Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/pi7SI3BWdKDlEGnY2Fe-0MdSpRA.roa
File: pi7SI3BWdKDlEGnY2Fe-0MdSpRA.roa (raw, json)
Hash identifier: 2FvBQMnHkBoZvurjBYLTbLLR7fka95kql5gk8vjxuag=
Subject key identifier: A6:2E:D2:23:70:56:74:A0:E5:10:69:D8:D8:57:BE:D0:C7:52:A5:10
Certificate issuer: /CN=a1d0315373b09b061aa59f129d592eabf7b3aaef
Certificate serial: 06DC5738
Authority key identifier: A1:D0:31:53:73:B0:9B:06:1A:A5:9F:12:9D:59:2E:AB:F7:B3:AA:EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/pi7SI3BWdKDlEGnY2Fe-0MdSpRA.roa
Signing time: Sat 01 Jan 2022 13:06:53 +0000
ROA not before: Sat 01 Jan 2022 13:06:53 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 136933
IP address blocks: 45.157.70.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115103544 (0x6dc5738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a1d0315373b09b061aa59f129d592eabf7b3aaef
Validity
Not Before: Jan 1 13:06:53 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a62ed223705674a0e51069d8d857bed0c752a510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:2d:fd:73:3f:60:a1:aa:38:c4:4f:3a:14:6d:
8e:1a:6f:d4:7b:57:76:78:91:9d:a6:bb:a5:15:12:
07:8f:e4:3b:40:ae:9a:ae:23:be:57:75:69:7b:83:
49:f9:8f:8b:d0:4e:6a:31:3a:c3:f9:2a:59:80:d5:
2d:ef:b2:e9:18:14:82:91:f7:c8:c9:39:e1:6a:3b:
33:08:6d:5a:b1:c8:9f:3a:8a:91:2a:dd:5f:20:50:
3d:1f:a3:8d:82:60:af:e8:ac:6f:44:f5:49:56:47:
e7:74:94:aa:1d:eb:08:b2:13:aa:b7:3c:6b:26:d8:
98:73:e5:38:ec:8e:50:bb:f7:fa:50:bd:b8:9f:40:
d2:55:29:5c:8c:ea:a7:69:75:2d:2a:29:26:64:f2:
eb:f0:dd:f1:7b:b4:c6:38:0e:b5:ae:a5:36:ec:14:
ab:c1:40:02:ac:dd:37:5a:b6:c4:43:72:50:8a:07:
39:52:35:bc:7a:11:ac:f6:28:d4:a9:bb:50:be:2d:
6f:59:10:80:aa:48:c4:b5:35:e2:c4:db:0f:0d:31:
ad:99:8f:fc:ed:0e:5e:31:4f:ae:b2:34:a8:71:a8:
0f:11:c9:3e:c5:c5:65:91:bf:a0:0c:13:65:76:ec:
a9:6f:56:a3:e5:e3:08:10:11:80:b8:3a:36:15:8e:
23:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:2E:D2:23:70:56:74:A0:E5:10:69:D8:D8:57:BE:D0:C7:52:A5:10
X509v3 Authority Key Identifier:
keyid:A1:D0:31:53:73:B0:9B:06:1A:A5:9F:12:9D:59:2E:AB:F7:B3:AA:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/odAxU3OwmwYapZ8SnVkuq_ezqu8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/pi7SI3BWdKDlEGnY2Fe-0MdSpRA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/1bcb2d-f58b-4e44-b133-dfcbdf3b1058/1/odAxU3OwmwYapZ8SnVkuq_ezqu8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.157.70.0/23
Signature Algorithm: sha256WithRSAEncryption
84:29:7c:cb:66:b5:52:6a:98:55:54:9c:e6:0c:04:22:ab:85:
80:a5:31:2f:e9:8e:ab:85:a3:e2:cb:0e:7a:7d:ce:b4:42:82:
10:c2:e5:db:3e:d2:70:0b:ae:be:7a:c5:d9:aa:54:57:88:97:
30:44:20:ff:02:9b:26:9a:37:1b:5a:dd:65:1a:b8:bb:4e:f1:
34:a9:34:af:39:89:ed:56:d4:70:e3:50:d5:25:1b:89:d6:d9:
7b:1b:51:c7:72:00:45:2a:6d:aa:ee:c7:75:27:d1:ed:c7:75:
c0:f6:89:2a:21:e2:cc:32:c5:7d:45:b2:a9:e9:93:27:8b:6a:
b3:ae:b4:14:f6:07:40:83:39:90:2d:14:02:83:69:56:b1:90:
d0:5e:10:5f:da:20:a3:4e:08:38:ae:cd:a3:7c:1f:4b:73:97:
bb:28:c2:d1:b9:0f:ec:3c:79:de:0f:db:71:22:b7:e6:57:77:
0d:50:2f:30:9d:d6:5e:e8:02:2b:68:d0:f6:c3:33:9b:6e:3f:
fc:28:92:10:de:57:39:e3:a1:04:97:11:d3:64:1c:96:a1:88:
13:b3:6c:ed:9f:58:d7:f1:95:b0:bb:6e:a6:78:c5:ef:0b:8e:
23:5d:d5:55:ba:78:be:e5:b5:64:c7:b6:e0:0a:00:5c:f0:d8:
e4:65:b5:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBtxXODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhh
MWQwMzE1MzczYjA5YjA2MWFhNTlmMTI5ZDU5MmVhYmY3YjNhYWVmMB4XDTIyMDEw
MTEzMDY1M1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTYyZWQyMjM3MDU2
NzRhMGU1MTA2OWQ4ZDg1N2JlZDBjNzUyYTUxMDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKct/XM/YKGqOMRPOhRtjhpv1HtXdniRnaa7pRUSB4/kO0Cu
mq4jvld1aXuDSfmPi9BOajE6w/kqWYDVLe+y6RgUgpH3yMk54Wo7MwhtWrHInzqK
kSrdXyBQPR+jjYJgr+isb0T1SVZH53SUqh3rCLITqrc8aybYmHPlOOyOULv3+lC9
uJ9A0lUpXIzqp2l1LSopJmTy6/Dd8Xu0xjgOta6lNuwUq8FAAqzdN1q2xENyUIoH
OVI1vHoRrPYo1Km7UL4tb1kQgKpIxLU14sTbDw0xrZmP/O0OXjFPrrI0qHGoDxHJ
PsXFZZG/oAwTZXbsqW9Wo+XjCBARgLg6NhWOI+sCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSmLtIjcFZ0oOUQadjYV77Qx1KlEDAfBgNVHSMEGDAWgBSh0DFTc7CbBhql
nxKdWS6r97Oq7zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L29kQXhVM093bXdZYXBaOFNuVmt1cV9lenF1OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWMvMWJjYjJkLWY1OGItNGU0NC1iMTMzLWRmY2JkZjNiMTA1OC8x
L3BpN1NJM0JXZEtEbEVHblkyRmUtME1kU3BSQS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMv
MWJjYjJkLWY1OGItNGU0NC1iMTMzLWRmY2JkZjNiMTA1OC8xL29kQXhVM093bXdZ
YXBaOFNuVmt1cV9lenF1OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2dRjANBgkqhkiG9w0BAQsFAAOC
AQEAhCl8y2a1UmqYVVSc5gwEIquFgKUxL+mOq4Wj4ssOen3OtEKCEMLl2z7ScAuu
vnrF2apUV4iXMEQg/wKbJpo3G1rdZRq4u07xNKk0rzmJ7VbUcONQ1SUbidbZextR
x3IARSptqu7HdSfR7cd1wPaJKiHizDLFfUWyqemTJ4tqs660FPYHQIM5kC0UAoNp
VrGQ0F4QX9ogo04IOK7No3wfS3OXuyjC0bkP7Dx53g/bcSK35ld3DVAvMJ3WXugC
K2jQ9sMzm24//CiSEN5XOeOhBJcR02QclqGIE7Ns7Z9Y1/GVsLtupnjF7wuOI13V
Vbp4vuW1ZMe24AoAXPDY5GW1wQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:25 2024 by rpki-client on console-fra.rpki-client.org