Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/jxVEY9rKfpx6IWHDJ86wsNzkyZc.roa
File: jxVEY9rKfpx6IWHDJ86wsNzkyZc.roa (raw, json)
Hash identifier: kzocruZ7R3A5FU3tRWMNa4AW+DFtsgVrMY+Zt15SpF4=
Subject key identifier: 8F:15:44:63:DA:CA:7E:9C:7A:21:61:C3:27:CE:B0:B0:DC:E4:C9:97
Certificate issuer: /CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Certificate serial: 018538B9AD2C652289BE19BD7685C8D3E1C6
Authority key identifier: 7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/jxVEY9rKfpx6IWHDJ86wsNzkyZc.roa
Signing time: Thu 22 Dec 2022 07:26:10 +0000
ROA not before: Thu 22 Dec 2022 07:26:10 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 135752
IP address blocks: 45.158.126.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:38:b9:ad:2c:65:22:89:be:19:bd:76:85:c8:d3:e1:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f515ead095eed9ac4cabc5ab4ad0b5867d9f01b
Validity
Not Before: Dec 22 07:26:10 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8f154463daca7e9c7a2161c327ceb0b0dce4c997
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:81:10:2c:4d:8b:29:b6:87:2a:91:3d:56:33:
5c:9c:15:1f:d7:d2:42:f1:f2:ee:16:91:75:e9:5e:
48:bc:25:e2:21:fe:5d:b4:f3:54:e2:c7:a6:f2:ac:
56:4a:f3:3a:4f:a8:b2:15:06:c7:34:d6:f5:f6:03:
b3:6a:44:98:0d:eb:5f:1b:e0:b7:23:b0:c8:ba:6d:
92:c3:29:eb:a2:6d:ad:0e:0f:74:e7:06:a5:da:bb:
9e:d5:f1:b2:a8:cd:cc:e8:92:20:e9:03:fa:09:5c:
f1:b1:cc:4f:9b:8d:76:f5:05:de:bc:02:9a:ec:a2:
7a:32:02:19:e8:68:eb:d6:bc:0a:d0:04:0f:ef:82:
78:08:27:e9:03:70:c9:1b:8e:f6:a4:31:9d:be:70:
4f:15:d1:b9:5a:b1:f9:13:d5:2f:6a:9b:13:b5:61:
bc:26:13:33:62:a1:29:c7:42:ca:08:93:9d:11:d4:
3c:ee:ba:64:5f:d7:05:d7:c8:f2:dc:82:07:07:30:
0b:5f:da:c0:b6:a2:07:09:72:6a:0f:de:d1:53:af:
a9:a5:07:4b:76:86:5b:10:3b:58:5c:3b:33:dc:9b:
c2:fa:50:de:d7:54:86:68:16:93:21:5d:ae:3d:90:
0c:77:9a:97:a9:c3:3c:2f:02:10:33:64:ac:db:7a:
39:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:15:44:63:DA:CA:7E:9C:7A:21:61:C3:27:CE:B0:B0:DC:E4:C9:97
X509v3 Authority Key Identifier:
keyid:7F:51:5E:AD:09:5E:ED:9A:C4:CA:BC:5A:B4:AD:0B:58:67:D9:F0:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1FerQle7ZrEyrxatK0LWGfZ8Bs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/jxVEY9rKfpx6IWHDJ86wsNzkyZc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/5c2a59-6025-400e-ab28-f0a624d40912/1/f1FerQle7ZrEyrxatK0LWGfZ8Bs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.158.126.0/24
Signature Algorithm: sha256WithRSAEncryption
06:33:3b:5f:71:00:d9:8d:1e:fb:ca:65:8f:99:53:4b:d6:b7:
d3:0e:f4:08:a4:fd:a7:df:a8:c1:f6:50:3c:8c:08:0c:80:77:
60:af:76:42:64:d1:99:c8:19:89:68:93:80:1f:39:a4:9d:4b:
56:03:2d:48:fa:2d:0b:45:3e:e9:ff:35:51:16:5e:a8:63:46:
ee:18:43:6b:72:25:9a:53:dd:1b:a2:b0:16:1d:ef:ba:cf:71:
94:73:d6:60:3a:13:5f:67:5c:0a:31:1c:1c:23:d1:43:ed:35:
da:d8:f8:55:68:c2:59:5e:1e:5b:79:2c:bf:19:ea:1c:99:4a:
dc:c9:14:6f:fa:c3:3e:65:5f:64:69:6c:ec:c5:10:b0:c8:e7:
59:90:de:15:be:8c:94:c2:d0:a3:9d:20:18:99:a2:4b:09:a6:
5a:3d:cc:b0:66:e4:9c:1f:53:a5:10:ba:cc:3c:d1:f6:ee:8a:
be:8f:39:80:9f:05:62:ce:94:df:84:3d:09:a5:8b:e9:fc:8f:
2d:1c:4e:29:50:ac:fd:93:63:92:66:aa:17:3e:bb:8c:99:b7:
be:5c:11:3d:31:aa:02:3a:25:bc:99:70:b8:ed:8b:74:9c:80:
9c:e7:fd:31:7a:29:4b:50:ae:a7:45:a1:82:2f:d4:b1:20:29:
b1:2c:f6:30
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYU4ua0sZSKJvhm9doXI0+HGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDdmNTE1ZWFkMDk1ZWVkOWFjNGNhYmM1YWI0YWQwYjU4Njdk
OWYwMWIwHhcNMjIxMjIyMDcyNjEwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg4ZjE1NDQ2M2RhY2E3ZTljN2EyMTYxYzMyN2NlYjBiMGRjZTRjOTk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAroEQLE2LKbaHKpE9VjNcnBUf19JC
8fLuFpF16V5IvCXiIf5dtPNU4sem8qxWSvM6T6iyFQbHNNb19gOzakSYDetfG+C3
I7DIum2Swynrom2tDg905wal2rue1fGyqM3M6JIg6QP6CVzxscxPm4129QXevAKa
7KJ6MgIZ6Gjr1rwK0AQP74J4CCfpA3DJG472pDGdvnBPFdG5WrH5E9UvapsTtWG8
JhMzYqEpx0LKCJOdEdQ87rpkX9cF18jy3IIHBzALX9rAtqIHCXJqD97RU6+ppQdL
doZbEDtYXDsz3JvC+lDe11SGaBaTIV2uPZAMd5qXqcM8LwIQM2Ss23o5jwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFI8VRGPayn6ceiFhwyfOsLDc5MmXMB8GA1UdIwQY
MBaAFH9RXq0JXu2axMq8WrStC1hn2fAbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZjFGZXJRbGU3WnJFeXJ4YXRLMExXR2ZaOEJzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy81YzJhNTktNjAyNS00MDBlLWFiMjgt
ZjBhNjI0ZDQwOTEyLzEvanhWRVk5cktmcHg2SVdIREo4NndzTnpreVpjLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNy81YzJhNTktNjAyNS00MDBlLWFiMjgtZjBhNjI0ZDQwOTEy
LzEvZjFGZXJRbGU3WnJFeXJ4YXRLMExXR2ZaOEJzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZ5+MA0G
CSqGSIb3DQEBCwUAA4IBAQAGMztfcQDZjR77ymWPmVNL1rfTDvQIpP2n36jB9lA8
jAgMgHdgr3ZCZNGZyBmJaJOAHzmknUtWAy1I+i0LRT7p/zVRFl6oY0buGENrciWa
U90borAWHe+6z3GUc9ZgOhNfZ1wKMRwcI9FD7TXa2PhVaMJZXh5beSy/GeocmUrc
yRRv+sM+ZV9kaWzsxRCwyOdZkN4VvoyUwtCjnSAYmaJLCaZaPcywZuScH1OlELrM
PNH27oq+jzmAnwVizpTfhD0JpYvp/I8tHE4pUKz9k2OSZqoXPruMmbe+XBE9MaoC
OiW8mXC47Yt0nICc5/0xeilLUK6nRaGCL9SxICmxLPYw
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:00 2024 by rpki-client on console-ams.rpki-client.org