Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/DyFORzx3gK1QGmCOnCACIA63Z8g.roa
File: DyFORzx3gK1QGmCOnCACIA63Z8g.roa (raw, json)
Hash identifier: QeA8HTyhJ0Gjoj8Gxrpg+CoWIlWnQwnDeCKieFZIazo=
Subject key identifier: 0F:21:4E:47:3C:77:80:AD:50:1A:60:8E:9C:20:02:20:0E:B7:67:C8
Certificate issuer: /CN=2719412918a6627f99cce55c7aca139057b8574e
Certificate serial: 018B009590A9E2C4289EA458627279D4E922
Authority key identifier: 27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/DyFORzx3gK1QGmCOnCACIA63Z8g.roa
Signing time: Thu 05 Oct 2023 16:04:43 +0000
ROA not before: Thu 05 Oct 2023 16:04:43 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 204316
IP address blocks: 45.149.60.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:00:95:90:a9:e2:c4:28:9e:a4:58:62:72:79:d4:e9:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2719412918a6627f99cce55c7aca139057b8574e
Validity
Not Before: Oct 5 16:04:43 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0f214e473c7780ad501a608e9c2002200eb767c8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:de:de:e3:00:f5:ff:be:94:72:cf:44:44:7f:
62:1f:72:44:2c:60:1a:aa:1c:97:b1:8b:7f:22:a8:
23:9a:2a:1d:fe:05:c1:dc:d7:6d:e4:09:03:25:eb:
6e:37:af:3b:4f:89:39:95:d4:8a:0d:af:b0:9f:ce:
37:6c:e3:dc:ff:a3:e6:72:7b:16:76:42:32:a1:47:
df:a2:85:23:90:d8:6f:26:ba:e9:d9:19:c0:2a:77:
f5:51:11:b9:8b:49:a7:8c:30:b3:92:f0:c1:9e:43:
ac:72:bb:15:4d:df:f5:ea:10:1d:85:76:1e:f0:fc:
cf:75:1f:4c:56:6f:0c:01:2c:9d:2f:9c:d2:c1:3f:
42:5b:0f:49:a5:66:93:3c:0f:aa:73:f6:cb:5c:43:
51:72:32:c8:d1:02:2a:81:f6:21:1b:6c:68:00:a8:
5d:9c:a7:9f:d2:3b:2b:24:e9:4a:69:e7:8a:b1:85:
3a:10:09:06:0d:76:b5:fd:af:5b:0e:2f:23:6b:82:
ab:f6:9a:76:0e:b0:8b:9a:42:c8:c7:dc:76:a9:f4:
9e:9c:01:8a:59:1f:22:36:96:ad:b1:4e:1b:1e:52:
2a:c5:71:6f:a3:e8:5d:fc:c9:95:0f:87:ca:2b:1b:
d5:71:5c:31:3c:bd:c7:13:52:0a:32:62:6b:1d:2d:
16:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:21:4E:47:3C:77:80:AD:50:1A:60:8E:9C:20:02:20:0E:B7:67:C8
X509v3 Authority Key Identifier:
keyid:27:19:41:29:18:A6:62:7F:99:CC:E5:5C:7A:CA:13:90:57:B8:57:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JxlBKRimYn-ZzOVcesoTkFe4V04.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/DyFORzx3gK1QGmCOnCACIA63Z8g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/e92c49-bd4a-4e8d-bbf6-4e223917b860/1/JxlBKRimYn-ZzOVcesoTkFe4V04.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.60.0/23
Signature Algorithm: sha256WithRSAEncryption
5a:0a:f9:28:48:57:d7:bc:b7:fd:9b:5b:c9:b9:c9:7d:1a:7b:
c3:17:6d:89:f1:bc:c2:7b:49:90:76:91:a2:c5:00:01:f4:9d:
a7:d0:45:33:9f:62:5f:dc:e3:19:71:0a:2a:9b:4a:c1:22:7b:
88:32:b5:34:ba:e8:44:3a:21:73:2e:ab:61:0a:26:79:8c:90:
84:c7:1d:79:a3:cd:78:ab:90:dd:d2:1d:b7:5e:66:3e:e9:1f:
c4:27:64:e6:58:85:ae:4c:40:2e:ec:d4:23:b2:98:fb:4f:ab:
79:16:42:66:87:cd:5e:0c:0f:c8:7d:0e:af:a4:f5:4c:64:86:
66:0c:7f:f6:f4:b0:dd:3c:29:1d:ad:f3:b8:05:0d:bd:0e:f3:
20:85:51:4b:44:01:1b:31:4f:a1:b1:58:62:04:b8:5b:d5:13:
4f:c9:fb:74:82:b8:7a:d7:49:ea:c9:10:dd:77:c7:50:b7:54:
0d:ef:27:b8:da:43:ca:e4:d0:62:d4:29:d1:0c:e7:9c:8f:b9:
2a:5d:28:85:4a:1e:f8:87:d0:cf:e5:86:73:8a:43:6a:02:3f:
83:cf:34:b9:e7:93:1d:a9:2e:a2:1b:84:2e:f7:54:8a:7e:31:
70:32:97:03:6e:73:82:5f:af:7a:c2:77:90:2f:d5:bb:e4:0e:
70:a2:bc:c0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYsAlZCp4sQonqRYYnJ51OkiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI3MTk0MTI5MThhNjYyN2Y5OWNjZTU1YzdhY2ExMzkwNTdi
ODU3NGUwHhcNMjMxMDA1MTYwNDQzWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZjIxNGU0NzNjNzc4MGFkNTAxYTYwOGU5YzIwMDIyMDBlYjc2N2M4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1N7e4wD1/76Ucs9ERH9iH3JELGAa
qhyXsYt/Iqgjmiod/gXB3Ndt5AkDJetuN687T4k5ldSKDa+wn843bOPc/6PmcnsW
dkIyoUffooUjkNhvJrrp2RnAKnf1URG5i0mnjDCzkvDBnkOscrsVTd/16hAdhXYe
8PzPdR9MVm8MASydL5zSwT9CWw9JpWaTPA+qc/bLXENRcjLI0QIqgfYhG2xoAKhd
nKef0jsrJOlKaeeKsYU6EAkGDXa1/a9bDi8ja4Kr9pp2DrCLmkLIx9x2qfSenAGK
WR8iNpatsU4bHlIqxXFvo+hd/MmVD4fKKxvVcVwxPL3HE1IKMmJrHS0WWwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFA8hTkc8d4CtUBpgjpwgAiAOt2fIMB8GA1UdIwQY
MBaAFCcZQSkYpmJ/mczlXHrKE5BXuFdOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSnhsQktSaW1Zbi1aek9WY2Vzb1RrRmU0VjA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMC9lOTJjNDktYmQ0YS00ZThkLWJiZjYt
NGUyMjM5MTdiODYwLzEvRHlGT1J6eDNnSzFRR21DT25DQUNJQTYzWjhnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMC9lOTJjNDktYmQ0YS00ZThkLWJiZjYtNGUyMjM5MTdiODYw
LzEvSnhsQktSaW1Zbi1aek9WY2Vzb1RrRmU0VjA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLZU8MA0G
CSqGSIb3DQEBCwUAA4IBAQBaCvkoSFfXvLf9m1vJucl9GnvDF22J8bzCe0mQdpGi
xQAB9J2n0EUzn2Jf3OMZcQoqm0rBInuIMrU0uuhEOiFzLqthCiZ5jJCExx15o814
q5Dd0h23XmY+6R/EJ2TmWIWuTEAu7NQjspj7T6t5FkJmh81eDA/IfQ6vpPVMZIZm
DH/29LDdPCkdrfO4BQ29DvMghVFLRAEbMU+hsVhiBLhb1RNPyft0grh610nqyRDd
d8dQt1QN7ye42kPK5NBi1CnRDOecj7kqXSiFSh74h9DP5YZzikNqAj+DzzS555Md
qS6iG4Qu91SKfjFwMpcDbnOCX696wneQL9W75A5worzA
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:42:14 2025 by rpki-client