Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/1-rvG3m5-BZnI7Exrf-08bgzLtA0.roa
File: 1-rvG3m5-BZnI7Exrf-08bgzLtA0.roa (raw, json)
Hash identifier: W3P4kFLODt9iJpiROGCv5Nyr8/q2QRzy9mAlx6c4ou0=
Subject key identifier: FA:BB:C6:DE:6E:7E:05:99:C8:EC:4C:6B:7F:ED:3C:6E:0C:CB:B4:0D
Certificate issuer: /CN=a8122b9475d69daa928a5bdf1e4abd5e3900e4b3
Certificate serial: 0DC3F5
Authority key identifier: A8:12:2B:94:75:D6:9D:AA:92:8A:5B:DF:1E:4A:BD:5E:39:00:E4:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qBIrlHXWnaqSilvfHkq9XjkA5LM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/1-rvG3m5-BZnI7Exrf-08bgzLtA0.roa
Signing time: Wed 02 Mar 2022 15:58:29 +0000
ROA not before: Wed 02 Mar 2022 15:58:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 15404
IP address blocks: 45.134.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 902133 (0xdc3f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a8122b9475d69daa928a5bdf1e4abd5e3900e4b3
Validity
Not Before: Mar 2 15:58:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fabbc6de6e7e0599c8ec4c6b7fed3c6e0ccbb40d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d5:1e:89:69:6d:b6:a6:c5:70:ce:36:23:03:
d4:e4:9f:3f:c3:b8:74:f9:89:e3:7f:10:6a:58:46:
0f:d3:f1:e5:1a:b3:fb:82:d7:c1:52:e1:db:af:c4:
44:74:91:fb:d8:90:50:7c:1c:64:92:9f:7a:4f:dc:
db:b8:61:99:e8:05:bf:2e:13:6f:e5:4f:18:bb:25:
78:13:60:04:fb:e0:48:c4:18:fa:2a:a5:9e:ac:a3:
1a:1d:0c:60:6d:8a:1a:78:c8:1e:12:1a:f7:4a:08:
8a:67:3d:96:af:2a:d5:1e:28:ee:d4:2d:57:20:ce:
98:54:ba:18:a7:04:eb:d4:cf:0a:37:7f:ab:c5:01:
cb:e3:e6:71:9e:88:18:18:d7:3c:07:f7:71:52:53:
b5:a6:5d:6f:05:93:ff:b3:84:45:ff:6c:87:62:c5:
9b:9a:b4:5d:c3:88:7d:55:33:d3:28:f9:ea:4e:7e:
77:50:32:94:d6:2e:21:12:c7:c1:83:82:88:d9:02:
e7:a2:a7:f3:4e:13:3c:03:3b:f6:8a:04:3c:a2:15:
1e:9c:be:24:53:6f:ab:fa:1e:d0:7f:db:ba:5c:57:
29:cf:e6:6c:b9:34:fa:27:9b:32:85:ef:f9:8c:d8:
9c:fd:1c:ef:59:a8:84:be:fe:7f:b1:86:c1:d3:cc:
a9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:BB:C6:DE:6E:7E:05:99:C8:EC:4C:6B:7F:ED:3C:6E:0C:CB:B4:0D
X509v3 Authority Key Identifier:
keyid:A8:12:2B:94:75:D6:9D:AA:92:8A:5B:DF:1E:4A:BD:5E:39:00:E4:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qBIrlHXWnaqSilvfHkq9XjkA5LM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/1-rvG3m5-BZnI7Exrf-08bgzLtA0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/abc38c-57fb-448e-b603-8df20f87e77f/1/qBIrlHXWnaqSilvfHkq9XjkA5LM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.134.96.0/22
Signature Algorithm: sha256WithRSAEncryption
03:da:d3:7b:b3:35:ef:28:0c:b8:0e:e1:b8:ec:65:cc:ef:f2:
57:c5:13:ce:a2:b1:c7:f1:be:57:ca:6c:19:ca:1d:5a:71:dd:
2c:ff:06:4d:aa:54:97:f2:57:f1:22:00:93:c7:c0:a7:66:2b:
f1:da:48:ae:43:cc:ae:7c:67:58:5d:84:67:12:06:25:28:ec:
62:44:03:34:4d:9f:d9:cc:15:2f:0e:02:a7:12:bc:19:de:5b:
5f:ae:99:5a:f3:57:3a:57:9c:37:2b:3d:f8:25:4e:2d:ef:b0:
68:e0:61:d9:96:76:71:b8:c8:3d:5b:a9:06:d3:54:eb:60:18:
45:05:0f:d9:e7:33:62:e9:7b:48:67:e1:8d:35:f2:c7:37:31:
8a:d4:08:9b:1c:5b:7a:96:77:5b:c4:77:62:bd:c3:e7:42:0e:
62:85:0d:7e:1f:89:c2:86:d8:1b:de:cb:7f:ab:76:85:d6:cb:
cd:ef:be:46:2b:64:0c:6c:99:b9:94:83:cf:4d:a1:e5:29:cc:
5a:f6:1c:7c:89:36:4a:76:03:04:ef:db:6f:25:0b:10:50:90:
83:5b:91:fa:a2:f0:e4:01:76:de:c4:4c:66:d1:96:5f:9f:9b:
31:f0:7c:90:ed:81:7c:6f:71:9b:9e:54:be:d1:9d:74:25:2e:
26:e0:8a:5e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIDDcP1MA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKGE4
MTIyYjk0NzVkNjlkYWE5MjhhNWJkZjFlNGFiZDVlMzkwMGU0YjMwHhcNMjIwMzAy
MTU1ODI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhmYWJiYzZkZTZlN2Uw
NTk5YzhlYzRjNmI3ZmVkM2M2ZTBjY2JiNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEA4NUeiWlttqbFcM42IwPU5J8/w7h0+YnjfxBqWEYP0/HlGrP7
gtfBUuHbr8REdJH72JBQfBxkkp96T9zbuGGZ6AW/LhNv5U8YuyV4E2AE++BIxBj6
KqWerKMaHQxgbYoaeMgeEhr3SgiKZz2WryrVHiju1C1XIM6YVLoYpwTr1M8KN3+r
xQHL4+ZxnogYGNc8B/dxUlO1pl1vBZP/s4RF/2yHYsWbmrRdw4h9VTPTKPnqTn53
UDKU1i4hEsfBg4KI2QLnoqfzThM8Azv2igQ8ohUenL4kU2+r+h7Qf9u6XFcpz+Zs
uTT6J5syhe/5jNic/RzvWaiEvv5/sYbB08ypxwIDAQABo4ICCjCCAgYwHQYDVR0O
BBYEFPq7xt5ufgWZyOxMa3/tPG4My7QNMB8GA1UdIwQYMBaAFKgSK5R11p2qkopb
3x5KvV45AOSzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
cUJJcmxIWFduYXFTaWx2ZkhrcTlYamtBNUxNLmNlcjCBjgYIKwYBBQUHAQsEgYEw
fzB9BggrBgEFBQcwC4ZxcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC9jMC9hYmMzOGMtNTdmYi00NDhlLWI2MDMtOGRmMjBmODdlNzdmLzEv
MS1ydkczbTUtQlpuSTdFeHJmLTA4Ymd6THRBMC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzAv
YWJjMzhjLTU3ZmItNDQ4ZS1iNjAzLThkZjIwZjg3ZTc3Zi8xL3FCSXJsSFhXbmFx
U2lsdmZIa3E5WGprQTVMTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2GYDANBgkqhkiG9w0BAQsFAAOC
AQEAA9rTe7M17ygMuA7huOxlzO/yV8UTzqKxx/G+V8psGcodWnHdLP8GTapUl/JX
8SIAk8fAp2Yr8dpIrkPMrnxnWF2EZxIGJSjsYkQDNE2f2cwVLw4CpxK8Gd5bX66Z
WvNXOlecNys9+CVOLe+waOBh2ZZ2cbjIPVupBtNU62AYRQUP2eczYul7SGfhjTXy
xzcxitQImxxbepZ3W8R3Yr3D50IOYoUNfh+JwobYG97Lf6t2hdbLze++RitkDGyZ
uZSDz02h5SnMWvYcfIk2SnYDBO/bbyULEFCQg1uR+qLw5AF23sRMZtGWX5+bMfB8
kO2BfG9xm55UvtGddCUuJuCKXg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:52:29 2024 by rpki-client on console-fra.rpki-client.org