Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/1-mC_nHdZUxNBhde8EDd4wq7zVvo.roa
File: 1-mC_nHdZUxNBhde8EDd4wq7zVvo.roa (raw, json)
Hash identifier: appxAGHQj6YIAe11/6IRl1CmfrPL6gcxJbzqGabkUzA=
Subject key identifier: FA:60:BF:9C:77:59:53:13:41:85:D7:BC:10:37:78:C2:AE:F3:56:FA
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01848B2125F867D5F855D4F60A36C12273F6
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/1-mC_nHdZUxNBhde8EDd4wq7zVvo.roa
Signing time: Fri 18 Nov 2022 14:25:16 +0000
ROA not before: Fri 18 Nov 2022 14:25:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8452
IP address blocks: 45.141.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:8b:21:25:f8:67:d5:f8:55:d4:f6:0a:36:c1:22:73:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Nov 18 14:25:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fa60bf9c775953134185d7bc103778c2aef356fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:2a:70:cd:8e:f4:e6:4a:aa:f5:c6:f3:36:f3:
d2:f9:af:22:b6:e4:ce:53:4b:d7:10:e6:0c:79:cf:
9e:02:4e:29:38:40:79:2e:91:1d:69:31:ed:90:81:
ce:66:c4:16:85:7a:31:15:2a:5b:0d:63:80:ba:2c:
5d:c4:fe:ed:a7:94:5a:20:4e:67:53:2e:4f:f6:aa:
47:6e:a1:0d:3c:f5:20:0e:4a:cb:03:5e:89:9e:9e:
39:95:44:64:a5:81:63:69:42:a0:32:c0:20:dc:07:
f2:44:e3:16:04:74:b2:ab:b7:2e:fa:94:c6:e7:56:
20:68:45:04:5d:ae:01:dc:b8:53:8c:8b:90:0d:30:
2a:8f:2b:5e:55:63:14:c0:c2:55:e2:c7:0e:77:4a:
50:f8:e9:90:d8:25:0a:a4:ed:82:d3:15:2e:5a:c3:
32:ca:71:30:b1:db:ea:78:69:a5:9a:54:a0:32:91:
0f:33:9b:e1:b1:bc:46:d8:52:c2:cf:ac:c4:71:87:
76:03:2b:3e:db:29:55:e4:ea:2f:5c:ea:3d:9f:16:
bd:52:92:bc:fa:54:1b:81:82:de:c2:2d:5a:1b:b4:
57:c9:ee:45:c9:e0:70:80:93:eb:f1:94:c4:0a:76:
1e:bf:61:e0:ce:5b:f5:57:ff:9c:e4:38:57:33:52:
8e:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:60:BF:9C:77:59:53:13:41:85:D7:BC:10:37:78:C2:AE:F3:56:FA
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/1-mC_nHdZUxNBhde8EDd4wq7zVvo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.25.0/24
Signature Algorithm: sha256WithRSAEncryption
81:17:44:a6:34:4a:6d:6f:c5:7c:35:50:50:26:44:fd:04:0a:
4b:b8:6d:a7:d4:36:b7:ac:3a:f1:72:a9:bd:04:f6:5d:a3:4a:
d0:8a:fe:7c:46:1f:8e:fc:bd:3f:ed:f9:7c:bb:0d:62:5f:e0:
b8:dd:58:bc:09:1b:d2:57:05:96:8f:50:3c:ab:bc:16:94:1f:
a7:df:cf:2a:56:09:55:06:55:09:e9:ba:dc:f3:87:aa:d9:1f:
a6:d6:fd:b8:6c:cb:57:91:ec:4c:fc:28:7e:aa:92:a1:88:bd:
14:4d:ee:d8:50:cc:53:6b:37:22:96:af:10:6a:95:56:0c:82:
9d:bc:8f:62:d7:33:bc:d0:3b:b3:45:b5:4c:61:a4:ae:a8:1f:
5a:99:9a:fc:86:73:fd:c0:d6:98:d6:6f:e7:b9:d1:fa:28:57:
c0:60:ac:e4:3d:5c:36:59:74:5f:0f:5f:f7:a1:05:69:a8:66:
65:e0:84:70:f0:11:f2:05:ea:37:d0:03:00:5e:e1:64:8d:bd:
ff:df:11:19:27:6f:41:55:01:d8:c0:e4:3b:8a:c2:27:40:50:
2d:65:6e:5f:a9:38:a0:9c:11:5f:3b:21:1e:54:9a:f9:0c:c2:
0f:b6:76:76:3f:17:e5:43:6c:4f:19:1e:f4:49:c0:5a:38:4c:
1d:74:15:59
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISAYSLISX4Z9X4VdT2CjbBInP2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjIxMTE4MTQyNTE2WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhmYTYwYmY5Yzc3NTk1MzEzNDE4NWQ3YmMxMDM3NzhjMmFlZjM1NmZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxSpwzY705kqq9cbzNvPS+a8ituTO
U0vXEOYMec+eAk4pOEB5LpEdaTHtkIHOZsQWhXoxFSpbDWOAuixdxP7tp5RaIE5n
Uy5P9qpHbqENPPUgDkrLA16Jnp45lURkpYFjaUKgMsAg3AfyROMWBHSyq7cu+pTG
51YgaEUEXa4B3LhTjIuQDTAqjyteVWMUwMJV4scOd0pQ+OmQ2CUKpO2C0xUuWsMy
ynEwsdvqeGmlmlSgMpEPM5vhsbxG2FLCz6zEcYd2Ays+2ylV5OovXOo9nxa9UpK8
+lQbgYLewi1aG7RXye5FyeBwgJPr8ZTECnYev2Hgzlv1V/+c5DhXM1KOdwIDAQAB
o4ICCjCCAgYwHQYDVR0OBBYEFPpgv5x3WVMTQYXXvBA3eMKu81b6MB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jgYIKwYBBQUHAQsEgYEwfzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvMS1tQ19uSGRaVXhOQmhkZThFRGQ0d3E3elZ2by5yb2Ew
gYEGA1UdHwR6MHgwdqB0oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0
b3J5L0RFRkFVTFQvYmMvOGRkODVhLWJmOGYtNDI1ZS1hMjRiLTJjY2VkYjk2NmE1
OC8xL05zS2t0OVhYUEZ0WEJHSWp2ekRyWlRBRnNPSS5jcmwwGAYDVR0gAQH/BA4w
DDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2NGTAN
BgkqhkiG9w0BAQsFAAOCAQEAgRdEpjRKbW/FfDVQUCZE/QQKS7htp9Q2t6w68XKp
vQT2XaNK0Ir+fEYfjvy9P+35fLsNYl/guN1YvAkb0lcFlo9QPKu8FpQfp9/PKlYJ
VQZVCem63POHqtkfptb9uGzLV5HsTPwofqqSoYi9FE3u2FDMU2s3IpavEGqVVgyC
nbyPYtczvNA7s0W1TGGkrqgfWpma/IZz/cDWmNZv57nR+ihXwGCs5D1cNll0Xw9f
96EFaahmZeCEcPAR8gXqN9ADAF7hZI29/98RGSdvQVUB2MDkO4rCJ0BQLWVuX6k4
oJwRXzshHlSa+QzCD7Z2dj8X5UNsTxke9EnAWjhMHXQVWQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:02:57 2023 by rpki-client on console-fra.rpki-client.org