Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/9r1AtHurmYDXq0Or0RJ0yN-Tw4s.roa
File: 9r1AtHurmYDXq0Or0RJ0yN-Tw4s.roa (raw, json)
Hash identifier: XgqNqR2XsJYJ5h3TaNGojDD1z5lrDaJrnyGzAAx5YHo=
Subject key identifier: F6:BD:40:B4:7B:AB:99:80:D7:AB:43:AB:D1:12:74:C8:DF:93:C3:8B
Certificate issuer: /CN=37915673b28bdfadb2c2019ac68d0464fd21b71a
Certificate serial: 06F8C1E6
Authority key identifier: 37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/9r1AtHurmYDXq0Or0RJ0yN-Tw4s.roa
Signing time: Sat 01 Jan 2022 15:04:00 +0000
ROA not before: Sat 01 Jan 2022 15:04:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 702
IP address blocks: 145.32.0.0/16 maxlen: 16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116965862 (0x6f8c1e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=37915673b28bdfadb2c2019ac68d0464fd21b71a
Validity
Not Before: Jan 1 15:04:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6bd40b47bab9980d7ab43abd11274c8df93c38b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:67:f2:28:42:52:a4:8d:35:a0:41:5d:cf:c9:
a0:b6:60:0b:e8:2f:b9:94:14:16:b6:20:15:2f:71:
14:5f:ea:37:56:8e:42:11:74:3d:cc:4a:9e:52:f8:
94:c7:c2:10:e1:d1:86:cf:46:54:4b:c5:54:6d:a6:
e7:dc:89:52:88:51:5a:5e:8b:78:23:72:4b:5d:91:
f0:0d:1c:cc:44:7c:3f:96:c7:86:ae:f0:5d:28:96:
1e:a1:51:8f:0d:16:7e:d2:9e:3d:04:04:ca:8a:c4:
67:43:12:7e:54:31:e8:7b:12:24:12:9f:66:63:cc:
1c:80:fb:84:88:3d:d3:6e:e0:96:fb:f7:42:40:43:
7a:27:bb:cd:35:54:9d:5a:25:5a:7d:c4:98:4b:23:
2d:93:7d:28:60:39:a5:58:10:79:07:5c:88:94:ec:
a9:c9:b6:d9:d0:db:06:b9:f7:fb:96:b5:4f:48:14:
cf:cc:6a:1a:fa:e2:ec:f7:fd:35:b4:dc:32:0e:e0:
10:cf:a0:8a:7d:dd:b7:f5:d5:00:7b:76:2d:d0:aa:
30:a8:9d:36:c1:41:74:c6:a9:b6:22:72:39:15:4b:
cc:11:eb:9c:f3:94:a5:e8:f0:74:a9:64:de:79:da:
54:19:ba:91:bf:d2:40:d3:71:63:6b:2f:0f:9e:25:
65:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:BD:40:B4:7B:AB:99:80:D7:AB:43:AB:D1:12:74:C8:DF:93:C3:8B
X509v3 Authority Key Identifier:
keyid:37:91:56:73:B2:8B:DF:AD:B2:C2:01:9A:C6:8D:04:64:FD:21:B7:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5FWc7KL362ywgGaxo0EZP0htxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/9r1AtHurmYDXq0Or0RJ0yN-Tw4s.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/4ea4f7-d70e-42a2-afd7-3e3a188f49de/1/N5FWc7KL362ywgGaxo0EZP0htxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
145.32.0.0/16
Signature Algorithm: sha256WithRSAEncryption
3e:42:e4:a2:37:a2:b2:cb:c7:10:61:b0:39:a1:71:29:37:0e:
58:ae:ed:6f:fa:f1:8d:27:5a:41:19:3d:d7:c8:11:9e:d5:f2:
90:a7:8a:2f:e1:87:5b:a7:32:a2:6b:bf:eb:e7:98:d6:a6:ce:
76:b5:ee:ea:71:66:d5:6a:3c:63:23:53:42:76:80:7f:29:0f:
10:2b:0b:66:a5:c5:48:95:05:b3:04:c1:39:fc:e0:27:5a:58:
8c:cb:3a:e8:07:f7:38:b7:34:9d:b8:63:9e:5f:7a:ee:4d:15:
48:0c:1f:37:98:d0:02:b8:c0:93:86:42:98:40:a8:8d:8e:0d:
1c:f7:2d:08:51:3f:32:41:80:cd:7f:f9:32:2d:bb:8d:17:10:
88:c5:03:bb:6c:37:4d:b2:a8:d5:13:4f:8a:02:bd:f5:21:27:
13:85:f3:50:41:94:f2:43:62:cd:31:aa:ad:2c:e7:8b:85:cb:
b7:f1:23:e7:ce:2a:3c:a6:9c:b7:f4:4a:5e:fd:35:9f:d9:a9:
cf:10:cc:71:cc:f9:e9:64:58:cf:c9:62:38:4e:d3:e6:e7:65:
74:c1:71:41:af:e0:cb:d5:da:9e:d6:8e:14:3c:76:79:5b:47:
1b:30:97:43:8d:5e:9f:30:28:77:e6:5c:74:17:19:ed:b5:16:
c9:6a:46:a0
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIEBvjB5jANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
NzkxNTY3M2IyOGJkZmFkYjJjMjAxOWFjNjhkMDQ2NGZkMjFiNzFhMB4XDTIyMDEw
MTE1MDQwMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjZiZDQwYjQ3YmFi
OTk4MGQ3YWI0M2FiZDExMjc0YzhkZjkzYzM4YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKhn8ihCUqSNNaBBXc/JoLZgC+gvuZQUFrYgFS9xFF/qN1aO
QhF0PcxKnlL4lMfCEOHRhs9GVEvFVG2m59yJUohRWl6LeCNyS12R8A0czER8P5bH
hq7wXSiWHqFRjw0WftKePQQEyorEZ0MSflQx6HsSJBKfZmPMHID7hIg9027glvv3
QkBDeie7zTVUnVolWn3EmEsjLZN9KGA5pVgQeQdciJTsqcm22dDbBrn3+5a1T0gU
z8xqGvri7Pf9NbTcMg7gEM+gin3dt/XVAHt2LdCqMKidNsFBdMaptiJyORVLzBHr
nPOUpejwdKlk3nnaVBm6kb/SQNNxY2svD54lZWECAwEAAaOCAggwggIEMB0GA1Ud
DgQWBBT2vUC0e6uZgNerQ6vREnTI35PDizAfBgNVHSMEGDAWgBQ3kVZzsovfrbLC
AZrGjQRk/SG3GjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L041RldjN0tMMzYyeXdnR2F4bzBFWlAwaHR4by5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWUvNGVhNGY3LWQ3MGUtNDJhMi1hZmQ3LTNlM2ExODhmNDlkZS8x
LzlyMUF0SHVybVlEWHEwT3IwUkoweU4tVHc0cy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUv
NGVhNGY3LWQ3MGUtNDJhMi1hZmQ3LTNlM2ExODhmNDlkZS8xL041RldjN0tMMzYy
eXdnR2F4bzBFWlAwaHR4by5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAe
BggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAJEgMA0GCSqGSIb3DQEBCwUAA4IB
AQA+QuSiN6Kyy8cQYbA5oXEpNw5Yru1v+vGNJ1pBGT3XyBGe1fKQp4ov4YdbpzKi
a7/r55jWps52te7qcWbVajxjI1NCdoB/KQ8QKwtmpcVIlQWzBME5/OAnWliMyzro
B/c4tzSduGOeX3ruTRVIDB83mNACuMCThkKYQKiNjg0c9y0IUT8yQYDNf/kyLbuN
FxCIxQO7bDdNsqjVE0+KAr31IScThfNQQZTyQ2LNMaqtLOeLhcu38SPnzio8ppy3
9Epe/TWf2anPEMxxzPnpZFjPyWI4TtPm52V0wXFBr+DL1dqe1o4UPHZ5W0cbMJdD
jV6fMCh35lx0FxnttRbJakag
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:02 2024 by rpki-client on console-fra.rpki-client.org