Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/5HbZYUOTSHaqb-ADMBY7mXBLb-0.roa
File: 5HbZYUOTSHaqb-ADMBY7mXBLb-0.roa (raw, json)
Hash identifier: n4458jNmgO1/jbUkyDh6Ug9W+plNjVgK5c93Nr4lvRI=
Subject key identifier: E4:76:D9:61:43:93:48:76:AA:6F:E0:03:30:16:3B:99:70:4B:6F:ED
Certificate issuer: /CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Certificate serial: 7942F3
Authority key identifier: 5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/5HbZYUOTSHaqb-ADMBY7mXBLb-0.roa
Signing time: Sat 01 Jan 2022 01:57:15 +0000
ROA not before: Sat 01 Jan 2022 01:57:15 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43561
IP address blocks: 84.54.140.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 7946995 (0x7942f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5d88e4f7a302412c316a3bb599cdd2042b5ff485
Validity
Not Before: Jan 1 01:57:15 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e476d96143934876aa6fe00330163b99704b6fed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:28:98:67:85:1d:1d:16:fd:cb:fa:53:d3:35:
2a:1f:5e:e6:7b:3f:f9:82:75:c1:74:c1:a7:a2:8d:
61:65:a8:92:5c:2e:e6:5a:3c:0c:35:69:6c:53:d4:
20:ee:b4:d1:d7:48:b9:9a:7e:8c:6c:c2:1e:b4:7b:
50:04:70:80:75:5d:b6:83:44:f1:21:fd:8e:84:75:
b5:2b:82:9f:d8:2e:23:bc:9b:ed:7c:a2:0e:fa:af:
35:2d:06:4c:6f:1a:1c:c7:1d:5e:75:32:18:a6:a7:
fd:36:10:7f:ea:b0:e1:b8:76:e1:e7:c8:8f:c4:4c:
c5:db:7a:d7:15:cf:dd:9f:16:42:8e:d8:5f:3b:0e:
86:5b:16:f9:d8:29:e6:c8:e4:67:73:0b:5d:7a:e0:
8e:2c:98:8b:44:f5:06:bf:4f:12:8c:08:25:06:27:
22:64:36:39:a1:be:c6:09:8a:b1:05:ef:94:ca:53:
32:82:68:62:30:2a:07:b0:9e:07:27:f7:ec:03:df:
97:ae:f3:05:4a:b8:20:b5:ec:88:6a:d8:d8:fd:f7:
ce:06:0e:7e:7c:37:9f:76:96:62:35:01:27:07:5d:
d6:e9:05:0d:ae:4c:24:1b:67:e3:2c:13:2a:7f:82:
9b:7d:94:0b:0c:5d:57:d7:19:93:0e:df:41:eb:88:
74:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:76:D9:61:43:93:48:76:AA:6F:E0:03:30:16:3B:99:70:4B:6F:ED
X509v3 Authority Key Identifier:
keyid:5D:88:E4:F7:A3:02:41:2C:31:6A:3B:B5:99:CD:D2:04:2B:5F:F4:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XYjk96MCQSwxaju1mc3SBCtf9IU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/5HbZYUOTSHaqb-ADMBY7mXBLb-0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/760c0f-12ab-483d-8cdb-57e1d5b72b2d/1/XYjk96MCQSwxaju1mc3SBCtf9IU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
84.54.140.0/24
Signature Algorithm: sha256WithRSAEncryption
23:7b:4f:d3:9c:13:1f:5a:b5:9c:98:b9:f3:82:82:a8:a6:86:
d9:15:a0:6a:91:88:d3:74:82:f0:8a:a8:e8:16:2c:10:36:b6:
db:0f:91:96:b7:c5:b4:01:57:43:1e:28:17:ab:87:fc:4b:b8:
46:7f:cc:bd:6b:41:06:0a:f2:00:b8:20:fd:40:30:c5:e7:a5:
2e:a1:1b:00:64:68:c6:08:99:b8:61:43:6b:90:b0:d5:31:f0:
2e:15:8f:81:af:ae:0a:a6:d4:57:32:6f:ee:a5:81:eb:f9:40:
5f:c7:c0:ef:2a:79:bc:c8:bf:5d:46:3b:64:04:4a:b0:99:eb:
97:c7:7d:82:58:2f:0c:89:46:45:48:7b:f3:b7:87:81:f0:a9:
94:2f:78:03:7d:24:12:d2:15:bf:c5:26:bc:3f:0d:7d:eb:f2:
97:24:8c:9a:e9:54:a7:bc:62:29:5e:22:6b:5b:15:02:6e:c2:
89:54:5d:3d:d8:27:6b:50:13:ff:f6:d6:0e:aa:ab:b9:3c:be:
ac:be:d4:c1:94:cd:a3:da:df:fc:63:78:43:1b:95:d5:4e:95:
f8:5a:40:e2:b8:6e:ac:ae:5b:ad:9b:5b:b7:ee:7c:be:ca:3c:
e2:41:21:2f:7f:87:11:04:b1:bc:cc:31:21:2a:8f:e4:60:a1:
5a:1a:09:ce
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDeULzMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDVk
ODhlNGY3YTMwMjQxMmMzMTZhM2JiNTk5Y2RkMjA0MmI1ZmY0ODUwHhcNMjIwMTAx
MDE1NzE1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhlNDc2ZDk2MTQzOTM0
ODc2YWE2ZmUwMDMzMDE2M2I5OTcwNGI2ZmVkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA0CiYZ4UdHRb9y/pT0zUqH17mez/5gnXBdMGnoo1hZaiSXC7m
WjwMNWlsU9Qg7rTR10i5mn6MbMIetHtQBHCAdV22g0TxIf2OhHW1K4Kf2C4jvJvt
fKIO+q81LQZMbxocxx1edTIYpqf9NhB/6rDhuHbh58iPxEzF23rXFc/dnxZCjthf
Ow6GWxb52CnmyORncwtdeuCOLJiLRPUGv08SjAglBiciZDY5ob7GCYqxBe+UylMy
gmhiMCoHsJ4HJ/fsA9+XrvMFSrggteyIatjY/ffOBg5+fDefdpZiNQEnB13W6QUN
rkwkG2fjLBMqf4KbfZQLDF1X1xmTDt9B64h0sQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFOR22WFDk0h2qm/gAzAWO5lwS2/tMB8GA1UdIwQYMBaAFF2I5PejAkEsMWo7
tZnN0gQrX/SFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
WFlqazk2TUNRU3d4YWp1MW1jM1NCQ3RmOUlVLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9hYi83NjBjMGYtMTJhYi00ODNkLThjZGItNTdlMWQ1YjcyYjJkLzEv
NUhiWllVT1RTSGFxYi1BRE1CWTdtWEJMYi0wLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYi83
NjBjMGYtMTJhYi00ODNkLThjZGItNTdlMWQ1YjcyYjJkLzEvWFlqazk2TUNRU3d4
YWp1MW1jM1NCQ3RmOUlVLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAVDaMMA0GCSqGSIb3DQEBCwUAA4IB
AQAje0/TnBMfWrWcmLnzgoKopobZFaBqkYjTdILwiqjoFiwQNrbbD5GWt8W0AVdD
HigXq4f8S7hGf8y9a0EGCvIAuCD9QDDF56UuoRsAZGjGCJm4YUNrkLDVMfAuFY+B
r64KptRXMm/upYHr+UBfx8DvKnm8yL9dRjtkBEqwmeuXx32CWC8MiUZFSHvzt4eB
8KmUL3gDfSQS0hW/xSa8Pw196/KXJIya6VSnvGIpXiJrWxUCbsKJVF092CdrUBP/
9tYOqqu5PL6svtTBlM2j2t/8Y3hDG5XVTpX4WkDiuG6srlutm1u37ny+yjziQSEv
f4cRBLG8zDEhKo/kYKFaGgnO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:02 2023 by rpki-client on console-fra.rpki-client.org