Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/sg46YtAfcNqonemi6IPPBjfoORM.roa
File: sg46YtAfcNqonemi6IPPBjfoORM.roa (raw, json)
Hash identifier: xLS28QKBVMbagURmnUD+fAQeqShRTGjj7ZAZLd5LcJY=
Subject key identifier: B2:0E:3A:62:D0:1F:70:DA:A8:9D:E9:A2:E8:83:CF:06:37:E8:39:13
Certificate issuer: /CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Certificate serial: 031C4351
Authority key identifier: B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/sg46YtAfcNqonemi6IPPBjfoORM.roa
Signing time: Sat 01 Jan 2022 16:04:16 +0000
ROA not before: Sat 01 Jan 2022 16:04:16 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43278
IP address blocks: 45.8.210.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52183889 (0x31c4351)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b4f96345d3f22edb395d247f7b86d2d73e4a0091
Validity
Not Before: Jan 1 16:04:16 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b20e3a62d01f70daa89de9a2e883cf0637e83913
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:58:4a:33:d6:60:de:18:9a:6d:55:dc:df:8b:
09:34:f8:9c:da:fe:76:3f:95:5b:f9:53:a6:e5:d0:
24:54:1e:2b:78:29:2b:11:b3:0d:d4:69:68:ac:7b:
e7:86:94:01:22:71:07:57:8a:ca:df:a2:7e:8c:d9:
11:05:bb:83:87:13:df:b0:53:49:a0:bd:3d:31:c9:
e0:44:3b:94:80:90:b5:e0:88:47:06:f3:01:99:20:
b1:53:39:4c:73:fe:6f:2a:3a:c5:7b:d4:91:68:55:
27:93:00:23:8f:3e:54:f5:a3:79:7f:66:ac:74:da:
f4:a6:75:bd:57:05:2d:d5:fa:17:51:c0:1e:11:20:
b5:2a:9c:d5:b5:6a:8a:b3:f9:70:aa:95:25:60:bb:
cb:7b:c5:d3:6d:fa:c7:83:b2:fe:46:22:ca:25:e5:
3a:a4:1a:9b:ff:ce:85:3a:84:cb:8f:a0:1d:7e:bf:
42:80:41:43:36:93:9b:da:e0:ad:bc:f7:ea:34:b6:
49:59:0d:5f:f1:e0:34:3b:73:fe:da:57:c8:f8:5d:
6c:df:2a:22:ab:69:de:c0:12:c8:8a:6f:f3:a4:a4:
5a:35:4e:fc:20:bd:b4:0d:e7:e6:06:91:a6:9e:e3:
ca:f7:d2:6f:a7:1e:a7:89:66:b6:a1:e6:42:cd:57:
7c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:0E:3A:62:D0:1F:70:DA:A8:9D:E9:A2:E8:83:CF:06:37:E8:39:13
X509v3 Authority Key Identifier:
keyid:B4:F9:63:45:D3:F2:2E:DB:39:5D:24:7F:7B:86:D2:D7:3E:4A:00:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tPljRdPyLts5XSR_e4bS1z5KAJE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/sg46YtAfcNqonemi6IPPBjfoORM.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/8e121d-73b3-438a-83c4-6fc343d77cd2/1/tPljRdPyLts5XSR_e4bS1z5KAJE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.210.0/24
Signature Algorithm: sha256WithRSAEncryption
60:97:c5:93:3d:5f:25:b5:9e:b7:47:db:d4:27:78:e3:56:1d:
2a:d7:41:4e:95:7b:62:27:51:6c:0e:a6:99:cb:74:7e:df:b1:
4f:4b:0c:f0:a8:05:e6:b5:72:0a:be:ea:c9:04:b6:f2:58:ca:
3d:e6:19:e1:67:0d:af:4b:fb:c6:c0:92:2a:9d:fd:34:89:49:
b7:31:26:c9:bd:12:a5:7b:1d:90:87:25:65:3e:45:bc:f9:cf:
da:95:95:f9:1c:46:28:4c:7f:28:c6:79:c3:fc:98:29:e3:90:
f2:09:41:2b:2d:a4:66:b0:b2:63:be:a7:12:b4:74:18:44:55:
c0:46:d4:8a:16:be:8b:4e:05:68:4f:03:35:b2:04:74:b8:c1:
41:74:f3:06:14:77:01:aa:3d:1b:6b:bf:b3:a8:9c:cb:18:46:
c1:ab:4a:a4:78:16:22:45:3b:e2:a0:f8:74:59:b9:9d:9d:d8:
89:67:5a:ef:14:2b:d0:15:7f:7b:75:1e:0a:b5:51:eb:31:61:
7c:f3:86:28:0f:43:04:ef:3d:e9:4e:4e:ed:21:15:62:16:58:
08:10:f0:17:25:7b:64:e8:6f:4f:38:d8:68:72:8f:ba:e9:b8:
bc:90:10:6c:e6:5a:50:7a:58:e9:49:bf:91:9b:de:5a:a2:60:
d0:b2:22:4e
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAxxDUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NGY5NjM0NWQzZjIyZWRiMzk1ZDI0N2Y3Yjg2ZDJkNzNlNGEwMDkxMB4XDTIyMDEw
MTE2MDQxNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjIwZTNhNjJkMDFm
NzBkYWE4OWRlOWEyZTg4M2NmMDYzN2U4MzkxMzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK9YSjPWYN4Ymm1V3N+LCTT4nNr+dj+VW/lTpuXQJFQeK3gp
KxGzDdRpaKx754aUASJxB1eKyt+ifozZEQW7g4cT37BTSaC9PTHJ4EQ7lICQteCI
RwbzAZkgsVM5THP+byo6xXvUkWhVJ5MAI48+VPWjeX9mrHTa9KZ1vVcFLdX6F1HA
HhEgtSqc1bVqirP5cKqVJWC7y3vF0236x4Oy/kYiyiXlOqQam//OhTqEy4+gHX6/
QoBBQzaTm9rgrbz36jS2SVkNX/HgNDtz/tpXyPhdbN8qIqtp3sASyIpv86SkWjVO
/CC9tA3n5gaRpp7jyvfSb6cep4lmtqHmQs1XfFUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSyDjpi0B9w2qid6aLog88GN+g5EzAfBgNVHSMEGDAWgBS0+WNF0/Iu2zld
JH97htLXPkoAkTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RQbGpSZFB5THRzNVhTUl9lNGJTMXo1S0FKRS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzUvOGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8x
L3NnNDZZdEFmY05xb25lbWk2SVBQQmpmb09STS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzUv
OGUxMjFkLTczYjMtNDM4YS04M2M0LTZmYzM0M2Q3N2NkMi8xL3RQbGpSZFB5THRz
NVhTUl9lNGJTMXo1S0FKRS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC0I0jANBgkqhkiG9w0BAQsFAAOC
AQEAYJfFkz1fJbWet0fb1Cd441YdKtdBTpV7YidRbA6mmct0ft+xT0sM8KgF5rVy
Cr7qyQS28ljKPeYZ4WcNr0v7xsCSKp39NIlJtzEmyb0SpXsdkIclZT5FvPnP2pWV
+RxGKEx/KMZ5w/yYKeOQ8glBKy2kZrCyY76nErR0GERVwEbUiha+i04FaE8DNbIE
dLjBQXTzBhR3Aao9G2u/s6icyxhGwatKpHgWIkU74qD4dFm5nZ3YiWda7xQr0BV/
e3UeCrVR6zFhfPOGKA9DBO896U5O7SEVYhZYCBDwFyV7ZOhvTzjYaHKPuum4vJAQ
bOZaUHpY6Um/kZveWqJg0LIiTg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:08 2024 by rpki-client on console-fra.rpki-client.org