Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/wvOZ6uv589fpM1XfVaWZ6oNbJ9A.roa
File: wvOZ6uv589fpM1XfVaWZ6oNbJ9A.roa (raw, json)
Hash identifier: FFkJOG9WQ6LS6GlHOlpiPJK2i8qAMHpEaQwqqAgYy3Y=
Subject key identifier: C2:F3:99:EA:EB:F9:F3:D7:E9:33:55:DF:55:A5:99:EA:83:5B:27:D0
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 19EB7F99
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/wvOZ6uv589fpM1XfVaWZ6oNbJ9A.roa
Signing time: Sat 01 Jan 2022 15:56:52 +0000
ROA not before: Sat 01 Jan 2022 15:56:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 206150
IP address blocks: 45.130.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 434864025 (0x19eb7f99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: Jan 1 15:56:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c2f399eaebf9f3d7e93355df55a599ea835b27d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cb:28:c0:51:a3:c5:93:b0:1a:86:e6:65:8d:
42:23:3e:bb:c3:60:43:e3:a2:ca:ff:ec:35:30:92:
6f:ec:a0:b1:63:52:0c:d5:db:d1:bd:fd:cd:63:f3:
c7:56:3a:39:65:bf:f3:f6:00:8a:69:8f:6e:96:5c:
83:06:e9:c7:58:e0:69:de:70:1a:b3:5e:d5:fa:2b:
32:69:9a:af:a5:c6:a3:93:79:a4:0b:16:b7:a9:6c:
ef:39:f2:86:24:13:ce:37:79:56:86:5b:d7:00:5d:
3f:a1:53:c7:2a:9c:da:f9:3a:b8:9e:5b:92:ce:e6:
7c:89:05:25:5b:f3:a1:f4:11:8f:9c:37:eb:68:a1:
be:80:10:86:1c:ff:71:a9:96:99:bc:9e:ed:2c:d4:
51:10:16:55:57:b9:46:e9:72:9c:2f:44:17:01:0b:
20:4b:4d:5c:88:05:78:43:b8:a9:d0:3d:32:b3:5f:
e9:1e:41:e3:10:8d:55:08:9f:32:eb:81:e0:ff:ca:
52:ff:b3:6e:1c:f1:2b:dc:30:65:97:b4:67:82:ac:
5e:33:03:2d:ac:a2:da:09:6f:e0:1d:e3:ca:2a:cc:
79:03:f8:25:20:2a:41:24:5d:98:8a:90:ac:e1:ff:
78:f1:ca:ab:e0:b6:d3:2a:82:8c:2e:12:06:8a:0a:
95:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:F3:99:EA:EB:F9:F3:D7:E9:33:55:DF:55:A5:99:EA:83:5B:27:D0
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/wvOZ6uv589fpM1XfVaWZ6oNbJ9A.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.130.140.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:57:48:e5:16:d7:fc:fd:0c:57:32:dc:0e:de:c1:15:19:81:
8c:40:07:c7:da:14:8a:b2:4a:a1:03:8d:bc:5e:e0:13:41:2c:
f5:66:08:0b:66:e7:d2:e1:e8:52:81:b8:e5:74:59:00:dc:52:
13:06:57:c6:24:4c:71:42:71:34:59:72:9a:a1:81:65:ef:7e:
f2:2e:b0:95:81:1f:0d:b0:b3:9d:1b:3e:df:e2:9f:66:5c:15:
0b:a5:22:64:37:01:1b:5a:b7:1d:f1:68:ec:6e:6c:db:1b:0d:
a3:30:7f:8e:e9:ab:89:2d:71:da:60:10:3b:26:22:2d:58:f9:
07:aa:1b:1d:0b:e9:79:cb:35:07:95:9c:76:46:74:7c:78:ad:
12:c7:e3:39:22:e9:41:68:0e:98:c8:15:11:40:2d:63:81:5c:
b4:03:a6:f6:55:97:51:cc:a3:c1:aa:c1:fd:3e:eb:ac:69:32:
1a:85:e0:8a:36:63:3b:29:3f:5c:e6:23:b7:41:21:21:10:41:
13:70:dc:a4:59:b5:a1:02:96:d3:5f:e4:ec:c1:d5:87:5b:3f:
03:0d:de:ad:56:0d:5a:6a:fa:0c:a0:1a:ca:d5:d1:9f:a9:1e:
74:47:55:aa:a2:12:8c:12:6b:51:85:f4:b3:60:72:d9:11:44:
77:65:8d:18
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGet/mTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTU1MDA5YzNkZTQyMWNjNGU2N2I5YTlhZTQyM2JiMzVkZTBiOTI2MB4XDTIyMDEw
MTE1NTY1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzJmMzk5ZWFlYmY5
ZjNkN2U5MzM1NWRmNTVhNTk5ZWE4MzViMjdkMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK3LKMBRo8WTsBqG5mWNQiM+u8NgQ+Oiyv/sNTCSb+ygsWNS
DNXb0b39zWPzx1Y6OWW/8/YAimmPbpZcgwbpx1jgad5wGrNe1forMmmar6XGo5N5
pAsWt6ls7znyhiQTzjd5VoZb1wBdP6FTxyqc2vk6uJ5bks7mfIkFJVvzofQRj5w3
62ihvoAQhhz/camWmbye7SzUURAWVVe5RulynC9EFwELIEtNXIgFeEO4qdA9MrNf
6R5B4xCNVQifMuuB4P/KUv+zbhzxK9wwZZe0Z4KsXjMDLayi2glv4B3jyirMeQP4
JSAqQSRdmIqQrOH/ePHKq+C20yqCjC4SBooKlZ0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTC85nq6/nz1+kzVd9VpZnqg1sn0DAfBgNVHSMEGDAWgBSxVQCcPeQhzE5n
uamuQjuzXeC5JjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NWVUFuRDNrSWN4T1o3bXBya0k3czEzZ3VTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8x
L3d2T1o2dXY1ODlmcE0xWGZWYVdaNm9OYko5QS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
ZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8xL3NWVUFuRDNrSWN4
T1o3bXBya0k3czEzZ3VTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2CjDANBgkqhkiG9w0BAQsFAAOC
AQEAT1dI5RbX/P0MVzLcDt7BFRmBjEAHx9oUirJKoQONvF7gE0Es9WYIC2bn0uHo
UoG45XRZANxSEwZXxiRMcUJxNFlymqGBZe9+8i6wlYEfDbCznRs+3+KfZlwVC6Ui
ZDcBG1q3HfFo7G5s2xsNozB/jumriS1x2mAQOyYiLVj5B6obHQvpecs1B5WcdkZ0
fHitEsfjOSLpQWgOmMgVEUAtY4FctAOm9lWXUcyjwarB/T7rrGkyGoXgijZjOyk/
XOYjt0EhIRBBE3DcpFm1oQKW01/k7MHVh1s/Aw3erVYNWmr6DKAaytXRn6kedEdV
qqISjBJrUYX0s2By2RFEd2WNGA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:33 2023 by rpki-client on console-fra.rpki-client.org