Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/QkY2pMWnzsHFOUArMpTYFAFt1XI.roa
File: QkY2pMWnzsHFOUArMpTYFAFt1XI.roa (raw, json)
Hash identifier: 78D0ELYK/PubRA0Xf6Jo5OH/Lqys8t1fu3mwkhQmG3w=
Subject key identifier: 42:46:36:A4:C5:A7:CE:C1:C5:39:40:2B:32:94:D8:14:01:6D:D5:72
Certificate issuer: /CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Certificate serial: 013D86BF
Authority key identifier: 0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/QkY2pMWnzsHFOUArMpTYFAFt1XI.roa
Signing time: Sat 01 Jan 2022 13:05:35 +0000
ROA not before: Sat 01 Jan 2022 13:05:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8100
IP address blocks: 45.150.224.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20809407 (0x13d86bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0db67c5c7fa7fe2492eec37cf427642b71d425b0
Validity
Not Before: Jan 1 13:05:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=424636a4c5a7cec1c539402b3294d814016dd572
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:55:17:51:86:11:e3:e7:5e:ab:9d:ea:d6:79:
45:64:d2:02:4a:e9:e9:63:26:db:54:14:72:45:2e:
7e:91:33:6d:6b:31:d3:cf:d5:42:74:1c:06:f8:c7:
24:87:ff:0a:da:f5:1d:ae:04:7d:2b:d8:42:61:6e:
2f:3c:b2:e0:47:34:3a:eb:8a:20:d1:2a:f8:fc:c9:
09:a9:0f:e1:71:88:39:0a:3e:36:99:be:59:dd:8c:
ba:32:f4:3a:d3:7a:06:43:f7:d2:dd:e9:77:88:26:
f5:23:e1:62:58:d6:8d:21:78:4f:f4:03:5b:d6:4e:
48:fa:11:03:80:f5:3a:c1:37:b8:5f:df:73:e5:48:
3c:d5:d5:45:c1:c8:0b:b8:03:d3:08:90:fc:9f:ce:
68:18:d5:a0:33:8f:78:ff:1e:e2:23:99:fa:66:98:
58:b7:43:61:b4:ba:76:d7:38:b6:8c:a3:3c:78:b7:
56:73:f5:6e:27:23:c6:d9:a8:b3:2e:9c:03:6a:61:
31:ad:d4:fa:b5:4f:ea:a9:64:b6:ad:5d:9a:fb:a2:
1d:f6:5e:ab:69:70:a1:75:e3:d5:71:72:21:dc:9b:
97:99:73:2b:88:24:95:ca:04:2d:43:12:f0:02:b7:
6e:15:87:7e:b2:7d:89:68:64:5d:c5:27:bb:b9:52:
24:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:46:36:A4:C5:A7:CE:C1:C5:39:40:2B:32:94:D8:14:01:6D:D5:72
X509v3 Authority Key Identifier:
keyid:0D:B6:7C:5C:7F:A7:FE:24:92:EE:C3:7C:F4:27:64:2B:71:D4:25:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DbZ8XH-n_iSS7sN89CdkK3HUJbA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/QkY2pMWnzsHFOUArMpTYFAFt1XI.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/0f3757-f0ed-4e7e-9329-b03df996e481/1/DbZ8XH-n_iSS7sN89CdkK3HUJbA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.224.0/24
Signature Algorithm: sha256WithRSAEncryption
a5:10:fb:f3:ee:af:52:a7:a7:a0:78:de:92:05:36:66:c5:4e:
4a:bd:79:18:6c:fe:33:0c:62:68:fb:f2:66:62:23:4b:e7:a9:
27:99:f6:f4:a5:25:a4:06:59:06:64:ee:1b:1c:ee:9d:71:44:
44:1e:eb:d5:18:ed:f2:8a:f2:e7:f1:df:d3:25:0f:0f:ec:e6:
92:c7:8b:39:cc:70:9f:6a:c1:5e:78:cc:b5:d0:50:13:62:65:
4c:31:0c:86:f5:54:55:e4:41:fc:d9:7c:a1:12:02:ce:1b:e3:
6a:8b:3c:e0:6d:4c:90:55:36:1a:b8:27:78:eb:00:b1:cf:a0:
1a:5e:b2:0d:c6:9b:48:7c:43:a1:19:b3:db:9e:a8:0c:8a:cc:
05:0d:75:ca:c8:d9:1c:57:e9:91:db:ad:61:29:06:de:26:b0:
c5:70:e7:0b:99:d1:ce:b0:ca:42:64:52:7a:2a:82:db:81:3b:
46:f6:9d:4d:75:f5:0d:72:e6:0c:26:c0:ec:bf:a0:da:34:6f:
c8:db:08:02:46:48:d8:e1:0d:e7:b9:65:f0:8d:1c:e7:54:fa:
c5:3e:20:2e:b9:d6:28:3d:3b:e4:1a:8f:94:63:27:b1:99:64:
55:8b:9b:49:68:0c:70:fd:a7:cb:28:01:03:ba:e6:bb:e9:6c:
31:cc:c5:eb
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAT2GvzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygw
ZGI2N2M1YzdmYTdmZTI0OTJlZWMzN2NmNDI3NjQyYjcxZDQyNWIwMB4XDTIyMDEw
MTEzMDUzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDI0NjM2YTRjNWE3
Y2VjMWM1Mzk0MDJiMzI5NGQ4MTQwMTZkZDU3MjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAN1VF1GGEePnXqud6tZ5RWTSAkrp6WMm21QUckUufpEzbWsx
08/VQnQcBvjHJIf/Ctr1Ha4EfSvYQmFuLzyy4Ec0OuuKINEq+PzJCakP4XGIOQo+
Npm+Wd2MujL0OtN6BkP30t3pd4gm9SPhYljWjSF4T/QDW9ZOSPoRA4D1OsE3uF/f
c+VIPNXVRcHIC7gD0wiQ/J/OaBjVoDOPeP8e4iOZ+maYWLdDYbS6dtc4toyjPHi3
VnP1bicjxtmosy6cA2phMa3U+rVP6qlktq1dmvuiHfZeq2lwoXXj1XFyIdybl5lz
K4gklcoELUMS8AK3bhWHfrJ9iWhkXcUnu7lSJKsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRCRjakxafOwcU5QCsylNgUAW3VcjAfBgNVHSMEGDAWgBQNtnxcf6f+JJLu
w3z0J2QrcdQlsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0RiWjhYSC1uX2lTUzdzTjg5Q2RrSzNIVUpiQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTkvMGYzNzU3LWYwZWQtNGU3ZS05MzI5LWIwM2RmOTk2ZTQ4MS8x
L1FrWTJwTVduenNIRk9VQXJNcFRZRkFGdDFYSS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTkv
MGYzNzU3LWYwZWQtNGU3ZS05MzI5LWIwM2RmOTk2ZTQ4MS8xL0RiWjhYSC1uX2lT
UzdzTjg5Q2RrSzNIVUpiQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2W4DANBgkqhkiG9w0BAQsFAAOC
AQEApRD78+6vUqenoHjekgU2ZsVOSr15GGz+MwxiaPvyZmIjS+epJ5n29KUlpAZZ
BmTuGxzunXFERB7r1Rjt8ory5/Hf0yUPD+zmkseLOcxwn2rBXnjMtdBQE2JlTDEM
hvVUVeRB/Nl8oRICzhvjaos84G1MkFU2GrgneOsAsc+gGl6yDcabSHxDoRmz256o
DIrMBQ11ysjZHFfpkdutYSkG3iawxXDnC5nRzrDKQmRSeiqC24E7RvadTXX1DXLm
DCbA7L+g2jRvyNsIAkZI2OEN57ll8I0c51T6xT4gLrnWKD075BqPlGMnsZlkVYub
SWgMcP2nyygBA7rmu+lsMczF6w==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:01:55 2023 by rpki-client on console-fra.rpki-client.org