Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/p3M55XP3Hf4VdCl7ZDiNFFcIFTE.roa
File: p3M55XP3Hf4VdCl7ZDiNFFcIFTE.roa (raw, json)
Hash identifier: RkQ82infdx2weaH0uqD5ARl6jWkandN6Ka4x4vRxDMs=
Subject key identifier: A7:73:39:E5:73:F7:1D:FE:15:74:29:7B:64:38:8D:14:57:08:15:31
Certificate issuer: /CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Certificate serial: 01823A53721F91706A1351DD2242322A5F4E
Authority key identifier: 36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/p3M55XP3Hf4VdCl7ZDiNFFcIFTE.roa
Signing time: Tue 26 Jul 2022 11:45:23 +0000
ROA not before: Tue 26 Jul 2022 11:45:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 45671
IP address blocks: 45.133.7.0/24 maxlen: 24
45.133.6.0/24 maxlen: 24
45.67.96.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:3a:53:72:1f:91:70:6a:13:51:dd:22:42:32:2a:5f:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=36c2a4b7d5d73c5b57046223bf30eb653005b0e2
Validity
Not Before: Jul 26 11:45:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a77339e573f71dfe1574297b64388d1457081531
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:15:49:7e:92:79:2f:33:7d:24:3c:91:d0:dc:
13:fd:52:3c:15:b3:ed:ba:e4:5d:dd:a1:c5:f1:a9:
ac:29:c9:d8:b1:fb:52:23:f1:18:2e:08:d2:87:af:
8e:26:d5:de:a6:e3:30:31:08:6d:cd:28:03:4f:a7:
1a:4d:5a:6f:5f:7a:21:18:d3:51:f4:dd:33:84:f8:
a6:ac:44:6d:cb:90:f8:b8:8a:08:21:36:21:a4:40:
3e:52:5b:f0:86:0c:99:f5:2f:93:6d:aa:d5:4e:da:
28:10:98:0f:55:4b:ae:cd:ee:c1:b6:5f:1b:13:d9:
7e:a6:b7:a7:15:90:c1:29:da:43:ea:af:2d:fd:f7:
aa:82:8a:25:5e:b6:a6:88:ac:25:72:20:24:4f:44:
4c:70:92:89:d6:2a:ad:a3:a2:44:ec:91:a2:4f:c0:
75:d4:63:3b:68:6f:76:90:25:5f:85:42:9f:b3:79:
45:68:dd:70:3c:71:26:48:a4:60:f6:fc:ff:df:0e:
64:ee:8a:da:db:a5:b6:06:9e:93:df:66:d2:09:ac:
46:1b:8f:cc:7d:80:f5:6a:e1:c3:ef:d2:d7:69:b8:
18:6b:00:6e:70:d0:1a:89:9a:3d:03:2a:f0:36:6e:
ec:02:60:86:e8:d7:d8:9a:b8:c6:7a:d8:8e:1b:bb:
12:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:73:39:E5:73:F7:1D:FE:15:74:29:7B:64:38:8D:14:57:08:15:31
X509v3 Authority Key Identifier:
keyid:36:C2:A4:B7:D5:D7:3C:5B:57:04:62:23:BF:30:EB:65:30:05:B0:E2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NsKkt9XXPFtXBGIjvzDrZTAFsOI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/p3M55XP3Hf4VdCl7ZDiNFFcIFTE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/8dd85a-bf8f-425e-a24b-2ccedb966a58/1/NsKkt9XXPFtXBGIjvzDrZTAFsOI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.96.0/24
45.133.6.0/23
Signature Algorithm: sha256WithRSAEncryption
75:64:81:3b:a0:1d:9c:d7:5b:16:e4:c1:05:0d:11:4c:f1:3c:
23:0b:d8:42:67:19:53:b8:bc:0a:76:31:56:eb:5c:41:55:99:
7c:36:15:16:2d:25:94:f1:03:44:65:4b:3e:e9:14:ac:78:73:
8f:a0:45:1e:05:e4:c5:9d:17:ad:f5:b0:18:83:ad:22:0a:49:
1e:b3:63:86:b8:e4:11:a2:73:04:44:3a:22:ba:7f:c2:7f:19:
ab:55:20:90:aa:a2:2b:b2:93:63:f1:16:d0:79:35:2b:e1:ab:
97:67:04:88:6b:b9:4c:c6:a8:8b:0f:61:ec:0a:eb:e3:bb:13:
db:25:ee:47:47:87:ac:fd:b4:63:bc:56:8e:0e:e8:28:06:41:
ce:48:05:d3:78:18:1c:c1:d1:fd:60:66:44:c0:62:68:02:1d:
15:ea:02:49:94:71:75:c6:48:cd:ce:3a:54:50:19:fb:76:50:
d1:b6:28:2a:c2:1d:c3:46:61:e8:e6:21:6c:4b:f4:63:6f:32:
e3:f7:34:c6:d8:40:34:95:f7:31:53:16:73:95:dd:ac:fb:74:
32:c7:c8:2f:20:06:2a:ef:db:e5:f0:93:90:c6:90:14:5a:de:
2c:41:a2:74:f5:03:91:79:05:74:04:3c:fe:71:f6:78:ec:57:
63:95:72:52
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYI6U3IfkXBqE1HdIkIyKl9OMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDM2YzJhNGI3ZDVkNzNjNWI1NzA0NjIyM2JmMzBlYjY1MzAw
NWIwZTIwHhcNMjIwNzI2MTE0NTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhNzczMzllNTczZjcxZGZlMTU3NDI5N2I2NDM4OGQxNDU3MDgxNTMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmhVJfpJ5LzN9JDyR0NwT/VI8FbPt
uuRd3aHF8amsKcnYsftSI/EYLgjSh6+OJtXepuMwMQhtzSgDT6caTVpvX3ohGNNR
9N0zhPimrERty5D4uIoIITYhpEA+UlvwhgyZ9S+TbarVTtooEJgPVUuuze7Btl8b
E9l+prenFZDBKdpD6q8t/feqgoolXramiKwlciAkT0RMcJKJ1iqto6JE7JGiT8B1
1GM7aG92kCVfhUKfs3lFaN1wPHEmSKRg9vz/3w5k7ora26W2Bp6T32bSCaxGG4/M
fYD1auHD79LXabgYawBucNAaiZo9AyrwNm7sAmCG6NfYmrjGetiOG7sSBQIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFKdzOeVz9x3+FXQpe2Q4jRRXCBUxMB8GA1UdIwQY
MBaAFDbCpLfV1zxbVwRiI78w62UwBbDiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGIt
MmNjZWRiOTY2YTU4LzEvcDNNNTVYUDNIZjRWZENsN1pEaU5GRmNJRlRFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy84ZGQ4NWEtYmY4Zi00MjVlLWEyNGItMmNjZWRiOTY2YTU4
LzEvTnNLa3Q5WFhQRnRYQkdJanZ6RHJaVEFGc09JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALUNgAwQB
LYUGMA0GCSqGSIb3DQEBCwUAA4IBAQB1ZIE7oB2c11sW5MEFDRFM8TwjC9hCZxlT
uLwKdjFW61xBVZl8NhUWLSWU8QNEZUs+6RSseHOPoEUeBeTFnRet9bAYg60iCkke
s2OGuOQRonMERDoiun/CfxmrVSCQqqIrspNj8RbQeTUr4auXZwSIa7lMxqiLD2Hs
CuvjuxPbJe5HR4es/bRjvFaODugoBkHOSAXTeBgcwdH9YGZEwGJoAh0V6gJJlHF1
xkjNzjpUUBn7dlDRtigqwh3DRmHo5iFsS/RjbzLj9zTG2EA0lfcxUxZzld2s+3Qy
x8gvIAYq79vl8JOQxpAUWt4sQaJ09QOReQV0BDz+cfZ47FdjlXJS
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:51:48 2024 by rpki-client on console-fra.rpki-client.org