Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/S68k2eYoDqiyhtEdFNrPqjUzycw.roa
File: S68k2eYoDqiyhtEdFNrPqjUzycw.roa (raw, json)
Hash identifier: BR5fXtOLWTjn6rGjeRUkimM/+qN0dE4efpVD/oROfJ4=
Subject key identifier: 4B:AF:24:D9:E6:28:0E:A8:B2:86:D1:1D:14:DA:CF:AA:35:33:C9:CC
Certificate issuer: /CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Certificate serial: 080690E9
Authority key identifier: BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/S68k2eYoDqiyhtEdFNrPqjUzycw.roa
Signing time: Sat 01 Jan 2022 06:58:26 +0000
ROA not before: Sat 01 Jan 2022 06:58:26 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 200019
IP address blocks: 45.67.229.0/24 maxlen: 24
2a09:7c46::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134648041 (0x80690e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bb830630f23b070a2b7bdf529f73948c97eacd40
Validity
Not Before: Jan 1 06:58:26 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=4baf24d9e6280ea8b286d11d14dacfaa3533c9cc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:13:9b:80:c5:1a:0b:ba:0d:ca:0e:81:4f:8a:
78:b3:dc:f3:9c:18:cf:90:56:7c:bb:64:ee:43:18:
d9:fe:2f:cc:ca:f6:c8:17:e0:36:7d:de:ab:41:6f:
bb:09:62:db:63:eb:1b:85:21:25:a5:a6:e7:b6:45:
67:40:d8:77:e4:5d:c9:70:05:99:0d:12:6c:1b:7f:
eb:81:07:db:b5:35:b4:57:ec:a6:f5:1c:3e:03:eb:
9e:4f:72:f4:91:31:c6:7a:f7:5e:63:92:5c:2a:60:
2c:54:e1:9d:c7:e8:d6:a7:b9:1a:30:12:58:e8:eb:
98:ac:91:1c:06:58:a6:60:1d:2c:fc:3c:66:0c:75:
24:f7:a1:f5:fb:5e:5d:c9:e2:7f:4a:05:84:ac:32:
0e:10:bd:f2:59:15:9f:9d:68:ec:9e:8c:04:f9:e5:
4a:ea:86:5b:93:2d:02:f2:76:f4:e9:e7:b2:75:f2:
54:2a:6c:d9:89:89:1a:92:9d:f5:c4:9c:ca:d1:95:
94:b8:76:22:c0:0c:e8:3e:9b:83:70:95:d8:41:b8:
0d:16:68:20:45:d7:1b:a3:26:21:f4:8d:13:34:1f:
bf:39:48:7b:cc:93:44:eb:9b:57:6e:b8:41:92:ac:
c7:96:b2:09:a1:e0:29:a7:5e:8f:73:16:1d:9d:40:
dc:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:AF:24:D9:E6:28:0E:A8:B2:86:D1:1D:14:DA:CF:AA:35:33:C9:CC
X509v3 Authority Key Identifier:
keyid:BB:83:06:30:F2:3B:07:0A:2B:7B:DF:52:9F:73:94:8C:97:EA:CD:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u4MGMPI7Bwore99Sn3OUjJfqzUA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/S68k2eYoDqiyhtEdFNrPqjUzycw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/f76e20-5859-415d-86b3-119efcbb2023/1/u4MGMPI7Bwore99Sn3OUjJfqzUA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.229.0/24
IPv6:
2a09:7c46::/32
Signature Algorithm: sha256WithRSAEncryption
17:2d:62:f6:e7:90:09:b7:b6:db:75:bc:c6:17:24:90:e8:8e:
43:a0:7a:28:82:91:67:10:e5:81:5f:d7:26:ed:f3:36:f9:d9:
d1:dc:57:d7:c5:8c:0b:c1:c4:bb:af:af:0f:6e:14:22:6d:85:
0c:1a:c6:a5:44:08:a0:63:b1:93:ee:b1:06:2b:f2:13:74:14:
1f:75:00:56:ad:74:77:21:4a:a7:50:39:af:e7:4f:65:c4:49:
7c:b2:0c:29:09:3a:d3:e7:26:d0:b9:50:b3:8b:03:3a:5a:50:
b2:95:dd:04:81:ea:02:83:4e:52:80:ed:26:93:f3:80:e3:df:
18:88:91:e6:98:2b:14:83:50:1b:1f:6b:85:14:b3:76:1b:ca:
1a:f8:6b:bd:4f:55:69:7c:13:0d:3e:71:ec:ed:0c:da:26:99:
0a:3b:50:68:cc:b6:17:a9:12:50:78:f8:e4:ef:a0:b7:e5:ab:
fe:b3:91:80:c3:d4:b6:2b:c2:e3:f0:33:89:77:36:dc:7d:f1:
58:0c:8d:b2:81:99:24:d4:c8:87:f0:dd:cb:3e:ef:e9:c1:ce:
08:cd:ce:19:58:63:38:3c:13:fe:bb:41:8a:70:7a:de:17:ce:
a4:45:9b:6f:f2:9a:05:34:d5:93:d4:b4:10:86:3b:08:6f:aa:
3e:7b:99:af
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIECAaQ6TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
YjgzMDYzMGYyM2IwNzBhMmI3YmRmNTI5ZjczOTQ4Yzk3ZWFjZDQwMB4XDTIyMDEw
MTA2NTgyNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNGJhZjI0ZDllNjI4
MGVhOGIyODZkMTFkMTRkYWNmYWEzNTMzYzljYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN0Tm4DFGgu6DcoOgU+KeLPc85wYz5BWfLtk7kMY2f4vzMr2
yBfgNn3eq0Fvuwli22PrG4UhJaWm57ZFZ0DYd+RdyXAFmQ0SbBt/64EH27U1tFfs
pvUcPgPrnk9y9JExxnr3XmOSXCpgLFThncfo1qe5GjASWOjrmKyRHAZYpmAdLPw8
Zgx1JPeh9fteXcnif0oFhKwyDhC98lkVn51o7J6MBPnlSuqGW5MtAvJ29OnnsnXy
VCps2YmJGpKd9cScytGVlLh2IsAM6D6bg3CV2EG4DRZoIEXXG6MmIfSNEzQfvzlI
e8yTROubV264QZKsx5ayCaHgKadej3MWHZ1A3G0CAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBRLryTZ5igOqLKG0R0U2s+qNTPJzDAfBgNVHSMEGDAWgBS7gwYw8jsHCit7
31Kfc5SMl+rNQDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3U0TUdNUEk3QndvcmU5OVNuM09VakpmcXpVQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvOWUvZjc2ZTIwLTU4NTktNDE1ZC04NmIzLTExOWVmY2JiMjAyMy8x
L1M2OGsyZVlvRHFpeWh0RWRGTnJQcWpVenljdy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWUv
Zjc2ZTIwLTU4NTktNDE1ZC04NmIzLTExOWVmY2JiMjAyMy8xL3U0TUdNUEk3Qndv
cmU5OVNuM09VakpmcXpVQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAC1D5TANBAIAAjAHAwUAKgl8RjAN
BgkqhkiG9w0BAQsFAAOCAQEAFy1i9ueQCbe223W8xhckkOiOQ6B6KIKRZxDlgV/X
Ju3zNvnZ0dxX18WMC8HEu6+vD24UIm2FDBrGpUQIoGOxk+6xBivyE3QUH3UAVq10
dyFKp1A5r+dPZcRJfLIMKQk60+cm0LlQs4sDOlpQspXdBIHqAoNOUoDtJpPzgOPf
GIiR5pgrFINQGx9rhRSzdhvKGvhrvU9VaXwTDT5x7O0M2iaZCjtQaMy2F6kSUHj4
5O+gt+Wr/rORgMPUtivC4/AziXc23H3xWAyNsoGZJNTIh/Ddyz7v6cHOCM3OGVhj
ODwT/rtBinB63hfOpEWbb/KaBTTVk9S0EIY7CG+qPnuZrw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:41:06 2024 by rpki-client on console-fra.rpki-client.org