Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yDetsEADXQpp-skTLI1e1wgiGps.roa
File: yDetsEADXQpp-skTLI1e1wgiGps.roa (raw, json)
Hash identifier: UUKP1BGHCrQeIGXv93YvlzXJU4e7IWXyWyrz7G+OjH0=
Subject key identifier: C8:37:AD:B0:40:03:5D:0A:69:FA:C9:13:2C:8D:5E:D7:08:22:1A:9B
Certificate issuer: /CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Certificate serial: 1B76ED70
Authority key identifier: B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yDetsEADXQpp-skTLI1e1wgiGps.roa
Signing time: Tue 24 May 2022 17:54:13 +0000
ROA not before: Tue 24 May 2022 17:54:13 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 23470
IP address blocks: 45.138.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 460778864 (0x1b76ed70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b155009c3de421cc4e67b9a9ae423bb35de0b926
Validity
Not Before: May 24 17:54:13 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c837adb040035d0a69fac9132c8d5ed708221a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:1f:10:67:99:42:d7:d7:af:35:2f:c1:6b:42:
07:81:cd:cb:98:d7:0a:cd:56:b8:83:61:e7:cb:f1:
fd:40:bc:97:17:e8:2a:fa:b1:b3:ec:2e:93:96:11:
b1:98:36:ab:6d:86:bb:ea:7f:ef:c6:f1:61:a2:fe:
9c:3c:71:58:c4:a1:20:59:64:e3:fa:e2:c8:16:40:
98:0a:e6:9c:54:9e:25:7a:f7:d8:7f:8d:ff:d6:88:
c6:d2:c0:45:fa:c5:5e:89:a7:ae:03:a5:ca:3b:b7:
9a:48:f7:00:0a:46:78:e7:f9:2e:de:c2:47:8d:ef:
d1:98:46:c9:73:0e:0a:5c:c9:22:58:9d:7e:93:ff:
fa:59:d3:b7:f5:af:f4:66:5c:bb:4a:9f:2a:36:dc:
23:db:7f:92:ac:6a:17:7f:3c:03:71:e7:b4:a4:bd:
04:d4:14:e9:1e:97:d4:e6:16:fa:38:13:71:42:f0:
ee:2e:d6:88:da:b9:76:c2:a6:62:30:95:bc:2c:5f:
36:44:9f:0e:11:ea:e7:7c:c0:54:46:05:7c:97:a5:
3f:95:11:80:9f:84:58:41:b3:b0:df:43:ac:10:5e:
59:8d:81:d1:2a:79:06:8f:c2:ce:18:24:c7:b4:30:
b9:7f:c8:92:84:04:31:b8:99:bb:00:7e:14:8f:82:
ff:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:37:AD:B0:40:03:5D:0A:69:FA:C9:13:2C:8D:5E:D7:08:22:1A:9B
X509v3 Authority Key Identifier:
keyid:B1:55:00:9C:3D:E4:21:CC:4E:67:B9:A9:AE:42:3B:B3:5D:E0:B9:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVUAnD3kIcxOZ7mprkI7s13guSY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/yDetsEADXQpp-skTLI1e1wgiGps.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/de902c-3d13-47d1-a5e6-73856af49f3e/1/sVUAnD3kIcxOZ7mprkI7s13guSY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.16.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:d1:c0:38:44:30:6a:82:27:5d:8d:6e:d1:7b:5a:8d:40:69:
cd:f7:5c:6c:48:d6:4b:a1:88:3c:3f:50:ca:6b:a0:b4:b0:9b:
28:42:2a:17:a3:ce:b5:d6:58:39:5b:93:ce:3d:5f:50:5c:95:
b3:8b:1f:ce:61:3d:b3:6c:41:2d:e0:e5:ea:39:58:d0:be:e7:
07:33:27:e8:90:1d:d2:f5:03:d3:f1:83:92:42:26:df:8b:4f:
df:d7:34:7b:f1:5a:5b:bb:1a:a9:c6:05:b9:8f:c7:e9:57:ec:
b0:3b:18:74:d8:84:26:b8:5d:61:d3:52:2a:1a:2d:3a:d3:4d:
f4:dc:df:9c:51:6f:85:90:d1:9f:58:82:cb:3f:bd:2e:35:6d:
a4:de:3b:62:09:f1:11:9d:8d:45:d6:11:7a:93:dd:39:6d:15:
5f:ca:64:db:8d:ea:33:e0:7f:31:bb:f2:5f:cb:09:fc:ff:3b:
ad:2b:18:94:10:7d:5a:f9:2f:3b:fa:86:8c:37:84:95:43:a1:
2d:68:15:b9:33:8d:a5:1d:e0:02:57:77:15:10:13:8b:be:df:
f4:8e:93:02:59:4c:2d:5a:cb:0d:c1:f7:1e:15:70:41:4b:b7:
fe:0f:e6:b2:e4:af:1a:1f:5e:c0:29:21:91:b1:a8:85:4b:71:
1b:49:b8:9c
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEG3btcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MTU1MDA5YzNkZTQyMWNjNGU2N2I5YTlhZTQyM2JiMzVkZTBiOTI2MB4XDTIyMDUy
NDE3NTQxM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzgzN2FkYjA0MDAz
NWQwYTY5ZmFjOTEzMmM4ZDVlZDcwODIyMWE5YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJAfEGeZQtfXrzUvwWtCB4HNy5jXCs1WuINh58vx/UC8lxfo
Kvqxs+wuk5YRsZg2q22Gu+p/78bxYaL+nDxxWMShIFlk4/riyBZAmArmnFSeJXr3
2H+N/9aIxtLARfrFXomnrgOlyju3mkj3AApGeOf5Lt7CR43v0ZhGyXMOClzJIlid
fpP/+lnTt/Wv9GZcu0qfKjbcI9t/kqxqF388A3HntKS9BNQU6R6X1OYW+jgTcULw
7i7WiNq5dsKmYjCVvCxfNkSfDhHq53zAVEYFfJelP5URgJ+EWEGzsN9DrBBeWY2B
0Sp5Bo/Czhgkx7QwuX/IkoQEMbiZuwB+FI+C/0kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTIN62wQANdCmn6yRMsjV7XCCIamzAfBgNVHSMEGDAWgBSxVQCcPeQhzE5n
uamuQjuzXeC5JjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3NWVUFuRDNrSWN4T1o3bXBya0k3czEzZ3VTWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTAvZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8x
L3lEZXRzRUFEWFFwcC1za1RMSTFlMXdnaUdwcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAv
ZGU5MDJjLTNkMTMtNDdkMS1hNWU2LTczODU2YWY0OWYzZS8xL3NWVUFuRDNrSWN4
T1o3bXBya0k3czEzZ3VTWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2KEDANBgkqhkiG9w0BAQsFAAOC
AQEADNHAOEQwaoInXY1u0XtajUBpzfdcbEjWS6GIPD9QymugtLCbKEIqF6POtdZY
OVuTzj1fUFyVs4sfzmE9s2xBLeDl6jlY0L7nBzMn6JAd0vUD0/GDkkIm34tP39c0
e/FaW7saqcYFuY/H6VfssDsYdNiEJrhdYdNSKhotOtNN9NzfnFFvhZDRn1iCyz+9
LjVtpN47YgnxEZ2NRdYRepPdOW0VX8pk243qM+B/MbvyX8sJ/P87rSsYlBB9Wvkv
O/qGjDeElUOhLWgVuTONpR3gAld3FRATi77f9I6TAllMLVrLDcH3HhVwQUu3/g/m
suSvGh9ewCkhkbGohUtxG0m4nA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:25 2023 by rpki-client on console-ams.rpki-client.org