Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/07F5mXVKp6hgde0CCF3xO09aGds.roa
File: 07F5mXVKp6hgde0CCF3xO09aGds.roa (raw, json)
Hash identifier: xBGoSNkQwNOP0cd04ELh36hQnKUcyu0EuTGxc60T6ok=
Subject key identifier: D3:B1:79:99:75:4A:A7:A8:60:75:ED:02:08:5D:F1:3B:4F:5A:19:DB
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 033E4236
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/07F5mXVKp6hgde0CCF3xO09aGds.roa
Signing time: Sat 01 Jan 2022 16:04:35 +0000
ROA not before: Sat 01 Jan 2022 16:04:35 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207577
IP address blocks: 195.66.104.0/24 maxlen: 24
45.142.123.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54411830 (0x33e4236)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:35 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d3b17999754aa7a86075ed02085df13b4f5a19db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:ef:ee:d4:20:a6:a0:0a:ba:09:ca:7a:46:cc:
b9:94:38:71:25:45:49:2f:c9:b2:9d:f1:5c:6c:04:
16:02:da:6e:31:e4:76:77:74:67:cb:f9:8d:02:35:
f0:d1:7f:e5:d2:0e:8c:7a:89:d8:e9:c2:2f:58:23:
3d:24:b8:77:36:a1:5e:c4:8b:46:f2:c3:d3:74:c1:
9e:8b:7f:13:b8:68:c4:6f:7c:54:53:f4:9c:0b:87:
48:7d:8a:b3:de:c6:69:22:d8:a7:c9:5f:d4:83:b1:
6c:3c:e5:c7:65:e5:5b:df:5b:28:64:d6:c6:a7:d0:
14:52:01:3c:7f:c9:3c:9d:1b:1a:c1:ff:d1:5d:02:
3f:58:20:cf:36:8f:ff:27:c4:84:03:89:b5:4f:6f:
50:81:b1:1f:af:db:cb:ce:3c:80:34:df:c0:1c:b5:
67:45:d6:a5:97:6b:0a:75:b8:45:e5:55:06:43:21:
33:2c:61:ac:bd:be:99:a0:88:a6:e5:88:fc:34:c2:
ae:f0:4b:1c:c7:1d:4d:c9:f6:80:1d:92:cd:e5:f8:
b2:b8:5a:f6:29:83:87:0e:6e:85:26:82:1f:32:fb:
28:05:f1:d6:39:87:dc:69:88:66:3c:c6:3f:5c:bc:
c4:7c:1d:a3:2c:48:3b:97:f9:28:81:16:63:ad:31:
d8:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:B1:79:99:75:4A:A7:A8:60:75:ED:02:08:5D:F1:3B:4F:5A:19:DB
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/07F5mXVKp6hgde0CCF3xO09aGds.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.142.123.0/24
195.66.104.0/24
Signature Algorithm: sha256WithRSAEncryption
36:de:c5:c5:06:4f:61:62:c7:da:87:59:e5:1d:06:5f:8e:a0:
6f:0d:66:8f:85:77:a5:85:2b:b0:d9:23:9a:11:62:6f:41:3d:
96:5e:3f:74:88:a5:0a:26:bf:d4:46:8b:19:94:f5:da:d0:b7:
b3:ed:c2:88:53:2e:c1:10:40:38:91:d1:88:1f:1e:f3:e7:77:
88:b0:c2:6d:96:b3:04:6d:b4:b2:ff:b1:96:77:6c:4a:cf:92:
47:bc:c3:60:d5:cf:86:3a:30:b1:a7:f4:34:c9:7f:50:d5:11:
40:75:7a:55:9b:a3:9e:a1:3d:32:54:bc:d4:9c:53:45:11:ad:
0c:fc:32:ae:cc:92:f5:70:10:db:d0:d2:18:6d:df:23:9d:7b:
93:02:84:ea:68:84:bd:fa:f1:ec:ef:a9:1f:25:e2:0e:53:34:
66:fc:3d:97:20:fd:4d:7b:dd:76:dd:3e:7f:af:a8:aa:3a:2d:
81:70:f8:0a:2a:24:ff:b3:58:33:9c:1d:24:a3:b5:53:3a:58:
4f:88:df:f7:9f:db:bd:23:50:37:28:96:21:9f:06:e6:cf:27:
72:df:e8:b8:95:db:78:03:36:43:59:d3:1a:f7:c3:6b:39:df:
3c:3d:08:cf:40:95:bb:b3:84:b7:c0:65:91:37:44:4c:bb:15:
db:7e:6f:5c
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAz5CNjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQzNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZDNiMTc5OTk3NTRh
YTdhODYwNzVlZDAyMDg1ZGYxM2I0ZjVhMTlkYjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALzv7tQgpqAKugnKekbMuZQ4cSVFSS/Jsp3xXGwEFgLabjHk
dnd0Z8v5jQI18NF/5dIOjHqJ2OnCL1gjPSS4dzahXsSLRvLD03TBnot/E7hoxG98
VFP0nAuHSH2Ks97GaSLYp8lf1IOxbDzlx2XlW99bKGTWxqfQFFIBPH/JPJ0bGsH/
0V0CP1ggzzaP/yfEhAOJtU9vUIGxH6/by848gDTfwBy1Z0XWpZdrCnW4ReVVBkMh
MyxhrL2+maCIpuWI/DTCrvBLHMcdTcn2gB2SzeX4srha9imDhw5uhSaCHzL7KAXx
1jmH3GmIZjzGP1y8xHwdoyxIO5f5KIEWY60x2BUCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBTTsXmZdUqnqGB17QIIXfE7T1oZ2zAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
LzA3RjVtWFZLcDZoZ2RlMENDRjN4TzA5YUdkcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAC2OewMEAMNCaDANBgkqhkiG9w0B
AQsFAAOCAQEANt7FxQZPYWLH2odZ5R0GX46gbw1mj4V3pYUrsNkjmhFib0E9ll4/
dIilCia/1EaLGZT12tC3s+3CiFMuwRBAOJHRiB8e8+d3iLDCbZazBG20sv+xlnds
Ss+SR7zDYNXPhjowsaf0NMl/UNURQHV6VZujnqE9MlS81JxTRRGtDPwyrsyS9XAQ
29DSGG3fI517kwKE6miEvfrx7O+pHyXiDlM0Zvw9lyD9TXvddt0+f6+oqjotgXD4
Ciok/7NYM5wdJKO1UzpYT4jf95/bvSNQNyiWIZ8G5s8nct/ouJXbeAM2Q1nTGvfD
aznfPD0Iz0CVu7OEt8BlkTdETLsV235vXA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:08 2024 by rpki-client on console-ams.rpki-client.org