Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/pfH0OxviEC390KhME-8gBswnybw.roa
File: pfH0OxviEC390KhME-8gBswnybw.roa (raw, json)
Hash identifier: da/eDHapKUpGiHoLCAxWU4JQK8rq2GTNbeo8vg6k66Q=
Subject key identifier: A5:F1:F4:3B:1B:E2:10:2D:FD:D0:A8:4C:13:EF:20:06:CC:27:C9:BC
Certificate issuer: /CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Certificate serial: 08C7F67D
Authority key identifier: 32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/pfH0OxviEC390KhME-8gBswnybw.roa
Signing time: Wed 13 Apr 2022 18:04:30 +0000
ROA not before: Wed 13 Apr 2022 18:04:30 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48266
IP address blocks: 45.141.54.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 147322493 (0x8c7f67d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32474ac7ca85e09c2d48b33e7bf66f8ed764de0f
Validity
Not Before: Apr 13 18:04:30 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a5f1f43b1be2102dfdd0a84c13ef2006cc27c9bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:ee:ea:d1:68:32:25:4e:ad:00:ef:cc:00:fa:
29:68:35:2d:b8:8b:a0:24:04:a3:ad:55:11:f6:05:
04:8c:a9:a6:7b:23:ef:93:54:f1:eb:c6:a2:ce:5b:
10:7b:c1:7a:3c:e8:d5:2d:67:89:5e:81:77:de:9f:
ac:13:d4:fb:c5:82:2d:53:1d:7c:15:f4:8c:46:5a:
50:38:d5:77:29:2e:a7:4b:ba:dd:67:d8:bd:cf:21:
65:70:35:0d:66:30:78:df:b8:a6:fd:50:44:6b:5f:
94:07:e1:53:4c:ee:81:55:47:c5:c9:16:cc:e1:2c:
4c:ed:76:f8:c5:a8:80:09:06:0a:b8:8d:5f:c8:58:
0b:65:23:b4:dc:03:15:8f:00:70:f4:e6:38:60:63:
0d:b9:7b:f4:14:99:68:de:43:9a:7d:ca:1f:9b:90:
6a:85:21:31:bf:71:39:29:2a:30:67:75:9c:7b:76:
08:62:09:d9:73:c7:2a:b9:ce:fc:69:a2:05:a4:a5:
2f:7a:34:8f:55:16:d0:56:ae:81:29:9e:00:98:92:
f1:f0:e3:2d:0b:87:48:36:bf:f0:b7:85:74:87:ba:
1b:1b:e5:0d:47:f7:71:30:70:bf:23:49:3b:50:78:
ad:f7:34:67:18:fc:46:8c:ef:8b:48:c6:68:9f:28:
e7:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:F1:F4:3B:1B:E2:10:2D:FD:D0:A8:4C:13:EF:20:06:CC:27:C9:BC
X509v3 Authority Key Identifier:
keyid:32:47:4A:C7:CA:85:E0:9C:2D:48:B3:3E:7B:F6:6F:8E:D7:64:DE:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/pfH0OxviEC390KhME-8gBswnybw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/1fd0a6-4517-4a0b-b3c9-12ec22c9c5a2/1/MkdKx8qF4JwtSLM-e_Zvjtdk3g8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.141.54.0/24
Signature Algorithm: sha256WithRSAEncryption
35:df:40:d5:fa:07:3d:ce:98:06:7a:1b:67:c9:4e:bc:68:9d:
78:92:64:47:d6:13:e4:2a:cd:f7:00:c3:d3:55:e0:a6:af:5d:
53:4d:ba:0d:83:be:51:e7:55:78:d6:f6:a6:25:94:a9:2b:4e:
92:2b:6e:b4:9d:a4:51:cc:99:64:2c:cf:3b:cf:93:3c:6e:ad:
b9:11:6a:82:c5:3e:92:9b:78:96:6f:f4:b4:26:f4:53:41:2c:
b2:6a:cc:58:5b:b1:a0:a9:f1:6f:41:ee:32:17:ae:dc:44:1b:
7e:ce:17:e2:4f:e9:47:7f:b3:6f:ed:39:c2:0f:58:9b:eb:c7:
57:68:43:9e:64:0b:0f:a2:fd:ec:d8:1a:d1:15:4c:61:50:f9:
58:0d:f2:f2:8c:96:ec:30:fb:3e:24:6e:a2:ff:aa:cc:06:b0:
3e:53:44:16:f0:53:27:44:02:7a:7d:ee:90:1e:22:ab:96:1c:
86:86:2d:25:03:ef:9f:8b:dd:8f:58:fc:9f:45:70:e7:15:13:
a4:4f:d9:96:5e:18:6a:cc:cc:d7:99:f3:36:9c:42:18:c1:ba:
11:4e:98:25:ff:b6:40:2d:75:a7:56:31:f8:5a:44:ed:4d:bb:
e6:30:bd:5e:c8:39:f2:5e:fb:de:e3:83:b0:a9:6f:8d:f0:51:
6f:6b:4d:35
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECMf2fTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygz
MjQ3NGFjN2NhODVlMDljMmQ0OGIzM2U3YmY2NmY4ZWQ3NjRkZTBmMB4XDTIyMDQx
MzE4MDQzMFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTVmMWY0M2IxYmUy
MTAyZGZkZDBhODRjMTNlZjIwMDZjYzI3YzliYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKHu6tFoMiVOrQDvzAD6KWg1LbiLoCQEo61VEfYFBIyppnsj
75NU8evGos5bEHvBejzo1S1niV6Bd96frBPU+8WCLVMdfBX0jEZaUDjVdykup0u6
3WfYvc8hZXA1DWYweN+4pv1QRGtflAfhU0zugVVHxckWzOEsTO12+MWogAkGCriN
X8hYC2UjtNwDFY8AcPTmOGBjDbl79BSZaN5Dmn3KH5uQaoUhMb9xOSkqMGd1nHt2
CGIJ2XPHKrnO/GmiBaSlL3o0j1UW0FaugSmeAJiS8fDjLQuHSDa/8LeFdIe6Gxvl
DUf3cTBwvyNJO1B4rfc0Zxj8Rozvi0jGaJ8o5zUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSl8fQ7G+IQLf3QqEwT7yAGzCfJvDAfBgNVHSMEGDAWgBQyR0rHyoXgnC1I
sz579m+O12TeDzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L01rZEt4OHFGNEp3dFNMTS1lX1p2anRkazNnOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYmQvMWZkMGE2LTQ1MTctNGEwYi1iM2M5LTEyZWMyMmM5YzVhMi8x
L3BmSDBPeHZpRUMzOTBLaE1FLThnQnN3bnlidy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQv
MWZkMGE2LTQ1MTctNGEwYi1iM2M5LTEyZWMyMmM5YzVhMi8xL01rZEt4OHFGNEp3
dFNMTS1lX1p2anRkazNnOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2NNjANBgkqhkiG9w0BAQsFAAOC
AQEANd9A1foHPc6YBnobZ8lOvGideJJkR9YT5CrN9wDD01Xgpq9dU026DYO+UedV
eNb2piWUqStOkitutJ2kUcyZZCzPO8+TPG6tuRFqgsU+kpt4lm/0tCb0U0EssmrM
WFuxoKnxb0HuMheu3EQbfs4X4k/pR3+zb+05wg9Ym+vHV2hDnmQLD6L97Nga0RVM
YVD5WA3y8oyW7DD7PiRuov+qzAawPlNEFvBTJ0QCen3ukB4iq5YchoYtJQPvn4vd
j1j8n0Vw5xUTpE/Zll4YaszM15nzNpxCGMG6EU6YJf+2QC11p1Yx+FpE7U275jC9
Xsg58l773uODsKlvjfBRb2tNNQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:59 2023 by rpki-client on console-ams.rpki-client.org