Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/OQ5K5EcfEjON1czuC_qHMQ5jDXA.roa
File: OQ5K5EcfEjON1czuC_qHMQ5jDXA.roa (raw, json)
Hash identifier: 5O4EVRRqDHdH4Kzt4+HhWD7GCwZFPFf7lHii12dz3ic=
Subject key identifier: 39:0E:4A:E4:47:1F:12:33:8D:D5:CC:EE:0B:FA:87:31:0E:63:0D:70
Certificate issuer: /CN=d5637692ff5c45486d1053b149dc1420026cd733
Certificate serial: 0183DD0C789B702BA54E5CC6EAA12D471B94
Authority key identifier: D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/OQ5K5EcfEjON1czuC_qHMQ5jDXA.roa
Signing time: Sat 15 Oct 2022 19:08:45 +0000
ROA not before: Sat 15 Oct 2022 19:08:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 150127
IP address blocks: 45.149.92.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:dd:0c:78:9b:70:2b:a5:4e:5c:c6:ea:a1:2d:47:1b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5637692ff5c45486d1053b149dc1420026cd733
Validity
Not Before: Oct 15 19:08:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=390e4ae4471f12338dd5ccee0bfa87310e630d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:72:52:1d:77:7a:e5:d1:49:38:c1:6e:b8:c7:
31:a9:ed:80:02:a4:a6:14:f8:41:fc:60:f5:a4:d0:
e0:31:3b:5c:54:f4:a9:53:92:5e:e7:03:d1:07:6f:
78:8b:b4:da:92:ec:83:e9:7a:20:2a:fc:ed:2a:9b:
1f:36:42:b7:bd:69:bd:d2:c4:b7:e1:25:2c:51:10:
00:76:22:05:ba:9a:3b:03:89:0c:75:ce:e2:aa:7e:
67:5f:4a:22:be:82:3f:86:ff:71:78:3f:90:d8:7f:
d6:f1:e7:1d:be:07:af:18:9d:cc:87:a9:d0:81:7c:
9a:29:52:7d:e6:10:b7:08:f4:6a:91:ad:db:4c:ce:
34:ed:89:21:fb:d0:e8:bb:60:a3:df:f5:64:e1:1b:
c7:ee:12:d0:9e:4a:2d:e8:07:e9:6f:b5:50:11:70:
e9:74:7e:ef:96:d1:c6:e1:55:29:46:a9:a8:4a:0b:
98:50:d1:be:b6:cc:09:39:fc:5f:99:c5:2f:0a:bb:
40:8a:00:70:18:1a:2c:8f:16:05:50:5d:de:f1:3d:
18:f9:d7:23:04:0f:fe:5b:72:c2:a0:b1:97:ea:90:
92:dd:6e:09:1d:2f:62:69:9f:1f:d4:9f:c8:9d:44:
28:99:55:5c:f9:46:18:e4:fe:99:27:3a:0d:9a:bf:
29:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:0E:4A:E4:47:1F:12:33:8D:D5:CC:EE:0B:FA:87:31:0E:63:0D:70
X509v3 Authority Key Identifier:
keyid:D5:63:76:92:FF:5C:45:48:6D:10:53:B1:49:DC:14:20:02:6C:D7:33
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1WN2kv9cRUhtEFOxSdwUIAJs1zM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/OQ5K5EcfEjON1czuC_qHMQ5jDXA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/98e113-e002-4d93-9a49-adeade2865c1/1/1WN2kv9cRUhtEFOxSdwUIAJs1zM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.92.0/23
Signature Algorithm: sha256WithRSAEncryption
20:64:61:6a:06:0f:8d:02:e7:46:bc:a6:11:92:df:78:e0:64:
ab:b9:d8:af:7e:31:b0:31:da:d9:b5:75:ee:db:25:f2:af:c9:
6e:8c:ff:95:f7:5a:29:78:f0:df:7b:e8:7e:f2:15:94:ea:fd:
27:4f:3b:be:9b:a0:eb:d8:31:97:b8:58:45:6c:c1:d6:ef:a5:
12:9f:b9:4f:7b:f4:af:e5:09:99:eb:70:47:74:77:07:9f:54:
a3:6a:1b:ac:dd:81:b1:e4:3d:0b:7b:ff:1f:ec:32:34:0c:c0:
08:42:bc:f7:48:bd:e8:a5:f4:94:e7:6a:1e:a6:9f:ab:e6:eb:
97:f1:73:b2:8f:de:25:4c:f8:42:24:82:ea:53:95:80:ac:66:
bc:21:95:00:99:a7:72:fa:26:8d:0f:30:93:aa:8d:23:47:3e:
2a:9d:1a:83:2a:a2:9c:10:11:83:ba:46:40:48:3e:c3:89:62:
e1:d0:dc:25:c8:48:1d:43:46:60:cf:75:59:1b:78:ea:9b:09:
58:9a:1c:6d:6c:0b:1c:2c:65:e7:1a:1a:15:31:1d:c5:dc:51:
3b:11:7e:a1:11:61:fd:72:3d:59:4f:2c:a6:58:fd:a7:98:e8:
da:9b:e5:0e:f7:f0:cf:35:3c:00:67:63:1a:ed:4e:3d:bb:c5:
49:3e:b6:3d
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYPdDHibcCulTlzG6qEtRxuUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ1NjM3NjkyZmY1YzQ1NDg2ZDEwNTNiMTQ5ZGMxNDIwMDI2
Y2Q3MzMwHhcNMjIxMDE1MTkwODQ1WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzOTBlNGFlNDQ3MWYxMjMzOGRkNWNjZWUwYmZhODczMTBlNjMwZDcwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqnJSHXd65dFJOMFuuMcxqe2AAqSm
FPhB/GD1pNDgMTtcVPSpU5Je5wPRB294i7TakuyD6XogKvztKpsfNkK3vWm90sS3
4SUsURAAdiIFupo7A4kMdc7iqn5nX0oivoI/hv9xeD+Q2H/W8ecdvgevGJ3Mh6nQ
gXyaKVJ95hC3CPRqka3bTM407Ykh+9Dou2Cj3/Vk4RvH7hLQnkot6Afpb7VQEXDp
dH7vltHG4VUpRqmoSguYUNG+tswJOfxfmcUvCrtAigBwGBosjxYFUF3e8T0Y+dcj
BA/+W3LCoLGX6pCS3W4JHS9iaZ8f1J/InUQomVVc+UYY5P6ZJzoNmr8peQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFDkOSuRHHxIzjdXM7gv6hzEOYw1wMB8GA1UdIwQY
MBaAFNVjdpL/XEVIbRBTsUncFCACbNczMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDkt
YWRlYWRlMjg2NWMxLzEvT1E1SzVFY2ZFak9OMWN6dUNfcUhNUTVqRFhBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZi85OGUxMTMtZTAwMi00ZDkzLTlhNDktYWRlYWRlMjg2NWMx
LzEvMVdOMmt2OWNSVWh0RUZPeFNkd1VJQUpzMXpNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZVcMA0G
CSqGSIb3DQEBCwUAA4IBAQAgZGFqBg+NAudGvKYRkt944GSrudivfjGwMdrZtXXu
2yXyr8lujP+V91opePDfe+h+8hWU6v0nTzu+m6Dr2DGXuFhFbMHW76USn7lPe/Sv
5QmZ63BHdHcHn1Sjahus3YGx5D0Le/8f7DI0DMAIQrz3SL3opfSU52oepp+r5uuX
8XOyj94lTPhCJILqU5WArGa8IZUAmady+iaNDzCTqo0jRz4qnRqDKqKcEBGDukZA
SD7DiWLh0NwlyEgdQ0Zgz3VZG3jqmwlYmhxtbAscLGXnGhoVMR3F3FE7EX6hEWH9
cj1ZTyymWP2nmOjam+UO9/DPNTwAZ2Ma7U49u8VJPrY9
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:13 2023 by rpki-client on console-fra.rpki-client.org