Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/Lztr2vOEz-BK4JMAhp3yjbWEaWQ.roa
File: Lztr2vOEz-BK4JMAhp3yjbWEaWQ.roa (raw, json)
Hash identifier: elMT/PDKp6kEVZigaegmWH2NrdLBpOXz5sFahZwrT8k=
Subject key identifier: 2F:3B:6B:DA:F3:84:CF:E0:4A:E0:93:00:86:9D:F2:8D:B5:84:69:64
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 018332455F044D4772205D71721D769575EA
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/Lztr2vOEz-BK4JMAhp3yjbWEaWQ.roa
Signing time: Mon 12 Sep 2022 15:15:50 +0000
ROA not before: Mon 12 Sep 2022 15:15:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60699
IP address blocks: 45.150.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:32:45:5f:04:4d:47:72:20:5d:71:72:1d:76:95:75:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Sep 12 15:15:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2f3b6bdaf384cfe04ae09300869df28db5846964
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:90:95:26:3e:02:36:fc:40:1b:c5:7a:61:48:
c4:b8:24:e2:98:1c:0c:d8:08:46:89:c9:0d:a6:c1:
0b:e7:c3:aa:a4:e1:6c:80:12:80:3c:bc:78:43:dd:
5b:73:b7:86:0c:23:02:47:e4:5e:6f:dc:34:ab:23:
81:a3:33:78:97:ec:7c:22:cf:87:81:6f:ee:07:64:
8a:83:41:9e:60:ff:2c:f1:d6:bf:a8:3a:45:00:5b:
5d:ba:16:85:18:b9:59:c9:22:81:7f:34:51:a1:69:
74:a2:cb:66:33:a6:f1:4f:84:f6:35:a6:bb:03:f4:
cc:7f:4d:57:e0:18:ae:fe:f1:61:91:e3:29:ad:a2:
b2:93:dd:e8:a6:db:6e:bb:0a:27:b7:a9:cc:6c:a2:
57:e2:d6:73:4d:1a:ec:29:cf:2f:70:d2:84:d7:e3:
c7:b9:07:12:86:51:51:d6:3d:89:3f:22:f9:f2:e3:
69:25:5c:5a:60:6d:96:8d:ac:98:c5:6d:f2:61:71:
5b:59:92:a3:03:90:12:d5:f5:67:dd:c6:a4:99:cc:
5e:05:e8:2f:92:b6:b6:3d:00:dc:47:98:ee:97:bd:
f3:88:01:59:74:90:3c:a4:bd:99:43:28:78:cc:ee:
39:96:08:d7:56:f6:75:bd:21:d3:48:88:ce:09:f5:
2a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:3B:6B:DA:F3:84:CF:E0:4A:E0:93:00:86:9D:F2:8D:B5:84:69:64
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/Lztr2vOEz-BK4JMAhp3yjbWEaWQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.53.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:bd:8b:16:35:7d:e2:db:f5:67:6a:d5:06:32:e9:c4:0a:39:
44:02:bf:8d:aa:be:9e:8a:3d:b2:8a:45:07:38:e1:23:5a:b4:
3b:4e:cc:61:3a:93:e3:81:a9:96:42:2c:b6:e2:fb:0a:6f:31:
5e:b6:67:fe:cd:b0:9e:5a:fe:84:63:d3:ff:1a:a8:88:f5:12:
3d:ac:d1:f6:1d:9a:ae:a1:c2:01:45:84:01:bd:50:2d:01:c2:
03:c7:83:73:a1:f2:23:62:8e:67:52:a1:5f:c2:bb:bc:5c:98:
d3:0a:fe:5e:d7:66:90:73:62:ac:c4:f7:d6:7f:c3:b2:30:23:
3e:a8:cb:98:3f:b7:7e:c6:eb:d5:ae:06:bb:a7:68:a2:35:eb:
68:37:32:db:d0:28:80:49:3c:fc:22:f6:ba:a3:67:76:8f:96:
ff:da:f9:e6:be:91:8e:28:d6:5e:22:14:2d:2b:85:ad:48:98:
d2:7e:7b:ae:92:f2:78:85:5e:7b:24:0a:b3:fa:d2:88:40:b3:
88:6a:96:18:4d:8e:33:5d:ff:64:19:c8:5c:ff:a3:65:db:76:
4f:3a:86:ed:9f:7f:bf:5f:e0:b9:c9:bc:63:d3:52:05:6a:d3:
ec:11:e3:31:02:2f:f4:81:5a:3b:37:5e:aa:59:e3:34:a3:10:
0b:59:cc:2c
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMyRV8ETUdyIF1xch12lXXqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDliMGMwZDA0MjI1NTY2ZGI5NWU5YWQzYjJlZjYwNTAxNDk3
NWFhYTIwHhcNMjIwOTEyMTUxNTUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyZjNiNmJkYWYzODRjZmUwNGFlMDkzMDA4NjlkZjI4ZGI1ODQ2OTY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiJCVJj4CNvxAG8V6YUjEuCTimBwM
2AhGickNpsEL58OqpOFsgBKAPLx4Q91bc7eGDCMCR+Reb9w0qyOBozN4l+x8Is+H
gW/uB2SKg0GeYP8s8da/qDpFAFtduhaFGLlZySKBfzRRoWl0ostmM6bxT4T2Naa7
A/TMf01X4Biu/vFhkeMpraKyk93opttuuwont6nMbKJX4tZzTRrsKc8vcNKE1+PH
uQcShlFR1j2JPyL58uNpJVxaYG2WjayYxW3yYXFbWZKjA5AS1fVn3cakmcxeBegv
kra2PQDcR5jul73ziAFZdJA8pL2ZQyh4zO45lgjXVvZ1vSHTSIjOCfUqAwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFC87a9rzhM/gSuCTAIad8o21hGlkMB8GA1UdIwQY
MBaAFJsMDQQiVWbblemtOy72BQFJdaqiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMt
ZThlZjJmMDk1OThlLzEvTHp0cjJ2T0V6LUJLNEpNQWhwM3lqYldFYVdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC8wZWM2ZDItZjFkNy00YjBhLWFkMzMtZThlZjJmMDk1OThl
LzEvbXd3TkJDSlZadHVWNmEwN0x2WUZBVWwxcXFJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALZY1MA0G
CSqGSIb3DQEBCwUAA4IBAQBdvYsWNX3i2/VnatUGMunECjlEAr+Nqr6eij2yikUH
OOEjWrQ7TsxhOpPjgamWQiy24vsKbzFetmf+zbCeWv6EY9P/GqiI9RI9rNH2HZqu
ocIBRYQBvVAtAcIDx4NzofIjYo5nUqFfwru8XJjTCv5e12aQc2KsxPfWf8OyMCM+
qMuYP7d+xuvVrga7p2iiNetoNzLb0CiASTz8Iva6o2d2j5b/2vnmvpGOKNZeIhQt
K4WtSJjSfnuukvJ4hV57JAqz+tKIQLOIapYYTY4zXf9kGchc/6Nl23ZPOobtn3+/
X+C5ybxj01IFatPsEeMxAi/0gVo7N16qWeM0oxALWcws
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org