f:f8:8e:25:85:7d:58:37:d0:6e:9f:97:a2:4e:ab:cd:0a:63:
25:41:d7:7d:ba:e1:9d:5b:2f:f9:aa:22:d2:ad:5a:7d:45:21:
1a:04:86:90
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUN30KSzMgsOwlqq6V8g3gXMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxMzNkODljMDZhOGExY2M5ZGJjMzYyMjAxZjdlYzU1OWQ3
ZmRkNDgwHhcNMjIxMjEzMjM0MzMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5ZTBlNGE0ZjczMmE2YjFlN2ExMjY4NjJkMDFjODVlOWM1NTg4NmQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpNT1AeoVJF9DrlrRXytA2jqAVnm
CPeE//GcSrc6O1NDH8qZ5mu3Q0i38XMOtuhBVPjXKIaa+2zpSlnt8bb9uJ3HP2Zh
AIOIkmq+HQpH97zn1ufnj16Mcjk6zh1sfa/W59Gi6QTgSRtclRGbUqkdWxJacbW9
TIm1ozZR4mxOW71C50BW/9kilMQvB9Tc/Et2xUq0DEdzhgEdme7y353nUz84g0dO
klriDNzKS/a0ofWPdeM8hzZA2EiEw+0VdukDXrW3fi9g+KGerW1+unv0fn3+34+H
oO+sYgn7VhnZyQrRhZ+PrmduAufAkZE6skWRnqme5x2UT5zC91KEtItufwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJ4OSk9zKmseehJoYtAchenFWIbZMB8GA1UdIwQY
MBaAFIEz2JwGqKHMnbw2IgH37FWdf91IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ1RQWW5BYW9vY3lkdkRZaUFmZnNWWjFfM1VnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9lOTBmZjItNmM5MS00ZWI4LWE0YjEt
YzVmZWJlNDg3YzQwLzEvbmc1S1QzTXFheDU2RW1oaTBCeUY2Y1ZZaHRrLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9lOTBmZjItNmM5MS00ZWI4LWE0YjEtYzVmZWJlNDg3YzQw
LzEvZ1RQWW5BYW9vY3lkdkRZaUFmZnNWWjFfM1VnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ0KMA0G
CSqGSIb3DQEBCwUAA4IBAQBD01c7DdmH5s7suei1tjaMWQ9gfljLb1DnnKYiDFGm
x2SJsrDltOoKO4vtoeduJX7oimdeo17sqdDygyWJDGqgvhYsU7exWntlyRjCiOjX
MJZ28bLDu1GaXMV6dMuNxMlxCG2SewCMajAwjnLyXeIiOaFhD9G1y5IQXmwGg/xA
sKiQHLJngYQT5x/wMGSzpAfauGDtGWTxpQ4uOWsEdkAaToDm9CqjaOD7Kvgv1LlC
uTQs+YAFb9puPwTuGBR/8FICdfYj6GAOxCkHI4yGmz80EU5MoaESu3qf+I4lhX1Y
N9Bun5eiTqvNCmMlQdd9uuGdWy/5qiLSrVp9RSEaBIaQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:40:14 2024 by rpki-client on console-fra.rpki-client.org