Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/963a83-d2d1-464c-bdb0-b1a9793ee324/1/01Sv8HyHnVy3C9993BDJI9uU9OA.roa
File: 01Sv8HyHnVy3C9993BDJI9uU9OA.roa (raw, json)
Hash identifier: WfizlKlxFbBWqPqj8bxcUe61paqDtMLOoE6trKGuJbY=
Subject key identifier: D3:54:AF:F0:7C:87:9D:5C:B7:0B:DF:7D:DC:10:C9:23:DB:94:F4:E0
Certificate issuer: /CN=a57f291818d8719738268d844994a2e10824d4c9
Certificate serial: 01850C166A17D469872C7B4BA6B8959D1859
Authority key identifier: A5:7F:29:18:18:D8:71:97:38:26:8D:84:49:94:A2:E1:08:24:D4:C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pX8pGBjYcZc4Jo2ESZSi4Qgk1Mk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/963a83-d2d1-464c-bdb0-b1a9793ee324/1/01Sv8HyHnVy3C9993BDJI9uU9OA.roa
Signing time: Tue 13 Dec 2022 15:24:33 +0000
ROA not before: Tue 13 Dec 2022 15:24:33 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 48072
IP address blocks: 45.90.194.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:0c:16:6a:17:d4:69:87:2c:7b:4b:a6:b8:95:9d:18:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a57f291818d8719738268d844994a2e10824d4c9
Validity
Not Before: Dec 13 15:24:33 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=d354aff07c879d5cb70bdf7ddc10c923db94f4e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:57:1b:5e:92:72:07:2c:5c:20:3e:9e:84:d7:
6b:b1:88:e9:91:ef:3f:cb:6f:88:bc:c0:39:59:c9:
5a:54:e7:c2:01:bf:d5:cc:85:3e:45:ce:01:69:25:
cc:b1:67:9f:9f:b7:18:0f:8f:c0:db:3c:1c:69:93:
aa:0a:0f:f2:f7:88:b7:c9:3e:b8:fe:92:fe:3d:54:
40:00:b6:3d:f3:81:3a:6e:ed:c8:b5:c2:38:5f:fc:
fb:8a:6e:8f:f5:4f:c3:08:c8:2f:99:d2:f1:85:5b:
e7:2f:d4:9e:18:2b:6f:42:5e:7e:3d:f0:fe:43:86:
c1:ce:ec:c4:38:af:e5:60:3b:8e:fa:35:12:4e:9b:
cf:3c:24:64:da:12:2b:26:80:88:3c:87:ae:e0:eb:
95:48:31:86:39:39:6c:39:91:c8:bc:e5:e7:65:ed:
c9:27:c3:8c:76:f3:67:b7:b1:f8:da:26:6d:d6:b9:
5e:98:73:1a:35:ad:0f:ea:14:22:57:ae:72:3a:47:
40:72:fd:78:25:7b:86:b4:33:16:55:44:66:76:ab:
8e:97:b7:e8:56:99:40:2f:a2:5e:6f:7a:2c:ff:43:
3c:d4:ae:71:44:e5:bd:a1:45:61:e1:9e:b3:3e:60:
d0:cc:86:10:12:f1:20:ee:50:12:a9:cc:97:c4:3b:
8b:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:54:AF:F0:7C:87:9D:5C:B7:0B:DF:7D:DC:10:C9:23:DB:94:F4:E0
X509v3 Authority Key Identifier:
keyid:A5:7F:29:18:18:D8:71:97:38:26:8D:84:49:94:A2:E1:08:24:D4:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pX8pGBjYcZc4Jo2ESZSi4Qgk1Mk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/963a83-d2d1-464c-bdb0-b1a9793ee324/1/01Sv8HyHnVy3C9993BDJI9uU9OA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/963a83-d2d1-464c-bdb0-b1a9793ee324/1/pX8pGBjYcZc4Jo2ESZSi4Qgk1Mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.90.194.0/23
Signature Algorithm: sha256WithRSAEncryption
78:5c:43:b3:fb:cf:13:42:d5:d0:e2:5e:c3:1c:12:81:ff:e8:
2f:9e:b3:98:7c:d7:c1:35:56:8a:ef:c9:44:3c:67:11:70:ea:
8c:ff:57:35:d6:73:2c:78:f4:df:ed:2d:5c:69:82:82:5d:ad:
2d:16:c8:2e:7b:8e:cf:c5:26:dc:5d:b8:70:8f:95:66:b1:de:
a2:69:d6:bf:9c:d6:1b:38:ed:a8:e6:71:be:f0:ca:a4:0e:ed:
d2:b2:54:f3:53:b7:c8:97:02:8e:fc:a3:0c:dc:f9:fa:61:fd:
33:9e:35:6b:05:9c:82:c9:e8:29:d9:b3:29:59:54:69:3f:a8:
04:ef:e2:f2:92:70:10:61:fb:05:de:57:27:ba:6d:1c:5f:c1:
d5:fc:05:04:af:17:0a:43:42:e5:ac:03:09:f5:f5:45:fc:15:
86:2b:b7:6d:5c:bc:5c:5b:ca:d1:ad:77:d4:55:29:6a:98:d7:
39:64:10:04:33:25:52:9f:1e:96:3d:29:ef:ec:44:8b:e3:f1:
0c:44:0e:c6:1a:22:fd:63:ee:ea:6d:62:5d:0a:99:ad:c8:41:
19:8b:77:98:2b:f3:00:ee:59:6d:a9:59:92:82:74:61:eb:84:
e5:28:02:89:b0:78:3a:92:d9:3b:84:75:fb:ed:b0:bd:99:28:
e3:60:a3:a0
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYUMFmoX1GmHLHtLpriVnRhZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGE1N2YyOTE4MThkODcxOTczODI2OGQ4NDQ5OTRhMmUxMDgy
NGQ0YzkwHhcNMjIxMjEzMTUyNDMzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhkMzU0YWZmMDdjODc5ZDVjYjcwYmRmN2RkYzEwYzkyM2RiOTRmNGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkVcbXpJyByxcID6ehNdrsYjpke8/
y2+IvMA5WclaVOfCAb/VzIU+Rc4BaSXMsWefn7cYD4/A2zwcaZOqCg/y94i3yT64
/pL+PVRAALY984E6bu3ItcI4X/z7im6P9U/DCMgvmdLxhVvnL9SeGCtvQl5+PfD+
Q4bBzuzEOK/lYDuO+jUSTpvPPCRk2hIrJoCIPIeu4OuVSDGGOTlsOZHIvOXnZe3J
J8OMdvNnt7H42iZt1rlemHMaNa0P6hQiV65yOkdAcv14JXuGtDMWVURmdquOl7fo
VplAL6Jeb3os/0M81K5xROW9oUVh4Z6zPmDQzIYQEvEg7lASqcyXxDuLJwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFNNUr/B8h51ctwvffdwQySPblPTgMB8GA1UdIwQY
MBaAFKV/KRgY2HGXOCaNhEmUouEIJNTJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcFg4cEdCalljWmM0Sm8yRVNaU2k0UWdrMU1rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy85NjNhODMtZDJkMS00NjRjLWJkYjAt
YjFhOTc5M2VlMzI0LzEvMDFTdjhIeUhuVnkzQzk5OTNCREpJOXVVOU9BLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNy85NjNhODMtZDJkMS00NjRjLWJkYjAtYjFhOTc5M2VlMzI0
LzEvcFg4cEdCalljWmM0Sm8yRVNaU2k0UWdrMU1rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBLVrCMA0G
CSqGSIb3DQEBCwUAA4IBAQB4XEOz+88TQtXQ4l7DHBKB/+gvnrOYfNfBNVaK78lE
PGcRcOqM/1c11nMsePTf7S1caYKCXa0tFsgue47PxSbcXbhwj5Vmsd6iada/nNYb
OO2o5nG+8MqkDu3SslTzU7fIlwKO/KMM3Pn6Yf0znjVrBZyCyegp2bMpWVRpP6gE
7+LyknAQYfsF3lcnum0cX8HV/AUErxcKQ0LlrAMJ9fVF/BWGK7dtXLxcW8rRrXfU
VSlqmNc5ZBAEMyVSnx6WPSnv7ESL4/EMRA7GGiL9Y+7qbWJdCpmtyEEZi3eYK/MA
7lltqVmSgnRh64TlKAKJsHg6ktk7hHX77bC9mSjjYKOg
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:32 2024 by rpki-client on console-ams.rpki-client.org