Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/MJx6u6LnsrtRW5sChciu9keJzjY.roa
File: MJx6u6LnsrtRW5sChciu9keJzjY.roa (raw, json)
Hash identifier: hOAdYKBGA5a5+DIFhhbbAQThBsZx0to8+NG53JrqKNA=
Subject key identifier: 30:9C:7A:BB:A2:E7:B2:BB:51:5B:9B:02:85:C8:AE:F6:47:89:CE:36
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0183F6BAF9619B78EA7FDFD431EECE07300D
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/MJx6u6LnsrtRW5sChciu9keJzjY.roa
Signing time: Thu 20 Oct 2022 18:49:51 +0000
ROA not before: Thu 20 Oct 2022 18:49:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 396982
IP address blocks: 45.143.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:f6:ba:f9:61:9b:78:ea:7f:df:d4:31:ee:ce:07:30:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Oct 20 18:49:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=309c7abba2e7b2bb515b9b0285c8aef64789ce36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:d3:48:8e:f5:79:13:26:83:20:c2:47:29:cb:
51:35:db:89:59:bc:7d:6d:88:7b:f8:71:42:d2:c8:
eb:8c:fc:b4:79:f1:da:71:11:e0:93:60:98:66:74:
96:16:3e:40:06:d2:42:82:7b:e4:2f:12:c9:5b:5c:
df:c1:fe:21:3a:98:26:3f:aa:15:6b:50:51:9a:0f:
1a:cc:d0:06:09:16:4c:6f:80:8d:1b:66:82:6c:34:
67:7c:2d:69:10:bb:2c:47:bf:ad:f6:6a:0b:28:39:
1a:ba:b7:09:49:de:f4:52:7c:7f:83:c3:c7:8b:76:
57:71:67:6f:30:c8:1d:fb:e2:4c:66:b9:c0:59:56:
02:e2:31:8d:69:9b:20:ab:ec:32:f2:cc:eb:cd:1c:
75:53:97:7c:18:55:04:0c:f6:80:52:b5:54:2f:62:
77:c4:1d:a6:b1:f7:d0:b8:8a:20:d4:45:88:f6:bc:
33:48:0a:bd:ab:7a:75:4a:c5:60:30:aa:8a:07:94:
32:93:7f:8a:fa:41:d0:d3:48:ae:fa:2b:29:13:e0:
fe:e8:d8:0a:03:4b:83:0c:3e:55:b0:bd:0d:6b:0b:
84:1d:77:13:d9:01:96:69:fe:50:12:69:51:f4:ca:
53:ee:2a:b0:5c:2a:c1:19:55:5a:68:53:20:b7:e7:
0b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:9C:7A:BB:A2:E7:B2:BB:51:5B:9B:02:85:C8:AE:F6:47:89:CE:36
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/MJx6u6LnsrtRW5sChciu9keJzjY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.160.0/24
Signature Algorithm: sha256WithRSAEncryption
42:b2:76:94:cd:05:36:73:7e:5f:53:48:81:d9:43:86:39:32:
d6:4c:e4:ef:82:44:be:54:5e:69:3f:66:7f:4e:ec:e7:76:d7:
30:5e:40:9f:7d:f4:ca:55:56:98:3f:0e:1d:9c:b2:5c:c3:64:
8f:0d:20:ba:43:d6:0b:d0:9d:71:17:b2:de:1b:38:a1:62:35:
25:c6:20:40:ed:fa:7d:e0:12:cf:cc:74:38:41:e3:19:a4:73:
fe:e8:18:ec:82:f1:cb:85:56:e6:b1:21:c0:99:6d:f2:ef:5b:
b5:16:80:b1:a5:23:64:af:9a:be:17:c9:1e:5d:a6:99:28:fd:
3f:15:bb:20:c5:d1:65:e4:33:07:9f:50:db:bc:95:06:d4:51:
1d:9d:1e:68:47:3a:1c:7f:6d:5d:84:fc:48:10:b6:28:89:e0:
5f:ac:a7:4b:ca:64:aa:fe:d1:1a:69:ff:29:ba:a4:ea:07:ca:
77:77:10:23:74:0c:fd:4e:88:d6:17:82:3a:ea:42:c6:c2:0a:
bd:8e:44:c8:37:8b:11:91:0b:7d:ee:98:dd:42:f8:61:10:e4:
70:aa:13:92:78:3b:7b:91:f7:3a:cc:b6:dc:81:05:c9:b0:69:
6c:8a:97:16:59:54:3e:f7:2f:fd:ab:d0:b6:93:77:96:70:1b:
fb:50:a3:20
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYP2uvlhm3jqf9/UMe7OBzANMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNGQwZTY5YWI3NjlmNjViYjJiMTU1YmRmYTgzYTcxODZl
ZWFjNDQwHhcNMjIxMDIwMTg0OTUxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzMDljN2FiYmEyZTdiMmJiNTE1YjliMDI4NWM4YWVmNjQ3ODljZTM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2NNIjvV5EyaDIMJHKctRNduJWbx9
bYh7+HFC0sjrjPy0efHacRHgk2CYZnSWFj5ABtJCgnvkLxLJW1zfwf4hOpgmP6oV
a1BRmg8azNAGCRZMb4CNG2aCbDRnfC1pELssR7+t9moLKDkaurcJSd70Unx/g8PH
i3ZXcWdvMMgd++JMZrnAWVYC4jGNaZsgq+wy8szrzRx1U5d8GFUEDPaAUrVUL2J3
xB2msffQuIog1EWI9rwzSAq9q3p1SsVgMKqKB5Qyk3+K+kHQ00iu+ispE+D+6NgK
A0uDDD5VsL0NawuEHXcT2QGWaf5QEmlR9MpT7iqwXCrBGVVaaFMgt+cLTQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDCcerui57K7UVubAoXIrvZHic42MB8GA1UdIwQY
MBaAFLpNDmmrdp9luysVW9+oOnGG7qxEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWswT2FhdDJuMlc3S3hWYjM2ZzZjWWJ1ckVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zZDZkNmMtZjU4ZC00MmU2LWI2ODgt
OGVmZjNmZDNjNDhhLzEvTUp4NnU2TG5zcnRSVzVzQ2hjaXU5a2VKempZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zZDZkNmMtZjU4ZC00MmU2LWI2ODgtOGVmZjNmZDNjNDhh
LzEvdWswT2FhdDJuMlc3S3hWYjM2ZzZjWWJ1ckVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY+gMA0G
CSqGSIb3DQEBCwUAA4IBAQBCsnaUzQU2c35fU0iB2UOGOTLWTOTvgkS+VF5pP2Z/
TuzndtcwXkCfffTKVVaYPw4dnLJcw2SPDSC6Q9YL0J1xF7LeGzihYjUlxiBA7fp9
4BLPzHQ4QeMZpHP+6BjsgvHLhVbmsSHAmW3y71u1FoCxpSNkr5q+F8keXaaZKP0/
FbsgxdFl5DMHn1DbvJUG1FEdnR5oRzocf21dhPxIELYoieBfrKdLymSq/tEaaf8p
uqTqB8p3dxAjdAz9TojWF4I66kLGwgq9jkTIN4sRkQt97pjdQvhhEORwqhOSeDt7
kfc6zLbcgQXJsGlsipcWWVQ+9y/9q9C2k3eWcBv7UKMg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:08 2024 by rpki-client on console-ams.rpki-client.org