Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/elgwFGmsyDySuTewU7Mi8N5bzYQ.roa
File: elgwFGmsyDySuTewU7Mi8N5bzYQ.roa (raw, json)
Hash identifier: 3WhjpBzhLdbnCNCAGhTILN8gnFVWyh4hHjgfprPRyOI=
Subject key identifier: 7A:58:30:14:69:AC:C8:3C:92:B9:37:B0:53:B3:22:F0:DE:5B:CD:84
Certificate issuer: /CN=618855635e4794f5878e3b985fed8935ae06c5a1
Certificate serial: 01856C415DF1B7D3DEFE28926B204DDB2CE3
Authority key identifier: 61:88:55:63:5E:47:94:F5:87:8E:3B:98:5F:ED:89:35:AE:06:C5:A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YYhVY15HlPWHjjuYX-2JNa4GxaE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/elgwFGmsyDySuTewU7Mi8N5bzYQ.roa
Signing time: Sun 01 Jan 2023 07:35:01 +0000
ROA not before: Sun 01 Jan 2023 07:35:01 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 15830
IP address blocks: 45.142.128.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:41:5d:f1:b7:d3:de:fe:28:92:6b:20:4d:db:2c:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=618855635e4794f5878e3b985fed8935ae06c5a1
Validity
Not Before: Jan 1 07:35:01 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=7a58301469acc83c92b937b053b322f0de5bcd84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:53:74:08:3a:4a:5e:de:a0:0c:60:62:32:06:
f1:78:e2:22:15:ff:6e:c2:f6:40:e3:63:b6:09:f7:
ad:c7:78:4f:a7:0b:4c:dd:0a:cb:32:c4:df:5c:44:
64:b1:41:3a:f6:9e:5a:28:47:12:64:9a:47:d4:dc:
4e:69:8c:72:69:65:3b:7e:bc:88:18:d2:b7:02:f5:
ec:e3:57:2d:f1:ce:c5:e9:b4:4a:91:ef:e3:a6:fe:
c9:ae:b4:e5:3f:ce:fc:21:cd:d7:a0:5c:18:8e:13:
34:38:47:d7:bc:ad:3d:c0:8b:63:99:17:40:0c:87:
fd:d8:ca:92:36:f8:ca:0b:06:8f:f6:11:c6:9a:dd:
a1:47:ae:c1:29:81:cf:ea:26:75:69:d8:1a:3d:d8:
b5:bf:af:1b:be:53:db:c2:dc:68:40:c3:c2:b2:db:
10:92:b3:89:b8:37:37:5f:47:dd:41:2b:70:18:51:
11:5e:bb:1a:b3:7e:b0:37:45:03:38:ed:0a:a6:be:
ac:d4:00:bf:62:49:74:ad:8e:70:bc:28:44:c2:66:
7c:4a:59:76:9b:ad:96:e6:a2:59:a5:f2:ec:d8:65:
ef:89:72:ab:ac:ae:b4:67:67:5d:58:fa:31:b6:90:
d2:c7:80:fd:88:3a:a6:a0:9d:6a:d6:27:82:39:2a:
e7:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:58:30:14:69:AC:C8:3C:92:B9:37:B0:53:B3:22:F0:DE:5B:CD:84
X509v3 Authority Key Identifier:
keyid:61:88:55:63:5E:47:94:F5:87:8E:3B:98:5F:ED:89:35:AE:06:C5:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YYhVY15HlPWHjjuYX-2JNa4GxaE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/elgwFGmsyDySuTewU7Mi8N5bzYQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/bf8bca-c4a0-429d-9f4d-0eb6bbf65b1f/1/YYhVY15HlPWHjjuYX-2JNa4GxaE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.128.0/22
Signature Algorithm: sha256WithRSAEncryption
7b:83:b3:39:e4:a5:3c:f0:1e:98:40:86:8a:22:55:58:31:27:
bc:21:ff:3a:a6:3d:5f:5a:12:a7:3c:82:54:03:ab:7a:5f:de:
5f:9f:46:c2:be:5b:65:5d:db:20:ab:e2:1a:7a:ab:0e:83:21:
5e:d9:a9:2f:b4:f6:03:56:4d:15:1b:57:19:93:98:a9:68:f0:
7f:81:c5:25:29:6f:5b:ec:43:d3:a9:77:39:b4:65:48:ff:84:
28:09:2e:fc:80:e4:61:9f:cb:29:e2:0a:b9:6a:ba:02:57:29:
32:5d:2d:25:19:84:28:64:ad:1b:73:fc:27:bb:99:a2:fc:b4:
b0:85:1c:43:24:3d:a4:39:89:b8:b2:3f:83:0f:0e:63:51:13:
4b:24:e0:6e:a7:30:7a:6e:f7:9b:01:e8:13:75:ee:5a:60:84:
2f:8c:03:09:7d:56:83:b9:0d:81:ff:a2:fa:8d:a6:0f:9c:7b:
cf:0b:1c:f9:e2:62:e7:09:c8:c4:40:a0:b5:49:90:29:ef:81:
a4:45:62:15:7f:8d:cf:ed:c7:6d:29:3a:3c:9a:d4:40:8f:a7:
85:d5:93:d6:b8:78:46:11:9e:e8:1e:41:62:68:b8:f5:86:70:
f8:a6:a3:b0:8d:37:44:3c:3c:87:44:dc:a8:1b:1c:d4:f9:eb:
df:0b:83:26
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYVsQV3xt9Pe/iiSayBN2yzjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYxODg1NTYzNWU0Nzk0ZjU4NzhlM2I5ODVmZWQ4OTM1YWUw
NmM1YTEwHhcNMjMwMTAxMDczNTAxWhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3YTU4MzAxNDY5YWNjODNjOTJiOTM3YjA1M2IzMjJmMGRlNWJjZDg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmFN0CDpKXt6gDGBiMgbxeOIiFf9u
wvZA42O2Cfetx3hPpwtM3QrLMsTfXERksUE69p5aKEcSZJpH1NxOaYxyaWU7fryI
GNK3AvXs41ct8c7F6bRKke/jpv7JrrTlP878Ic3XoFwYjhM0OEfXvK09wItjmRdA
DIf92MqSNvjKCwaP9hHGmt2hR67BKYHP6iZ1adgaPdi1v68bvlPbwtxoQMPCstsQ
krOJuDc3X0fdQStwGFERXrsas36wN0UDOO0Kpr6s1AC/Ykl0rY5wvChEwmZ8Sll2
m62W5qJZpfLs2GXviXKrrK60Z2ddWPoxtpDSx4D9iDqmoJ1q1ieCOSrnpQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHpYMBRprMg8krk3sFOzIvDeW82EMB8GA1UdIwQY
MBaAFGGIVWNeR5T1h447mF/tiTWuBsWhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWVloVlkxNUhsUFdIamp1WVgtMkpOYTRHeGFFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9iZjhiY2EtYzRhMC00MjlkLTlmNGQt
MGViNmJiZjY1YjFmLzEvZWxnd0ZHbXN5RHlTdVRld1U3TWk4TjViellRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi9iZjhiY2EtYzRhMC00MjlkLTlmNGQtMGViNmJiZjY1YjFm
LzEvWVloVlkxNUhsUFdIamp1WVgtMkpOYTRHeGFFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLY6AMA0G
CSqGSIb3DQEBCwUAA4IBAQB7g7M55KU88B6YQIaKIlVYMSe8If86pj1fWhKnPIJU
A6t6X95fn0bCvltlXdsgq+IaeqsOgyFe2akvtPYDVk0VG1cZk5ipaPB/gcUlKW9b
7EPTqXc5tGVI/4QoCS78gORhn8sp4gq5aroCVykyXS0lGYQoZK0bc/wnu5mi/LSw
hRxDJD2kOYm4sj+DDw5jURNLJOBupzB6bvebAegTde5aYIQvjAMJfVaDuQ2B/6L6
jaYPnHvPCxz54mLnCcjEQKC1SZAp74GkRWIVf43P7cdtKTo8mtRAj6eF1ZPWuHhG
EZ7oHkFiaLj1hnD4pqOwjTdEPDyHRNyoGxzU+evfC4Mm
-----END CERTIFICATE-----
Generated at Wed Feb 19 22:13:16 2025 by rpki-client