Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/JzwO2wmrI25zI9Xl0tj33Y7UqpA.roa
File: JzwO2wmrI25zI9Xl0tj33Y7UqpA.roa (raw, json)
Hash identifier: 2Y54rM2hWRx5nTrU3XEdyDePzCrSJmi6kw8c/S2s2Ag=
Subject key identifier: 27:3C:0E:DB:09:AB:23:6E:73:23:D5:E5:D2:D8:F7:DD:8E:D4:AA:90
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 0184AE7E0F9F4B2DBAB7216392413EEAA1AC
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/JzwO2wmrI25zI9Xl0tj33Y7UqpA.roa
Signing time: Fri 25 Nov 2022 11:13:27 +0000
ROA not before: Fri 25 Nov 2022 11:13:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 201752
IP address blocks: 45.8.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:ae:7e:0f:9f:4b:2d:ba:b7:21:63:92:41:3e:ea:a1:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Nov 25 11:13:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=273c0edb09ab236e7323d5e5d2d8f7dd8ed4aa90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:0d:ea:8e:45:58:c8:a5:ca:da:c9:8b:21:e8:
e3:29:8f:3b:ed:ab:46:51:ce:65:ae:27:29:9f:c0:
ea:60:8f:fd:5d:45:d6:b6:2b:42:06:a2:c4:0b:e3:
b5:19:47:e2:78:14:83:12:59:b8:15:45:b4:91:3a:
84:89:0d:ac:de:c5:5b:0e:1e:26:04:ad:c6:a7:f2:
e4:00:01:d3:ff:f4:6d:a0:53:fe:ca:4a:61:b5:d5:
0a:89:94:8a:d9:7f:75:81:83:65:52:70:ae:74:8b:
0a:38:d5:68:17:2e:ee:fe:19:d5:07:a3:bc:b8:33:
e6:3b:78:45:d1:68:0d:0c:af:36:bd:b9:17:80:eb:
58:d3:b3:03:17:9b:25:fc:1d:34:a7:73:4b:09:b4:
66:29:91:ad:c4:42:84:d1:ad:0d:9c:14:9c:34:8c:
60:ea:b1:41:ec:39:15:14:d0:ed:96:17:6a:06:b5:
22:a1:18:3a:30:ed:5c:22:8e:63:9f:ac:9e:44:a6:
70:2e:a1:5b:de:5b:dc:f4:2c:d2:3c:aa:10:95:19:
6e:f8:8f:c9:1d:5f:e2:88:9f:8a:1d:37:4c:d0:fd:
70:a4:74:77:50:d3:78:0c:63:fa:a8:4e:7d:97:fb:
7e:4b:6e:f8:46:b6:d6:77:8d:f3:04:bd:34:73:b3:
91:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:3C:0E:DB:09:AB:23:6E:73:23:D5:E5:D2:D8:F7:DD:8E:D4:AA:90
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/JzwO2wmrI25zI9Xl0tj33Y7UqpA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.210.0/24
Signature Algorithm: sha256WithRSAEncryption
b2:7a:9d:38:2c:c7:7b:c1:2a:84:b9:92:2e:0c:2a:c7:e1:43:
2f:9d:df:cc:75:47:e4:36:6a:95:94:14:f7:e0:f5:53:93:76:
b7:a0:9c:46:b2:b0:39:7a:28:91:18:13:5c:9f:3f:73:9b:30:
5d:3a:0f:67:76:fa:8a:7f:24:58:a3:c4:e9:a5:24:bd:0f:c0:
ad:d1:f0:6b:58:8f:e5:f1:18:cb:1e:35:e1:f2:bf:e7:ce:04:
f3:39:a1:e4:18:8b:53:20:b5:67:ff:f8:52:02:a2:94:95:85:
fd:c0:ec:c2:e6:bd:fa:75:c6:3b:04:b9:13:ba:94:ee:ba:07:
34:d4:48:5e:7a:83:af:db:f6:a7:4f:84:01:6e:73:25:c0:2e:
af:22:9d:04:fa:d9:1a:b0:75:26:cb:0a:9e:53:75:2b:2d:82:
de:13:47:20:73:fd:cb:7e:66:64:1e:64:be:db:26:9f:2d:2f:
5c:fc:cc:a0:fb:20:92:0e:7e:1b:af:11:1d:1b:a7:80:75:2f:
66:d1:3c:93:b9:93:97:86:31:26:34:da:60:ed:02:55:85:48:
f1:bf:9b:0c:6d:c7:e5:b2:d2:2a:dd:6b:c5:d7:26:7f:c4:de:
67:bb:bd:c3:c0:30:45:bf:31:e1:5d:a6:88:8a:1c:13:6f:23:
1a:81:7f:dd
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYSufg+fSy26tyFjkkE+6qGsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI0Zjk2MzQ1ZDNmMjJlZGIzOTVkMjQ3ZjdiODZkMmQ3M2U0
YTAwOTEwHhcNMjIxMTI1MTExMzI3WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyNzNjMGVkYjA5YWIyMzZlNzMyM2Q1ZTVkMmQ4ZjdkZDhlZDRhYTkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzg3qjkVYyKXK2smLIejjKY877atG
Uc5lricpn8DqYI/9XUXWtitCBqLEC+O1GUfieBSDElm4FUW0kTqEiQ2s3sVbDh4m
BK3Gp/LkAAHT//RtoFP+ykphtdUKiZSK2X91gYNlUnCudIsKONVoFy7u/hnVB6O8
uDPmO3hF0WgNDK82vbkXgOtY07MDF5sl/B00p3NLCbRmKZGtxEKE0a0NnBScNIxg
6rFB7DkVFNDtlhdqBrUioRg6MO1cIo5jn6yeRKZwLqFb3lvc9CzSPKoQlRlu+I/J
HV/iiJ+KHTdM0P1wpHR3UNN4DGP6qE59l/t+S274RrbWd43zBL00c7ORowIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCc8DtsJqyNucyPV5dLY992O1KqQMB8GA1UdIwQY
MBaAFLT5Y0XT8i7bOV0kf3uG0tc+SgCRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQt
NmZjMzQzZDc3Y2QyLzEvSnp3TzJ3bXJJMjV6STlYbDB0ajMzWTdVcXBBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNS84ZTEyMWQtNzNiMy00MzhhLTgzYzQtNmZjMzQzZDc3Y2Qy
LzEvdFBsalJkUHlMdHM1WFNSX2U0YlMxejVLQUpFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQjSMA0G
CSqGSIb3DQEBCwUAA4IBAQCyep04LMd7wSqEuZIuDCrH4UMvnd/MdUfkNmqVlBT3
4PVTk3a3oJxGsrA5eiiRGBNcnz9zmzBdOg9ndvqKfyRYo8TppSS9D8Ct0fBrWI/l
8RjLHjXh8r/nzgTzOaHkGItTILVn//hSAqKUlYX9wOzC5r36dcY7BLkTupTuugc0
1EheeoOv2/anT4QBbnMlwC6vIp0E+tkasHUmywqeU3UrLYLeE0cgc/3LfmZkHmS+
2yafLS9c/Myg+yCSDn4brxEdG6eAdS9m0TyTuZOXhjEmNNpg7QJVhUjxv5sMbcfl
stIq3WvF1yZ/xN5nu73DwDBFvzHhXaaIihwTbyMagX/d
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:10 2024 by rpki-client on console-ams.rpki-client.org