Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bPbSVhZpcQ06PvymPhav0OsWwVs.roa
File: bPbSVhZpcQ06PvymPhav0OsWwVs.roa (raw, json)
Hash identifier: KcnRl8O75V/cC0tJrzQTIiE+qXALZz4wlYeK3mNVDqs=
Subject key identifier: 6C:F6:D2:56:16:69:71:0D:3A:3E:FC:A6:3E:16:AF:D0:EB:16:C1:5B
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 032B4FA1
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bPbSVhZpcQ06PvymPhav0OsWwVs.roa
Signing time: Sat 01 Jan 2022 16:04:24 +0000
ROA not before: Sat 01 Jan 2022 16:04:24 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61435
IP address blocks: 45.137.104.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 53170081 (0x32b4fa1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:24 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=6cf6d2561669710d3a3efca63e16afd0eb16c15b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:55:1d:c1:23:a3:4c:71:09:de:6d:3a:c0:1c:
34:01:6d:2d:63:86:91:02:8c:f6:84:05:38:51:c5:
78:f4:ea:24:36:47:0e:cc:88:a5:a4:2f:54:5e:5c:
54:a0:7f:1e:84:3f:ac:cc:19:6b:d4:19:d7:1b:a2:
8d:dc:9a:fd:f9:85:b5:1b:1e:a2:f4:7e:2a:05:46:
1a:d9:11:a0:f5:53:de:0f:05:ec:c8:0d:a8:f9:4b:
d1:52:2a:0b:4e:cd:96:cc:11:71:71:24:d4:1e:16:
60:80:cc:be:e9:d4:e2:0f:9c:39:79:de:78:a8:a9:
10:ae:5c:49:88:ef:49:9e:78:40:38:60:f9:70:74:
de:4c:64:a8:64:1b:e1:8d:2e:ac:f7:7a:d7:36:a4:
31:a5:35:2e:32:c9:f8:23:66:69:a4:4f:bc:65:dc:
43:77:8f:4c:b1:4d:ed:67:45:f9:82:18:0b:8c:fa:
0f:c4:ed:e4:2c:2b:22:86:78:f0:2b:8f:b1:88:81:
d6:1a:12:09:20:2b:54:a9:ee:dc:f0:c6:ee:d4:9b:
25:b5:52:ab:3a:d2:61:42:1f:52:e3:67:68:a1:94:
8a:2e:40:63:9a:78:1e:b0:80:b2:b9:a2:bf:68:32:
42:78:9a:9f:5b:77:6d:84:2f:08:fb:a1:5b:f6:0b:
0b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:F6:D2:56:16:69:71:0D:3A:3E:FC:A6:3E:16:AF:D0:EB:16:C1:5B
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/bPbSVhZpcQ06PvymPhav0OsWwVs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.104.0/24
Signature Algorithm: sha256WithRSAEncryption
ba:80:16:4c:92:f1:be:10:5f:31:f5:c6:4f:5c:e3:6e:c8:d1:
d6:4c:7f:25:7b:c0:29:ec:ea:ce:e1:ea:c7:1f:20:e9:65:5c:
f2:63:27:f1:38:60:79:2b:59:cd:7c:ff:fb:0c:d5:0f:8d:56:
f4:5f:ec:c0:53:64:79:f1:2d:a3:24:9a:5d:1e:db:af:a1:94:
72:5a:ae:43:4e:0c:54:5b:dd:36:6b:4c:dc:29:ac:bb:36:95:
4f:11:b1:f8:36:9b:46:4b:be:6c:16:58:e4:8a:9b:02:92:f8:
12:43:1d:b5:e5:82:fc:7c:08:b3:33:95:db:64:8b:ed:0c:f1:
af:e8:c6:a3:4d:de:c3:0c:5a:2d:a1:a8:c5:35:4e:4d:5b:95:
48:d4:70:c9:82:56:aa:15:2b:63:e9:a3:11:de:42:a3:18:2f:
83:bf:10:a3:f0:93:ab:a4:01:2d:32:a9:1c:a0:d4:be:6d:b9:
42:6e:29:e6:49:89:fb:77:b9:71:8c:6f:bd:54:f8:f8:8b:81:
08:e2:2a:8c:f0:a5:c3:f0:e3:76:83:8d:35:70:54:8d:78:9f:
05:be:a1:cb:02:d2:b9:26:f5:9a:09:47:dc:66:4e:06:1f:9a:
90:74:99:6e:4b:a8:e9:4c:98:50:33:8a:96:67:da:71:be:05:
4f:36:08:b3
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAytPoTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQyNFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNmNmNmQyNTYxNjY5
NzEwZDNhM2VmY2E2M2UxNmFmZDBlYjE2YzE1YjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALdVHcEjo0xxCd5tOsAcNAFtLWOGkQKM9oQFOFHFePTqJDZH
DsyIpaQvVF5cVKB/HoQ/rMwZa9QZ1xuijdya/fmFtRseovR+KgVGGtkRoPVT3g8F
7MgNqPlL0VIqC07NlswRcXEk1B4WYIDMvunU4g+cOXneeKipEK5cSYjvSZ54QDhg
+XB03kxkqGQb4Y0urPd61zakMaU1LjLJ+CNmaaRPvGXcQ3ePTLFN7WdF+YIYC4z6
D8Tt5CwrIoZ48CuPsYiB1hoSCSArVKnu3PDG7tSbJbVSqzrSYUIfUuNnaKGUii5A
Y5p4HrCAsrmiv2gyQnian1t3bYQvCPuhW/YLC00CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRs9tJWFmlxDTo+/KY+Fq/Q6xbBWzAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L2JQYlNWaFpwY1EwNlB2eW1QaGF2ME9zV3dWcy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2JaDANBgkqhkiG9w0BAQsFAAOC
AQEAuoAWTJLxvhBfMfXGT1zjbsjR1kx/JXvAKezqzuHqxx8g6WVc8mMn8ThgeStZ
zXz/+wzVD41W9F/swFNkefEtoySaXR7br6GUclquQ04MVFvdNmtM3CmsuzaVTxGx
+DabRku+bBZY5IqbApL4EkMdteWC/HwIszOV22SL7Qzxr+jGo03ewwxaLaGoxTVO
TVuVSNRwyYJWqhUrY+mjEd5Coxgvg78Qo/CTq6QBLTKpHKDUvm25Qm4p5kmJ+3e5
cYxvvVT4+IuBCOIqjPClw/DjdoONNXBUjXifBb6hywLSuSb1mglH3GZOBh+akHSZ
bkuo6UyYUDOKlmfacb4FTzYIsw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org