Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4xy9nJ-e5GDSQnSc4HFDlvv3_js.roa
File: 4xy9nJ-e5GDSQnSc4HFDlvv3_js.roa (raw, json)
Hash identifier: UljAADmBiiaezExXAXOKLx8z0bVJYx4RW4QTe4injNY=
Subject key identifier: E3:1C:BD:9C:9F:9E:E4:60:D2:42:74:9C:E0:71:43:96:FB:F7:FE:3B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19DD7D1A
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4xy9nJ-e5GDSQnSc4HFDlvv3_js.roa
Signing time: Sat 01 Jan 2022 15:56:45 +0000
ROA not before: Sat 01 Jan 2022 15:56:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 49321
IP address blocks: 45.149.2.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 433945882 (0x19dd7d1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e31cbd9c9f9ee460d242749ce0714396fbf7fe3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:4a:b2:0a:c4:d6:d0:de:b2:da:be:f2:b5:85:
65:a6:c2:63:37:93:18:f4:bd:41:88:67:a2:4f:a4:
a1:eb:c8:bb:9e:a1:47:90:d6:7e:35:39:04:dd:72:
7e:7f:d4:f1:a6:a6:5e:30:3b:86:ab:b8:cc:a3:cc:
17:1f:e6:9e:a2:a3:cf:aa:8d:bb:25:c6:3c:1c:2e:
15:99:1e:15:92:15:17:c0:ac:cb:9c:3b:6f:55:d2:
4e:1d:78:ab:a4:00:66:2f:10:4a:7c:94:c9:da:f6:
8b:ba:3d:30:84:b4:0a:ba:d5:e8:85:3d:39:aa:34:
24:e3:a6:2f:bb:b7:0a:6c:54:18:2d:6a:59:b2:70:
89:52:dd:b3:8d:81:5f:fc:91:2c:18:db:19:85:7d:
c6:70:15:d3:d8:d0:02:23:26:a8:c0:95:a6:36:5d:
3d:2c:d2:02:52:08:ea:95:2f:e4:eb:f4:10:fe:fc:
2d:98:fe:80:0c:7a:41:df:f5:01:f9:72:fb:5a:5d:
cc:63:75:98:95:20:bc:ea:bc:23:f4:29:40:f4:b1:
90:64:c9:fb:41:8d:60:c4:c9:b0:66:71:34:94:fc:
68:99:a0:5c:04:6a:5f:8c:9a:dd:fd:2e:72:9d:23:
e2:d2:7c:4d:f9:06:b1:fc:f3:fe:4f:d1:77:04:73:
e0:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:1C:BD:9C:9F:9E:E4:60:D2:42:74:9C:E0:71:43:96:FB:F7:FE:3B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/4xy9nJ-e5GDSQnSc4HFDlvv3_js.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.2.0/24
Signature Algorithm: sha256WithRSAEncryption
80:ee:75:9b:9e:07:ff:51:df:40:89:bf:53:23:c6:d2:ff:aa:
f4:c8:7d:7f:c5:6b:33:3c:7a:5e:43:76:f4:19:5e:09:ad:19:
f9:0e:c3:d6:43:b9:6c:d1:16:40:00:fa:0d:61:f9:1a:31:f4:
51:8b:eb:72:0a:14:ab:49:40:bb:69:24:fb:84:aa:82:13:ef:
7f:b2:8d:32:9a:98:60:0b:1a:0d:64:24:92:61:63:78:ab:12:
73:8a:37:96:46:32:d1:27:de:8f:22:be:b2:54:01:c1:23:a4:
ec:23:81:a3:44:4b:bc:ed:3b:f4:eb:e0:74:49:30:2c:1b:9d:
c0:64:59:ed:b8:d4:a9:46:3d:c1:e0:41:64:a0:70:7e:00:e7:
52:c0:b8:b1:3d:0b:05:1e:63:60:c9:c0:98:2d:cd:c3:27:3a:
ee:b1:7f:ac:37:b1:94:1e:d6:29:6c:8f:94:8d:51:51:cc:51:
b7:49:1c:ae:c5:78:c7:1f:23:81:64:57:3f:48:b1:06:f4:64:
fd:4b:c7:c6:70:a8:d6:8e:5c:95:03:04:48:9b:74:05:7a:27:
d6:fa:2a:87:21:80:44:18:e6:c1:f7:54:3f:55:f4:68:58:da:
c6:84:0c:2a:a6:00:a1:a6:43:dc:e3:d3:2c:a5:cd:8b:f8:66:
2d:66:85:3b
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGd19GjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTU1MDA5YzNkZTQyMWNjNGU2N2I5YTlhZTQyM2JiMzVkZTBiOTI2MB4XDTIyMDEw
MTE1NTY0NVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTMxY2JkOWM5Zjll
ZTQ2MGQyNDI3NDljZTA3MTQzOTZmYmY3ZmUzYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALpKsgrE1tDestq+8rWFZabCYzeTGPS9QYhnok+koevIu56h
R5DWfjU5BN1yfn/U8aamXjA7hqu4zKPMFx/mnqKjz6qNuyXGPBwuFZkeFZIVF8Cs
y5w7b1XSTh14q6QAZi8QSnyUydr2i7o9MIS0CrrV6IU9Oao0JOOmL7u3CmxUGC1q
WbJwiVLds42BX/yRLBjbGYV9xnAV09jQAiMmqMCVpjZdPSzSAlII6pUv5Ov0EP78
LZj+gAx6Qd/1Afly+1pdzGN1mJUgvOq8I/QpQPSxkGTJ+0GNYMTJsGZxNJT8aJmg
XARqX4ya3f0ucp0j4tJ8TfkGsfzz/k/RdwRz4K0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTjHL2cn57kYNJCdJzgcUOW+/f+OzAfBgNVHSMEGDAWgBSxVQCcPeQhzE5n
uamuQjuzXeC5JjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NWVUFuRDNrSWN4T1o3bXBya0k3czEzZ3VTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8x
LzR4eTluSi1lNUdEU1FuU2M0SEZEbHZ2M19qcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
ZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8xL3NWVUFuRDNrSWN4
T1o3bXBya0k3czEzZ3VTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2VAjANBgkqhkiG9w0BAQsFAAOC
AQEAgO51m54H/1HfQIm/UyPG0v+q9Mh9f8VrMzx6XkN29BleCa0Z+Q7D1kO5bNEW
QAD6DWH5GjH0UYvrcgoUq0lAu2kk+4SqghPvf7KNMpqYYAsaDWQkkmFjeKsSc4o3
lkYy0SfejyK+slQBwSOk7COBo0RLvO079OvgdEkwLBudwGRZ7bjUqUY9weBBZKBw
fgDnUsC4sT0LBR5jYMnAmC3Nwyc67rF/rDexlB7WKWyPlI1RUcxRt0kcrsV4xx8j
gWRXP0ixBvRk/UvHxnCo1o5clQMESJt0BXon1voqhyGARBjmwfdUP1X0aFjaxoQM
KqYAoaZD3OPTLKXNi/hmLWaFOw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:24 2023 by rpki-client on console-ams.rpki-client.org