Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/gtPsWjUT5tQwFhgcJ4ptQwk3GRM.roa
File: gtPsWjUT5tQwFhgcJ4ptQwk3GRM.roa (raw, json)
Hash identifier: QOVxRv+bTWSYCzaJ4WZJlw4kFyfH2iEVD8sgLR5q/eA=
Subject key identifier: 82:D3:EC:5A:35:13:E6:D4:30:16:18:1C:27:8A:6D:43:09:37:19:13
Certificate issuer: /CN=e754c347d68d15493de71bb962f0a567e134d603
Certificate serial: 1C08DE03
Authority key identifier: E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/gtPsWjUT5tQwFhgcJ4ptQwk3GRM.roa
Signing time: Fri 20 May 2022 15:14:29 +0000
ROA not before: Fri 20 May 2022 15:14:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 42831
IP address blocks: 45.43.64.0/23 maxlen: 24
45.43.84.0/23 maxlen: 24
45.43.86.0/24 maxlen: 24
107.181.146.0/23 maxlen: 24
89.33.6.0/23 maxlen: 24
2a05:9f40:1f::/48 maxlen: 48
2a05:9f44:2a05::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 470343171 (0x1c08de03)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e754c347d68d15493de71bb962f0a567e134d603
Validity
Not Before: May 20 15:14:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=82d3ec5a3513e6d43016181c278a6d4309371913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:1f:8f:ed:ed:f4:3a:9e:ad:67:96:c2:c0:ad:
13:d7:1d:6d:41:13:b0:31:91:57:c3:40:10:f3:26:
67:59:66:35:7d:81:74:9b:17:20:bb:20:68:8a:c2:
34:db:70:47:c1:d3:b9:1e:97:27:89:f5:97:da:8f:
f7:ed:32:cc:fe:36:5f:1c:d3:2d:09:a2:88:7f:16:
ed:69:df:62:1b:56:24:0f:8c:d7:7b:57:3a:fe:2f:
cc:f4:fe:f0:ae:e2:01:15:df:3b:b1:43:81:ec:3f:
f7:7d:2a:3d:b4:15:43:2b:97:dc:37:ae:89:81:85:
bf:d4:72:47:90:76:7c:31:ee:bc:31:89:f7:d3:fb:
49:31:c4:18:ed:75:3e:98:fe:59:e0:8d:4a:4e:7c:
6a:53:93:6e:f9:d9:3a:02:c5:68:4c:91:d8:b4:ae:
77:3c:de:83:5e:d0:44:9b:e6:81:f8:ac:be:32:70:
b8:27:9b:47:de:e2:e4:27:e0:81:f6:7f:95:99:e9:
f1:aa:49:22:6d:5b:ab:bd:fd:fa:81:73:a5:ba:f6:
80:11:88:42:4a:6c:9d:97:f6:14:c7:15:7d:df:99:
07:4e:44:e5:9a:01:7c:3b:3a:b4:93:03:39:3c:34:
e7:1c:b3:a1:0b:5f:c2:05:32:b7:d8:53:34:29:9f:
77:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:D3:EC:5A:35:13:E6:D4:30:16:18:1C:27:8A:6D:43:09:37:19:13
X509v3 Authority Key Identifier:
keyid:E7:54:C3:47:D6:8D:15:49:3D:E7:1B:B9:62:F0:A5:67:E1:34:D6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/51TDR9aNFUk95xu5YvClZ-E01gM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/gtPsWjUT5tQwFhgcJ4ptQwk3GRM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/46db3a-a573-4f28-b43b-37b62d223924/1/51TDR9aNFUk95xu5YvClZ-E01gM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.43.64.0/23
45.43.84.0-45.43.86.255
89.33.6.0/23
107.181.146.0/23
IPv6:
2a05:9f40:1f::/48
2a05:9f44:2a05::/48
Signature Algorithm: sha256WithRSAEncryption
b0:49:13:81:42:f4:89:32:65:21:65:54:de:7f:ca:b1:c2:6c:
db:c1:23:13:a7:04:ab:53:9a:69:f8:d0:4e:a0:73:63:ed:e8:
67:45:ba:e1:33:0a:03:84:95:0a:b2:a2:cf:87:05:7d:89:09:
b2:19:55:e0:25:1f:db:fc:d1:db:40:21:ca:a9:23:ce:f3:a8:
57:cf:fd:9a:11:f3:d8:a9:a4:d7:77:0b:49:e9:c1:3a:f5:8f:
b7:a6:48:2e:51:83:8e:16:fc:bd:b5:5f:94:94:57:90:32:62:
74:57:d6:02:29:38:4d:31:33:ab:8b:35:a8:4a:50:77:e1:19:
91:db:0c:ef:a6:55:74:c8:87:59:1e:38:9b:b8:ea:14:67:20:
a6:ae:73:21:60:96:37:49:af:1a:31:9e:fb:84:4a:b8:3e:89:
9c:e2:04:56:ec:08:aa:a8:df:d4:72:16:dc:56:da:0f:55:0f:
14:87:a8:bd:6e:09:27:07:ce:3a:f3:81:f2:fe:91:6b:a0:36:
87:2d:1f:73:64:4b:fd:52:0b:26:5e:6f:70:47:d8:bf:36:a1:
16:fb:ce:01:09:76:c4:9e:85:80:11:c0:8c:da:55:28:c8:25:
4c:8b:01:91:a6:c8:04:83:e4:3c:46:79:6f:7c:88:47:43:ab:
48:4c:fa:e6
-----BEGIN CERTIFICATE-----
MIIFIzCCBAugAwIBAgIEHAjeAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
NzU0YzM0N2Q2OGQxNTQ5M2RlNzFiYjk2MmYwYTU2N2UxMzRkNjAzMB4XDTIyMDUy
MDE1MTQyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODJkM2VjNWEzNTEz
ZTZkNDMwMTYxODFjMjc4YTZkNDMwOTM3MTkxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKofj+3t9DqerWeWwsCtE9cdbUETsDGRV8NAEPMmZ1lmNX2B
dJsXILsgaIrCNNtwR8HTuR6XJ4n1l9qP9+0yzP42XxzTLQmiiH8W7WnfYhtWJA+M
13tXOv4vzPT+8K7iARXfO7FDgew/930qPbQVQyuX3DeuiYGFv9RyR5B2fDHuvDGJ
99P7STHEGO11Ppj+WeCNSk58alOTbvnZOgLFaEyR2LSudzzeg17QRJvmgfisvjJw
uCebR97i5CfggfZ/lZnp8apJIm1bq739+oFzpbr2gBGIQkpsnZf2FMcVfd+ZB05E
5ZoBfDs6tJMDOTw05xyzoQtfwgUyt9hTNCmfd28CAwEAAaOCAj0wggI5MB0GA1Ud
DgQWBBSC0+xaNRPm1DAWGBwnim1DCTcZEzAfBgNVHSMEGDAWgBTnVMNH1o0VST3n
G7li8KVn4TTWAzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzUxVERSOWFORlVrOTV4dTVZdkNsWi1FMDFnTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYjAvNDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8x
L2d0UHNXalVUNXRRd0ZoZ2NKNHB0UXdrM0dSTS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjAv
NDZkYjNhLWE1NzMtNGYyOC1iNDNiLTM3YjYyZDIyMzkyNC8xLzUxVERSOWFORlVr
OTV4dTVZdkNsWi1FMDFnTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBT
BggrBgEFBQcBBwEB/wREMEIwJgQCAAEwIAMEAS0rQDAMAwQCLStUAwQALStWAwQB
WSEGAwQBa7WSMBgEAgACMBIDBwAqBZ9AAB8DBwAqBZ9EKgUwDQYJKoZIhvcNAQEL
BQADggEBALBJE4FC9IkyZSFlVN5/yrHCbNvBIxOnBKtTmmn40E6gc2Pt6GdFuuEz
CgOElQqyos+HBX2JCbIZVeAlH9v80dtAIcqpI87zqFfP/ZoR89ippNd3C0npwTr1
j7emSC5Rg44W/L21X5SUV5AyYnRX1gIpOE0xM6uLNahKUHfhGZHbDO+mVXTIh1ke
OJu46hRnIKaucyFgljdJrxoxnvuESrg+iZziBFbsCKqo39RyFtxW2g9VDxSHqL1u
CScHzjrzgfL+kWugNoctH3NkS/1SCyZeb3BH2L82oRb7zgEJdsSehYARwIzaVSjI
JUyLAZGmyASD5DxGeW98iEdDq0hM+uY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:04 2024 by rpki-client on console-fra.rpki-client.org