Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/q6cWsjv_qE40e4h4igY3rFSeFXo.roa
File: q6cWsjv_qE40e4h4igY3rFSeFXo.roa (raw, json)
Hash identifier: u4rAVBSXY2xkxMH13R824XTvfD4t6aD7j66eg9mwr8Q=
Subject key identifier: AB:A7:16:B2:3B:FF:A8:4E:34:7B:88:78:8A:06:37:AC:54:9E:15:7A
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 031E2F6A
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/q6cWsjv_qE40e4h4igY3rFSeFXo.roa
Signing time: Sat 01 Jan 2022 16:04:17 +0000
ROA not before: Sat 01 Jan 2022 16:04:17 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 47895
IP address blocks: 45.132.253.0/24 maxlen: 24
45.132.252.0/24 maxlen: 24
45.132.252.0/22 maxlen: 22
45.132.255.0/24 maxlen: 24
45.132.254.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52309866 (0x31e2f6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:17 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aba716b23bffa84e347b88788a0637ac549e157a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:0d:ee:01:0f:fd:70:a5:c5:60:df:b3:88:18:
92:2b:49:33:75:f6:08:6c:18:58:10:27:af:f0:6b:
c6:9a:2a:d7:9c:8c:b2:2b:18:36:fb:49:eb:43:fc:
a1:43:97:62:fc:47:a5:61:42:b3:d7:b0:9e:61:19:
c2:6e:61:32:5e:6d:9a:98:7d:8d:d7:a8:dc:f9:dc:
19:fc:d7:e5:cc:df:9d:be:c2:be:ef:d4:ce:07:73:
10:d7:b6:6f:0f:66:74:74:4e:ce:47:e4:4e:56:15:
24:39:c9:ac:9b:56:b3:4b:c5:34:88:58:5e:35:4a:
68:0f:20:9b:4a:df:5d:b3:67:5d:92:21:8c:53:0d:
c2:c5:0a:ed:40:cd:a6:cd:2a:b1:94:1b:9a:3d:a1:
05:f8:c6:95:77:6b:8d:f6:e3:45:4c:bb:52:1d:b9:
4f:e6:a0:26:f3:ba:c2:52:e6:3d:17:88:77:e1:64:
b7:ca:0b:92:42:6e:17:10:f8:04:05:d4:24:5d:ed:
14:02:01:73:5a:4b:27:2f:16:ee:4b:3c:1f:57:dc:
c1:a2:90:45:2e:19:43:cd:9f:ca:9e:ae:ae:7d:74:
b4:0f:d5:81:7c:3f:f7:fe:bb:da:5f:e9:94:96:7d:
5f:6b:c0:58:dc:1e:a6:68:2a:75:8d:4d:a7:4a:ef:
f9:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A7:16:B2:3B:FF:A8:4E:34:7B:88:78:8A:06:37:AC:54:9E:15:7A
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/q6cWsjv_qE40e4h4igY3rFSeFXo.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.132.252.0/22
Signature Algorithm: sha256WithRSAEncryption
82:c3:a5:2b:6d:d4:81:79:84:3a:3a:9e:86:cb:2a:98:d6:c5:
ac:de:d0:48:f0:4d:ae:2b:f5:23:c7:ca:78:d0:60:a1:93:d6:
c9:35:93:5e:90:32:04:05:3a:7f:1d:d6:fe:e9:35:2e:d4:81:
b4:d9:53:f1:c7:32:88:b3:08:58:63:37:45:fa:eb:94:ba:a7:
4f:97:41:78:b2:4d:30:6b:91:d5:d3:80:5f:c3:c4:dd:d1:81:
93:bc:93:e7:95:a1:97:b7:b1:77:59:a6:1f:3d:0e:b9:1b:38:
54:f0:09:be:35:1f:fa:0c:c3:ce:14:b3:fa:ce:53:5e:ce:62:
66:14:9b:80:03:dd:be:69:15:c0:cf:d5:bd:74:c0:13:c3:f3:
cb:22:91:9b:35:e0:7c:84:86:5c:83:37:21:cf:a5:8c:e1:02:
a1:ef:67:0c:af:9f:b2:c1:c2:ef:3c:db:44:95:e5:42:0c:6a:
58:0b:7d:a3:58:df:15:46:92:3f:a1:cc:4f:29:5e:93:60:63:
3b:56:33:91:7f:54:6d:c8:06:51:36:34:41:4c:aa:ba:05:5b:
f6:a8:7f:59:a0:c6:dd:55:ab:c8:d2:6c:dc:6f:e9:3f:78:f0:
b1:59:4d:d8:66:eb:16:47:b7:8b:7a:e6:39:4b:77:bf:03:93:
bf:77:af:99
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAx4vajANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQxN1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYWJhNzE2YjIzYmZm
YTg0ZTM0N2I4ODc4OGEwNjM3YWM1NDllMTU3YTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAI8N7gEP/XClxWDfs4gYkitJM3X2CGwYWBAnr/Brxpoq15yM
sisYNvtJ60P8oUOXYvxHpWFCs9ewnmEZwm5hMl5tmph9jdeo3PncGfzX5czfnb7C
vu/UzgdzENe2bw9mdHROzkfkTlYVJDnJrJtWs0vFNIhYXjVKaA8gm0rfXbNnXZIh
jFMNwsUK7UDNps0qsZQbmj2hBfjGlXdrjfbjRUy7Uh25T+agJvO6wlLmPReId+Fk
t8oLkkJuFxD4BAXUJF3tFAIBc1pLJy8W7ks8H1fcwaKQRS4ZQ82fyp6urn10tA/V
gXw/9/672l/plJZ9X2vAWNwepmgqdY1Np0rv+Z8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSrpxayO/+oTjR7iHiKBjesVJ4VejAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L3E2Y1dzanZfcUU0MGU0aDRpZ1kzckZTZUZYby5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2E/DANBgkqhkiG9w0BAQsFAAOC
AQEAgsOlK23UgXmEOjqehssqmNbFrN7QSPBNriv1I8fKeNBgoZPWyTWTXpAyBAU6
fx3W/uk1LtSBtNlT8ccyiLMIWGM3RfrrlLqnT5dBeLJNMGuR1dOAX8PE3dGBk7yT
55Whl7exd1mmHz0OuRs4VPAJvjUf+gzDzhSz+s5TXs5iZhSbgAPdvmkVwM/VvXTA
E8PzyyKRmzXgfISGXIM3Ic+ljOECoe9nDK+fssHC7zzbRJXlQgxqWAt9o1jfFUaS
P6HMTylek2BjO1YzkX9UbcgGUTY0QUyqugVb9qh/WaDG3VWryNJs3G/pP3jwsVlN
2GbrFke3i3rmOUt3vwOTv3evmQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:11 2024 by rpki-client on console-ams.rpki-client.org