Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Wu7fSBrSgzA_K3E83XEoaAQxhYg.roa
File: Wu7fSBrSgzA_K3E83XEoaAQxhYg.roa (raw, json)
Hash identifier: 1kHBZN8XiZVumr9i3otbqS3uvCmjMZ3hxhRzyRT/rHU=
Subject key identifier: 5A:EE:DF:48:1A:D2:83:30:3F:2B:71:3C:DD:71:28:68:04:31:85:88
Certificate issuer: /CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Certificate serial: 07768D24
Authority key identifier: 93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Wu7fSBrSgzA_K3E83XEoaAQxhYg.roa
Signing time: Sat 01 Jan 2022 05:04:18 +0000
ROA not before: Sat 01 Jan 2022 05:04:18 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 22773
IP address blocks: 45.87.44.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125209892 (0x7768d24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93677d7cb9271ce361256e9833cc7b14fd023ebe
Validity
Not Before: Jan 1 05:04:18 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=5aeedf481ad283303f2b713cdd71286804318588
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b0:4d:e6:4d:b1:86:82:f1:b4:65:23:36:ec:
d0:cb:7c:22:b8:d8:ca:e8:3f:36:2f:4d:ca:d0:42:
96:17:69:62:6f:28:c0:2a:17:a1:79:79:9b:c9:9c:
b2:b6:71:81:07:9c:02:68:91:34:29:59:97:81:1a:
1a:57:75:72:fe:3f:c2:cd:61:78:58:00:e4:b8:09:
22:ec:f2:0f:24:fa:1c:4d:4d:bf:3a:22:a2:90:c1:
f7:b1:a5:d4:ae:1c:76:d7:d9:79:28:64:49:b6:78:
df:27:0e:02:69:63:a3:01:be:43:0a:5d:fa:47:11:
91:d0:52:0c:b5:0f:94:09:bb:29:f0:dc:3a:0d:e7:
51:de:e5:50:fe:d8:6a:92:f9:0c:88:69:c7:dd:0e:
90:59:cb:87:fe:4b:cf:ac:7d:2b:76:67:2c:71:52:
31:e7:51:c4:80:bf:08:e1:02:4b:63:43:b8:87:16:
e8:67:44:6d:a0:44:21:0b:f5:db:1c:4b:e3:32:5d:
86:cc:f2:a6:e0:0f:08:98:ce:50:82:aa:06:16:92:
cf:79:ae:04:8b:68:da:13:d4:03:8f:2a:8d:df:45:
f9:00:31:77:38:fb:2e:e8:0a:41:4a:fc:fb:bf:b8:
fe:37:1c:06:20:2a:f6:92:ee:3f:53:5c:77:04:90:
5f:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:EE:DF:48:1A:D2:83:30:3F:2B:71:3C:DD:71:28:68:04:31:85:88
X509v3 Authority Key Identifier:
keyid:93:67:7D:7C:B9:27:1C:E3:61:25:6E:98:33:CC:7B:14:FD:02:3E:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k2d9fLknHONhJW6YM8x7FP0CPr4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/Wu7fSBrSgzA_K3E83XEoaAQxhYg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/a9c6da-8ea0-46b7-a1a6-99acb99ce754/1/k2d9fLknHONhJW6YM8x7FP0CPr4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.87.44.0/22
Signature Algorithm: sha256WithRSAEncryption
59:b6:ff:5d:a1:47:9d:67:43:ca:df:c8:b7:6e:d6:eb:c9:1d:
eb:21:86:bf:88:8a:74:00:12:80:48:97:7e:1e:9f:ae:14:95:
07:f0:b7:ea:1e:db:e3:cf:53:be:6a:0d:c7:c4:cd:01:97:9e:
6c:2c:96:28:c1:99:25:cc:2d:24:b9:03:e0:d1:0e:99:9b:c9:
40:e4:4f:bf:a7:d5:d5:f6:6d:2d:87:4a:13:f9:2f:42:a7:b0:
e1:73:f2:97:90:2d:9a:f0:56:35:be:02:5a:90:60:57:9a:77:
96:59:1a:97:4c:2c:24:a5:e6:fa:37:65:bf:aa:2b:3e:bb:01:
ba:3e:ae:86:4e:c5:08:8d:dd:3d:ad:81:9c:16:8c:32:97:98:
94:28:11:e2:9e:77:fb:90:39:9f:a4:fc:7e:59:88:13:9d:cd:
e1:82:a6:39:27:fc:e0:59:8d:54:13:b3:94:79:fc:06:ef:f9:
f6:2d:cb:a9:a4:d9:e2:74:2d:eb:3d:af:e5:b7:8a:85:ed:0a:
5a:ef:ad:a6:3e:82:a2:c5:3d:67:af:4d:b7:85:df:87:35:fa:
41:f3:ef:7b:7b:53:1d:11:a0:93:e9:bc:99:2a:af:84:7a:69:
16:e6:9d:01:7d:e3:1f:73:3e:dd:d1:8c:3f:59:53:6b:58:6b:
f4:39:15:9f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB3aNJDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5
MzY3N2Q3Y2I5MjcxY2UzNjEyNTZlOTgzM2NjN2IxNGZkMDIzZWJlMB4XDTIyMDEw
MTA1MDQxOFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNWFlZWRmNDgxYWQy
ODMzMDNmMmI3MTNjZGQ3MTI4NjgwNDMxODU4ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALywTeZNsYaC8bRlIzbs0Mt8IrjYyug/Ni9NytBClhdpYm8o
wCoXoXl5m8mcsrZxgQecAmiRNClZl4EaGld1cv4/ws1heFgA5LgJIuzyDyT6HE1N
vzoiopDB97Gl1K4cdtfZeShkSbZ43ycOAmljowG+Qwpd+kcRkdBSDLUPlAm7KfDc
Og3nUd7lUP7YapL5DIhpx90OkFnLh/5Lz6x9K3ZnLHFSMedRxIC/COECS2NDuIcW
6GdEbaBEIQv12xxL4zJdhszypuAPCJjOUIKqBhaSz3muBIto2hPUA48qjd9F+QAx
dzj7LugKQUr8+7+4/jccBiAq9pLuP1NcdwSQX7kCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRa7t9IGtKDMD8rcTzdcShoBDGFiDAfBgNVHSMEGDAWgBSTZ318uScc42El
bpgzzHsU/QI+vjAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2syZDlmTGtuSE9OaEpXNllNOHg3RlAwQ1ByNC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8x
L1d1N2ZTQnJTZ3pBX0szRTgzWEVvYUFReGhZZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YTljNmRhLThlYTAtNDZiNy1hMWE2LTk5YWNiOTljZTc1NC8xL2syZDlmTGtuSE9O
aEpXNllNOHg3RlAwQ1ByNC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi1XLDANBgkqhkiG9w0BAQsFAAOC
AQEAWbb/XaFHnWdDyt/It27W68kd6yGGv4iKdAASgEiXfh6frhSVB/C36h7b489T
vmoNx8TNAZeebCyWKMGZJcwtJLkD4NEOmZvJQORPv6fV1fZtLYdKE/kvQqew4XPy
l5AtmvBWNb4CWpBgV5p3llkal0wsJKXm+jdlv6orPrsBuj6uhk7FCI3dPa2BnBaM
MpeYlCgR4p53+5A5n6T8flmIE53N4YKmOSf84FmNVBOzlHn8Bu/59i3LqaTZ4nQt
6z2v5beKhe0KWu+tpj6CosU9Z69Nt4XfhzX6QfPve3tTHRGgk+m8mSqvhHppFuad
AX3jH3M+3dGMP1lTa1hr9DkVnw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:53:35 2024 by rpki-client on console-fra.rpki-client.org