Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/SBpm_vtSuaAZLGGw3clgY74Sn1c.roa
File: SBpm_vtSuaAZLGGw3clgY74Sn1c.roa (raw, json)
Hash identifier: S65y7COzuVQTpbhxKcovRtkyaSPC+LoZWugPDTgW/N4=
Subject key identifier: 48:1A:66:FE:FB:52:B9:A0:19:2C:61:B0:DD:C9:60:63:BE:12:9F:57
Certificate issuer: /CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Certificate serial: 075DE67E
Authority key identifier: 9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/SBpm_vtSuaAZLGGw3clgY74Sn1c.roa
Signing time: Sat 01 Jan 2022 03:51:30 +0000
ROA not before: Sat 01 Jan 2022 03:51:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 137409
IP address blocks: 45.150.53.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123594366 (0x75de67e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9b0c0d04225566db95e9ad3b2ef605014975aaa2
Validity
Not Before: Jan 1 03:51:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=481a66fefb52b9a0192c61b0ddc96063be129f57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:3e:3e:7d:ec:5c:2d:13:75:ae:6e:2c:a2:8c:
65:12:02:99:1d:e9:e9:d6:75:82:b9:34:f1:57:5f:
81:7d:96:9b:25:60:da:02:00:66:80:88:a5:58:00:
56:6c:a6:81:ab:40:a5:92:0b:5d:7f:ad:47:ff:18:
15:52:bb:7c:0f:e6:34:ac:fb:88:f2:ef:68:b5:1f:
9c:67:57:b4:1d:28:14:0d:cc:8e:aa:99:7f:0b:b3:
5f:cc:c0:f4:c1:eb:69:49:fb:bf:bc:77:1d:13:2b:
7c:b4:7d:e9:99:94:29:7a:27:5e:3c:cd:06:30:f8:
a3:b1:20:c2:75:fb:c6:ff:6e:00:5a:05:69:fb:92:
76:7d:50:e6:b4:93:6d:79:97:da:50:79:5b:13:88:
7a:2d:79:29:a7:5a:c5:14:cc:b6:d6:cc:07:b6:08:
7d:3c:3b:5b:1e:d5:f4:7f:26:4c:a3:a1:af:4c:15:
48:8e:60:29:3f:7a:56:22:0f:ae:de:5e:2e:b7:bc:
50:fe:1b:3a:15:e5:ec:9c:7e:4a:16:1f:7b:05:f5:
69:c5:59:da:1e:80:92:f0:53:96:51:3f:88:2c:84:
34:f4:ff:d1:30:2b:d4:58:88:8e:a3:a3:9e:ad:e2:
69:cd:d5:5c:05:ba:eb:eb:3e:44:86:14:5c:78:e9:
5d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:1A:66:FE:FB:52:B9:A0:19:2C:61:B0:DD:C9:60:63:BE:12:9F:57
X509v3 Authority Key Identifier:
keyid:9B:0C:0D:04:22:55:66:DB:95:E9:AD:3B:2E:F6:05:01:49:75:AA:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mwwNBCJVZtuV6a07LvYFAUl1qqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/SBpm_vtSuaAZLGGw3clgY74Sn1c.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/0ec6d2-f1d7-4b0a-ad33-e8ef2f09598e/1/mwwNBCJVZtuV6a07LvYFAUl1qqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.150.53.0/24
Signature Algorithm: sha256WithRSAEncryption
87:91:08:2e:a7:d0:23:36:fd:31:a2:22:07:d8:16:9e:60:e4:
af:5c:3b:4d:4e:2e:d8:e9:c6:58:95:da:e3:c1:7f:02:8c:49:
d7:cb:61:e6:1f:2a:50:3d:39:63:1c:9e:a6:2c:40:49:bb:b2:
41:82:29:dc:c4:42:4e:d9:74:8d:e6:f1:5a:31:94:dc:13:05:
5a:d2:90:06:35:70:b6:fb:d0:2e:c9:ea:6c:34:ed:6e:a5:10:
b9:ed:72:7d:be:2c:7c:bf:7d:30:18:cc:1b:66:80:ca:35:3b:
a0:da:70:88:71:ce:68:52:85:b1:87:8b:b7:a9:cc:df:93:54:
d0:92:01:88:78:fb:d8:cd:63:1e:a4:6a:83:ee:8a:20:34:c1:
a1:60:27:9f:78:aa:01:55:7e:bd:59:0f:f1:09:c4:4f:f7:f2:
3c:9a:83:2f:43:dc:43:0a:71:63:98:10:bc:25:70:b5:9f:36:
e6:6a:20:e3:d6:83:1b:f3:4b:eb:33:23:c4:e6:ea:5e:9a:da:
86:50:89:cc:99:88:75:f0:5e:52:d0:da:66:a6:e2:42:9c:7f:
63:0c:4e:10:00:fc:88:92:7e:0d:3c:2e:17:28:57:da:84:ab:
5d:2d:b4:76:69:b0:c4:42:8d:62:3d:46:47:2b:92:1b:6a:d3:
fc:a0:cb:fe
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB13mfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
YjBjMGQwNDIyNTU2NmRiOTVlOWFkM2IyZWY2MDUwMTQ5NzVhYWEyMB4XDTIyMDEw
MTAzNTEzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNDgxYTY2ZmVmYjUy
YjlhMDE5MmM2MWIwZGRjOTYwNjNiZTEyOWY1NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMU+Pn3sXC0Tda5uLKKMZRICmR3p6dZ1grk08VdfgX2WmyVg
2gIAZoCIpVgAVmymgatApZILXX+tR/8YFVK7fA/mNKz7iPLvaLUfnGdXtB0oFA3M
jqqZfwuzX8zA9MHraUn7v7x3HRMrfLR96ZmUKXonXjzNBjD4o7EgwnX7xv9uAFoF
afuSdn1Q5rSTbXmX2lB5WxOIei15KadaxRTMttbMB7YIfTw7Wx7V9H8mTKOhr0wV
SI5gKT96ViIPrt5eLre8UP4bOhXl7Jx+ShYfewX1acVZ2h6AkvBTllE/iCyENPT/
0TAr1FiIjqOjnq3iac3VXAW66+s+RIYUXHjpXYcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRIGmb++1K5oBksYbDdyWBjvhKfVzAfBgNVHSMEGDAWgBSbDA0EIlVm25Xp
rTsu9gUBSXWqojAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L213d05CQ0pWWnR1VjZhMDdMdllGQVVsMXFxSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvMGVjNmQyLWYxZDctNGIwYS1hZDMzLWU4ZWYyZjA5NTk4ZS8x
L1NCcG1fdnRTdWFBWkxHR3czY2xnWTc0U24xYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
MGVjNmQyLWYxZDctNGIwYS1hZDMzLWU4ZWYyZjA5NTk4ZS8xL213d05CQ0pWWnR1
VjZhMDdMdllGQVVsMXFxSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2WNTANBgkqhkiG9w0BAQsFAAOC
AQEAh5EILqfQIzb9MaIiB9gWnmDkr1w7TU4u2OnGWJXa48F/AoxJ18th5h8qUD05
YxyepixASbuyQYIp3MRCTtl0jebxWjGU3BMFWtKQBjVwtvvQLsnqbDTtbqUQue1y
fb4sfL99MBjMG2aAyjU7oNpwiHHOaFKFsYeLt6nM35NU0JIBiHj72M1jHqRqg+6K
IDTBoWAnn3iqAVV+vVkP8QnET/fyPJqDL0PcQwpxY5gQvCVwtZ825mog49aDG/NL
6zMjxObqXprahlCJzJmIdfBeUtDaZqbiQpx/YwxOEAD8iJJ+DTwuFyhX2oSrXS20
dmmwxEKNYj1GRyuSG2rT/KDL/g==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:12 2023 by rpki-client on console-ams.rpki-client.org