Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Oib6BaQjyiRV280l7cP8isqCxyE.roa
File: Oib6BaQjyiRV280l7cP8isqCxyE.roa (raw, json)
Hash identifier: 27LqlRGvLj+v2k+Xw7BewtsEDNA7eLQWhNjtte/PwuM=
Subject key identifier: 3A:26:FA:05:A4:23:CA:24:55:DB:CD:25:ED:C3:FC:8A:CA:82:C7:21
Certificate issuer: /CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Certificate serial: 02A0C05F
Authority key identifier: 7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Oib6BaQjyiRV280l7cP8isqCxyE.roa
Signing time: Thu 23 Jun 2022 09:03:24 +0000
ROA not before: Thu 23 Jun 2022 09:03:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 11325
IP address blocks: 45.85.108.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44089439 (0x2a0c05f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca643bb399c6d87adc4c7cba5d2b72fbd00d046
Validity
Not Before: Jun 23 09:03:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3a26fa05a423ca2455dbcd25edc3fc8aca82c721
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3b:cf:f5:9f:cd:1d:a8:0b:dd:f4:4a:0f:46:
4f:ad:74:1d:65:88:dd:3d:1a:79:42:a4:35:f3:5f:
78:b6:f4:1e:a4:41:54:bf:be:a2:3e:7c:a6:5b:58:
bb:12:69:d0:d7:3c:48:b7:50:0d:18:b3:76:15:d6:
a5:7c:1c:e4:82:94:4f:e6:25:0b:e3:3a:aa:cc:bb:
1e:64:66:7f:62:82:bb:9d:e0:86:6a:fd:fd:5f:16:
ce:c3:9c:7e:6c:8a:2c:92:ad:bf:13:83:59:0a:a1:
ae:27:89:e3:02:8b:9f:12:a4:c9:cd:06:b1:2b:07:
08:fe:c5:0e:b9:44:f2:5a:d4:e8:57:aa:73:2b:90:
93:03:67:b1:ea:6a:85:62:95:df:bb:c6:bc:cc:9d:
e9:12:bc:3f:2b:fb:db:f4:97:f3:3e:c3:98:8c:fc:
52:6a:dc:2f:13:5c:f6:4b:1b:59:ec:0b:02:bd:b0:
a0:36:da:de:14:b7:84:72:18:95:a9:85:85:e5:ed:
3c:34:d0:bb:88:07:ea:ae:01:99:91:1b:77:eb:71:
05:b8:80:55:c0:d2:f2:53:07:5c:39:51:37:8f:ba:
38:09:97:05:82:6b:15:db:73:f9:60:d4:50:5f:31:
40:ca:4e:64:2e:36:5c:da:23:89:bc:07:fc:c7:62:
63:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:26:FA:05:A4:23:CA:24:55:DB:CD:25:ED:C3:FC:8A:CA:82:C7:21
X509v3 Authority Key Identifier:
keyid:7C:A6:43:BB:39:9C:6D:87:AD:C4:C7:CB:A5:D2:B7:2F:BD:00:D0:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKZDuzmcbYetxMfLpdK3L70A0EY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/Oib6BaQjyiRV280l7cP8isqCxyE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/c0301d-5801-4ac6-b503-44ea64721c9e/1/fKZDuzmcbYetxMfLpdK3L70A0EY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.108.0/22
Signature Algorithm: sha256WithRSAEncryption
1e:e7:a1:71:02:98:61:1b:e7:88:d7:90:7f:49:8b:33:af:71:
ff:f6:20:2b:83:2b:0f:d1:46:54:f5:c4:aa:2f:c0:44:ec:92:
38:38:cc:8e:af:6e:fc:bb:29:9e:e2:2f:da:db:5a:9b:ea:4e:
07:d8:b7:44:58:42:7a:b7:81:5f:a1:2e:b3:a5:44:7e:83:34:
00:c5:14:1e:ee:14:94:7c:d3:68:ce:c5:63:32:f3:dd:a2:ec:
07:2f:36:8a:b1:5f:92:35:1a:35:60:c2:84:39:ea:26:1e:a5:
f5:6d:86:77:88:00:27:39:f9:18:f8:bf:54:62:87:e7:77:fa:
a5:f5:bf:12:7d:8b:2b:a4:46:a5:d7:93:5b:49:a8:e7:ce:18:
3f:c5:38:04:2a:52:45:e5:bd:96:0c:7b:cb:0a:a8:62:7d:46:
d1:d5:a4:14:a5:1a:a2:30:6b:a0:d4:c2:c4:b7:bd:ee:17:24:
34:a3:77:65:b2:b9:59:16:09:98:fb:e0:7c:1f:57:9c:db:07:
e5:4b:cd:1c:f9:15:ab:2e:d6:b6:dc:0a:cf:a7:42:0f:37:bc:
62:41:49:f3:39:f8:5d:4e:8f:67:5f:21:75:a7:c8:e9:f6:78:
5d:23:b5:57:81:48:63:56:fe:24:ef:2c:bc:c8:93:18:e4:6b:
92:8a:9d:59
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAqDAXzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3
Y2E2NDNiYjM5OWM2ZDg3YWRjNGM3Y2JhNWQyYjcyZmJkMDBkMDQ2MB4XDTIyMDYy
MzA5MDMyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoM2EyNmZhMDVhNDIz
Y2EyNDU1ZGJjZDI1ZWRjM2ZjOGFjYTgyYzcyMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJ87z/WfzR2oC930Sg9GT610HWWI3T0aeUKkNfNfeLb0HqRB
VL++oj58pltYuxJp0Nc8SLdQDRizdhXWpXwc5IKUT+YlC+M6qsy7HmRmf2KCu53g
hmr9/V8WzsOcfmyKLJKtvxODWQqhrieJ4wKLnxKkyc0GsSsHCP7FDrlE8lrU6Feq
cyuQkwNnsepqhWKV37vGvMyd6RK8Pyv72/SX8z7DmIz8UmrcLxNc9ksbWewLAr2w
oDba3hS3hHIYlamFheXtPDTQu4gH6q4BmZEbd+txBbiAVcDS8lMHXDlRN4+6OAmX
BYJrFdtz+WDUUF8xQMpOZC42XNojibwH/MdiY10CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQ6JvoFpCPKJFXbzSXtw/yKyoLHITAfBgNVHSMEGDAWgBR8pkO7OZxth63E
x8ul0rcvvQDQRjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2ZLWkR1em1jYllldHhNZkxwZEszTDcwQTBFWS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTYvYzAzMDFkLTU4MDEtNGFjNi1iNTAzLTQ0ZWE2NDcyMWM5ZS8x
L09pYjZCYVFqeWlSVjI4MGw3Y1A4aXNxQ3h5RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYv
YzAzMDFkLTU4MDEtNGFjNi1iNTAzLTQ0ZWE2NDcyMWM5ZS8xL2ZLWkR1em1jYlll
dHhNZkxwZEszTDcwQTBFWS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1VbDANBgkqhkiG9w0BAQsFAAOC
AQEAHuehcQKYYRvniNeQf0mLM69x//YgK4MrD9FGVPXEqi/AROySODjMjq9u/Lsp
nuIv2ttam+pOB9i3RFhCereBX6Eus6VEfoM0AMUUHu4UlHzTaM7FYzLz3aLsBy82
irFfkjUaNWDChDnqJh6l9W2Gd4gAJzn5GPi/VGKH53f6pfW/En2LK6RGpdeTW0mo
584YP8U4BCpSReW9lgx7ywqoYn1G0dWkFKUaojBroNTCxLe97hckNKN3ZbK5WRYJ
mPvgfB9XnNsH5UvNHPkVqy7WttwKz6dCDze8YkFJ8zn4XU6PZ18hdafI6fZ4XSO1
V4FIY1b+JO8svMiTGORrkoqdWQ==
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:19:04 2025 by rpki-client