Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/J3TjEGKXYvfLkNbTmyQJziHwX0o.roa
File: J3TjEGKXYvfLkNbTmyQJziHwX0o.roa (raw, json)
Hash identifier: 5mqj5MQry+OAUjkj7i02y/BgVuDJw2x6x3bCplsdd68=
Subject key identifier: 27:74:E3:10:62:97:62:F7:CB:90:D6:D3:9B:24:09:CE:21:F0:5F:4A
Certificate issuer: /CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Certificate serial: 0182A70C9204E180AD49FD04BD7131C28DE2
Authority key identifier: FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/J3TjEGKXYvfLkNbTmyQJziHwX0o.roa
Signing time: Tue 16 Aug 2022 14:26:35 +0000
ROA not before: Tue 16 Aug 2022 14:26:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42508
IP address blocks: 45.91.4.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:a7:0c:92:04:e1:80:ad:49:fd:04:bd:71:31:c2:8d:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ff82309a6814678ad72e3f31a4fe0272f40bd986
Validity
Not Before: Aug 16 14:26:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2774e310629762f7cb90d6d39b2409ce21f05f4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:81:d8:50:4f:b0:38:fe:04:4a:1a:0c:27:39:48:
36:13:cc:6a:a6:b7:f3:b4:79:5c:4a:8c:e7:2c:c4:
f9:49:54:d2:bd:87:69:cb:8c:9c:2f:56:ab:64:34:
f7:15:fe:b9:88:33:54:61:00:40:a9:0f:9d:e5:54:
c4:9d:43:64:cd:bd:af:d8:08:e3:35:38:d9:83:1d:
72:2a:a2:c6:43:e5:ea:52:7c:90:08:f4:c8:f0:5a:
7d:22:91:89:aa:f6:6b:f1:26:65:62:68:56:1f:49:
dd:c9:c4:71:db:f3:34:f9:fa:2b:f0:1d:ea:8a:c0:
68:6b:2a:d5:a1:cb:9f:75:bb:3f:3b:77:5f:78:1b:
94:d2:15:52:89:35:c9:06:55:f0:54:a3:e9:70:96:
9b:0e:fd:9a:b3:cd:88:ff:4a:65:7f:5f:93:79:17:
2b:6a:c0:a1:97:cf:97:f6:65:68:f5:cf:4d:43:03:
ce:77:75:7b:88:b6:d6:6b:00:1a:b0:67:79:ec:60:
57:15:ff:33:04:d9:eb:4d:80:f7:a0:2d:6b:93:23:
9e:91:46:1b:48:aa:55:af:0e:84:a5:a1:6d:c1:71:
53:70:f8:81:b2:3b:ef:23:35:53:90:b4:b8:4f:5a:
c0:e2:22:07:a6:f7:c5:17:27:f8:4c:6d:04:0f:06:
55:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:74:E3:10:62:97:62:F7:CB:90:D6:D3:9B:24:09:CE:21:F0:5F:4A
X509v3 Authority Key Identifier:
keyid:FF:82:30:9A:68:14:67:8A:D7:2E:3F:31:A4:FE:02:72:F4:0B:D9:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/J3TjEGKXYvfLkNbTmyQJziHwX0o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/9fa83d-b2a3-45e4-8499-f525816402bd/1/_4IwmmgUZ4rXLj8xpP4CcvQL2YY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.91.4.0/24
Signature Algorithm: sha256WithRSAEncryption
6b:e9:80:11:d1:ce:8f:dc:bc:bb:32:cc:a8:2e:82:b0:6c:ae:
f4:fb:3a:f6:a0:14:85:1d:eb:ae:90:ce:87:a6:94:24:e6:f5:
63:30:10:c6:d1:22:65:da:f0:cd:5a:45:eb:b7:9a:65:52:f4:
03:5c:12:6b:1d:60:17:2f:fb:d5:2f:36:f0:1d:80:b7:32:b9:
63:d5:0d:e5:bb:e5:21:01:4c:b2:80:8a:ad:22:d9:66:12:5c:
8d:d8:d4:91:42:13:0d:e1:5f:05:6f:f4:a8:a6:43:9a:cb:a4:
0e:04:e8:c7:31:e4:8a:13:79:b9:77:44:c9:ec:b0:2e:f8:72:
7e:c7:30:72:97:81:48:bc:f9:1b:d3:21:d2:2d:ca:72:15:a6:
e2:c3:48:18:a0:fe:77:fc:f6:73:3a:38:e3:4b:20:b1:a3:f9:
37:09:7f:4a:3c:da:d9:28:bb:cf:92:27:4e:5e:16:d9:2a:2c:
b1:30:32:8b:62:ef:c5:46:78:e9:31:d4:e8:c5:e9:b8:87:95:
da:b7:58:50:53:68:e7:c2:07:b2:4c:2b:20:47:25:63:a7:27:
2c:39:e0:ba:53:cc:aa:3b:b3:59:d3:46:88:5f:4b:88:02:6d:
a0:57:cc:0d:88:15:45:e9:86:be:07:a1:9b:be:82:49:09:d7:
08:0a:d4:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYKnDJIE4YCtSf0EvXExwo3iMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZmODIzMDlhNjgxNDY3OGFkNzJlM2YzMWE0ZmUwMjcyZjQw
YmQ5ODYwHhcNMjIwODE2MTQyNjM1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzc0ZTMxMDYyOTc2MmY3Y2I5MGQ2ZDM5YjI0MDljZTIxZjA1ZjRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgdhQT7A4/gRKGgwnOUg2E8xqprfz
tHlcSoznLMT5SVTSvYdpy4ycL1arZDT3Ff65iDNUYQBAqQ+d5VTEnUNkzb2v2Ajj
NTjZgx1yKqLGQ+XqUnyQCPTI8Fp9IpGJqvZr8SZlYmhWH0ndycRx2/M0+for8B3q
isBoayrVocufdbs/O3dfeBuU0hVSiTXJBlXwVKPpcJabDv2as82I/0plf1+TeRcr
asChl8+X9mVo9c9NQwPOd3V7iLbWawAasGd57GBXFf8zBNnrTYD3oC1rkyOekUYb
SKpVrw6EpaFtwXFTcPiBsjvvIzVTkLS4T1rA4iIHpvfFFyf4TG0EDwZVXwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCd04xBil2L3y5DW05skCc4h8F9KMB8GA1UdIwQY
MBaAFP+CMJpoFGeK1y4/MaT+AnL0C9mGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvXzRJd21tZ1VaNHJYTGo4eHBQNENjdlFMMllZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hOC85ZmE4M2QtYjJhMy00NWU0LTg0OTkt
ZjUyNTgxNjQwMmJkLzEvSjNUakVHS1hZdmZMa05iVG15UUp6aUh3WDBvLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hOC85ZmE4M2QtYjJhMy00NWU0LTg0OTktZjUyNTgxNjQwMmJk
LzEvXzRJd21tZ1VaNHJYTGo4eHBQNENjdlFMMllZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVsEMA0G
CSqGSIb3DQEBCwUAA4IBAQBr6YAR0c6P3Ly7MsyoLoKwbK70+zr2oBSFHeuukM6H
ppQk5vVjMBDG0SJl2vDNWkXrt5plUvQDXBJrHWAXL/vVLzbwHYC3Mrlj1Q3lu+Uh
AUyygIqtItlmElyN2NSRQhMN4V8Fb/SopkOay6QOBOjHMeSKE3m5d0TJ7LAu+HJ+
xzByl4FIvPkb0yHSLcpyFabiw0gYoP53/PZzOjjjSyCxo/k3CX9KPNrZKLvPkidO
XhbZKiyxMDKLYu/FRnjpMdToxem4h5Xat1hQU2jnwgeyTCsgRyVjpycsOeC6U8yq
O7NZ00aIX0uIAm2gV8wNiBVF6Ya+B6GbvoJJCdcICtSg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:37:12 2024 by rpki-client on console-ams.rpki-client.org