Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/oENA4nIPQFAhTCClXHTvtBjnZhA.roa
File: oENA4nIPQFAhTCClXHTvtBjnZhA.roa (raw, json)
Hash identifier: yQ1rqnBBPrE+YpOI4TBzcTBhhkwj72EAcIVoHsW40aY=
Subject key identifier: A0:43:40:E2:72:0F:40:50:21:4C:20:A5:5C:74:EF:B4:18:E7:66:10
Certificate issuer: /CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Certificate serial: 0182EDAC007682F25A7839119226EEB2F7C6
Authority key identifier: BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/oENA4nIPQFAhTCClXHTvtBjnZhA.roa
Signing time: Tue 30 Aug 2022 07:34:08 +0000
ROA not before: Tue 30 Aug 2022 07:34:08 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 35913
IP address blocks: 45.143.162.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:ed:ac:00:76:82:f2:5a:78:39:11:92:26:ee:b2:f7:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ba4d0e69ab769f65bb2b155bdfa83a7186eeac44
Validity
Not Before: Aug 30 07:34:08 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a04340e2720f4050214c20a55c74efb418e76610
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:f6:6e:07:0c:6f:18:b0:73:65:c5:80:4f:4d:
9d:4c:70:90:e7:76:6f:da:32:12:3d:7e:75:e8:5a:
eb:6d:f2:b4:91:b6:eb:13:4a:6a:ac:c8:57:ee:fb:
70:fe:45:9d:71:f7:5f:9a:5d:7c:4d:7b:a3:a8:de:
7e:16:bd:dc:91:bb:8a:4a:8d:1c:09:16:40:b3:dc:
5c:b2:48:82:ab:52:8a:e8:9f:71:74:6f:86:8e:ca:
1b:ef:cd:13:f8:5e:94:7f:7f:01:d1:dc:45:b3:b9:
4d:61:9e:51:03:cd:8c:09:11:26:cf:8e:ff:e9:f9:
1c:3e:49:f1:62:c5:78:7f:0e:a8:5c:74:c9:8a:9a:
8e:90:65:d1:4f:38:98:68:d2:0a:e8:de:97:45:97:
a5:24:5f:b6:5c:a7:c9:66:79:42:b7:15:22:b6:30:
a3:2b:5e:09:0a:d5:04:75:60:f0:91:ec:29:e4:e8:
55:5c:99:f0:5a:ea:20:31:ef:10:45:82:51:c5:ca:
af:4e:95:24:83:0b:c7:03:85:bf:e4:c2:78:95:27:
4f:c7:b1:cb:05:a8:9a:e8:06:f5:5e:f8:b5:20:80:
5d:6f:b8:6c:91:19:86:f6:6a:47:b8:ab:04:2f:53:
6e:14:29:f1:f7:8c:08:23:82:8d:be:cb:2b:ea:a6:
21:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:43:40:E2:72:0F:40:50:21:4C:20:A5:5C:74:EF:B4:18:E7:66:10
X509v3 Authority Key Identifier:
keyid:BA:4D:0E:69:AB:76:9F:65:BB:2B:15:5B:DF:A8:3A:71:86:EE:AC:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/uk0Oaat2n2W7KxVb36g6cYburEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/oENA4nIPQFAhTCClXHTvtBjnZhA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3d6d6c-f58d-42e6-b688-8eff3fd3c48a/1/uk0Oaat2n2W7KxVb36g6cYburEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.143.162.0/24
Signature Algorithm: sha256WithRSAEncryption
40:74:f8:f6:86:a6:9e:5f:92:d3:9b:c3:70:c2:cc:b4:05:30:
9e:8f:b5:22:a6:f8:cc:d1:fa:e5:6d:ff:8c:1c:c6:8c:ac:ad:
37:74:e6:1b:4b:c3:6e:61:f9:bc:35:b9:27:60:a8:42:66:f7:
c4:36:73:6a:50:b4:d4:fb:cf:fe:4d:62:2a:82:e8:ed:ab:6c:
bf:61:8d:33:6c:10:5f:fd:65:39:ec:b3:d0:18:ce:9e:58:31:
8b:12:db:ac:54:05:51:0d:7d:1a:ab:4a:68:bf:90:50:26:4b:
15:91:6a:14:da:1d:7d:17:1e:4a:82:85:55:a3:43:09:e5:26:
85:f9:ee:26:6c:6e:49:15:a5:51:2e:bb:06:c6:23:b9:8b:2e:
9f:43:62:ec:cd:81:21:89:85:db:9c:ee:f7:54:99:97:b9:d8:
55:f7:a0:ce:41:4c:a5:3e:12:a7:49:d1:ef:a5:83:d2:3b:54:
64:47:d6:a6:30:3c:e6:30:57:17:80:43:18:1a:18:79:05:55:
d8:d5:24:63:3a:7d:0d:54:fa:6a:d0:cd:ac:34:88:a0:1b:2b:
e6:e1:d0:f9:44:84:36:a5:6c:3d:ce:cf:c6:ea:fb:91:29:de:
7d:bc:54:07:09:0b:9f:94:75:91:8d:38:b5:8c:81:ea:3b:ed:
68:9a:80:8c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYLtrAB2gvJaeDkRkibusvfGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJhNGQwZTY5YWI3NjlmNjViYjJiMTU1YmRmYTgzYTcxODZl
ZWFjNDQwHhcNMjIwODMwMDczNDA4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhMDQzNDBlMjcyMGY0MDUwMjE0YzIwYTU1Yzc0ZWZiNDE4ZTc2NjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArvZuBwxvGLBzZcWAT02dTHCQ53Zv
2jISPX516FrrbfK0kbbrE0pqrMhX7vtw/kWdcfdfml18TXujqN5+Fr3ckbuKSo0c
CRZAs9xcskiCq1KK6J9xdG+Gjsob780T+F6Uf38B0dxFs7lNYZ5RA82MCREmz47/
6fkcPknxYsV4fw6oXHTJipqOkGXRTziYaNIK6N6XRZelJF+2XKfJZnlCtxUitjCj
K14JCtUEdWDwkewp5OhVXJnwWuogMe8QRYJRxcqvTpUkgwvHA4W/5MJ4lSdPx7HL
Baia6Ab1Xvi1IIBdb7hskRmG9mpHuKsEL1NuFCnx94wII4KNvssr6qYh0QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKBDQOJyD0BQIUwgpVx077QY52YQMB8GA1UdIwQY
MBaAFLpNDmmrdp9luysVW9+oOnGG7qxEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdWswT2FhdDJuMlc3S3hWYjM2ZzZjWWJ1ckVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC8zZDZkNmMtZjU4ZC00MmU2LWI2ODgt
OGVmZjNmZDNjNDhhLzEvb0VOQTRuSVBRRkFoVENDbFhIVHZ0QmpuWmhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC8zZDZkNmMtZjU4ZC00MmU2LWI2ODgtOGVmZjNmZDNjNDhh
LzEvdWswT2FhdDJuMlc3S3hWYjM2ZzZjWWJ1ckVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALY+iMA0G
CSqGSIb3DQEBCwUAA4IBAQBAdPj2hqaeX5LTm8Nwwsy0BTCej7UipvjM0frlbf+M
HMaMrK03dOYbS8NuYfm8NbknYKhCZvfENnNqULTU+8/+TWIqgujtq2y/YY0zbBBf
/WU57LPQGM6eWDGLEtusVAVRDX0aq0pov5BQJksVkWoU2h19Fx5KgoVVo0MJ5SaF
+e4mbG5JFaVRLrsGxiO5iy6fQ2LszYEhiYXbnO73VJmXudhV96DOQUylPhKnSdHv
pYPSO1RkR9amMDzmMFcXgEMYGhh5BVXY1SRjOn0NVPpq0M2sNIigGyvm4dD5RIQ2
pWw9zs/G6vuRKd59vFQHCQuflHWRjTi1jIHqO+1omoCM
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:48:51 2024 by rpki-client on console-fra.rpki-client.org