Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/gD9Kpo9Kkmhlujew6DdjuJ6gPYc.roa
File: gD9Kpo9Kkmhlujew6DdjuJ6gPYc.roa (raw, json)
Hash identifier: 1LwzE5pS9DG15maMtAKx54MN5ZV65GVexDctqkLyNGg=
Subject key identifier: 80:3F:4A:A6:8F:4A:92:68:65:BA:37:B0:E8:37:63:B8:9E:A0:3D:87
Certificate issuer: /CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Certificate serial: 03C5CAA2
Authority key identifier: D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/gD9Kpo9Kkmhlujew6DdjuJ6gPYc.roa
Signing time: Wed 18 May 2022 14:12:19 +0000
ROA not before: Wed 18 May 2022 14:12:19 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 198411
IP address blocks: 5.226.16.0/20 maxlen: 24
45.157.56.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63294114 (0x3c5caa2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d475fb0934cf6a58dccef110875dbe5e3e8b6b75
Validity
Not Before: May 18 14:12:19 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=803f4aa68f4a926865ba37b0e83763b89ea03d87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:49:0d:81:4c:6c:bf:19:f3:11:91:91:f4:f2:
4a:7c:74:a2:38:cf:8f:38:18:ca:77:0d:99:ae:01:
5c:1b:eb:19:2e:1d:4a:41:0f:7d:8a:db:37:4e:5d:
df:a3:8b:72:33:f8:ad:94:ec:79:14:6e:4c:42:f5:
f7:c7:73:4f:cb:3f:06:a6:ce:d7:6d:a2:f5:be:be:
1b:19:b0:6d:31:7e:5c:6d:fd:5a:f4:b8:af:08:f9:
cd:ae:d4:e1:bb:cd:72:ef:00:52:56:44:a5:f1:78:
e7:37:05:6d:f4:ef:e3:50:0a:3a:97:ee:1c:5f:d6:
65:02:99:1f:12:a7:8b:6b:7d:29:be:ef:0d:46:bd:
10:c0:3b:7f:ef:99:7a:c5:9d:6a:7e:06:ed:d7:bb:
61:d0:f7:87:12:03:c9:24:4f:c3:0c:33:0e:15:15:
72:45:95:c7:6d:96:ad:8b:d5:ce:04:7b:95:fa:0a:
b5:a1:38:46:e4:16:a3:09:aa:21:72:68:1e:29:2e:
48:5b:d0:06:8c:38:c9:a0:ee:24:57:a9:71:f5:32:
e2:39:4c:5c:a0:a6:d3:a7:df:9c:6f:07:1c:02:78:
72:9e:ca:3e:f5:48:ec:95:bc:7f:17:f5:2f:58:ef:
33:a4:b6:6e:d7:44:86:87:ed:cb:c3:77:5e:f0:74:
e2:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:3F:4A:A6:8F:4A:92:68:65:BA:37:B0:E8:37:63:B8:9E:A0:3D:87
X509v3 Authority Key Identifier:
keyid:D4:75:FB:09:34:CF:6A:58:DC:CE:F1:10:87:5D:BE:5E:3E:8B:6B:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1HX7CTTPaljczvEQh12-Xj6La3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/gD9Kpo9Kkmhlujew6DdjuJ6gPYc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c8/bff4aa-4f07-4129-8ad6-c7914ab64273/1/1HX7CTTPaljczvEQh12-Xj6La3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.226.16.0/20
45.157.56.0/22
Signature Algorithm: sha256WithRSAEncryption
79:23:ec:14:34:a6:d4:73:a0:37:ee:60:03:64:2c:73:94:ce:
eb:51:42:cd:a6:07:3d:76:eb:3f:05:aa:a7:3e:37:87:5a:5f:
d7:ed:56:20:18:35:42:20:5e:5f:f8:8b:fd:22:d3:0c:8c:a8:
17:14:11:18:8a:a5:21:ec:04:8d:69:7e:bb:e3:1f:ec:ea:fb:
92:cf:4a:b0:9c:80:fa:42:c7:fd:e7:07:bc:41:46:97:1c:63:
97:da:5c:15:ab:63:20:4f:7e:2c:97:31:75:51:e5:16:a6:9b:
f3:8f:fd:02:78:ab:df:d6:3e:35:df:5e:93:fd:37:40:a2:b9:
31:95:e3:c3:51:fb:1a:14:28:cd:a2:dd:1e:91:f4:ea:df:a2:
44:6c:f3:ae:63:f7:f0:3e:58:2e:8c:24:45:d1:3f:17:73:cd:
b3:ab:38:6d:9f:09:3a:d0:29:da:98:7c:c3:1d:9b:03:67:40:
65:df:38:de:d5:4c:e2:19:a8:15:6c:db:92:1f:00:83:88:66:
7e:4a:f8:47:9d:a8:96:b8:84:b7:01:6d:e8:f1:98:f5:92:62:
85:d6:59:0c:a2:fe:5d:04:a0:17:bb:10:c5:3a:cd:19:74:32:
3a:06:df:9b:fd:cd:0c:45:a7:fc:15:51:d5:22:d2:a4:51:27:
34:8a:c7:8b
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEA8XKojANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
NDc1ZmIwOTM0Y2Y2YTU4ZGNjZWYxMTA4NzVkYmU1ZTNlOGI2Yjc1MB4XDTIyMDUx
ODE0MTIxOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoODAzZjRhYTY4ZjRh
OTI2ODY1YmEzN2IwZTgzNzYzYjg5ZWEwM2Q4NzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKRJDYFMbL8Z8xGRkfTySnx0ojjPjzgYyncNma4BXBvrGS4d
SkEPfYrbN05d36OLcjP4rZTseRRuTEL198dzT8s/BqbO122i9b6+GxmwbTF+XG39
WvS4rwj5za7U4bvNcu8AUlZEpfF45zcFbfTv41AKOpfuHF/WZQKZHxKni2t9Kb7v
DUa9EMA7f++ZesWdan4G7de7YdD3hxIDySRPwwwzDhUVckWVx22WrYvVzgR7lfoK
taE4RuQWowmqIXJoHikuSFvQBow4yaDuJFepcfUy4jlMXKCm06ffnG8HHAJ4cp7K
PvVI7JW8fxf1L1jvM6S2btdEhofty8N3XvB04msCAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSAP0qmj0qSaGW6N7DoN2O4nqA9hzAfBgNVHSMEGDAWgBTUdfsJNM9qWNzO
8RCHXb5ePotrdTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzFIWDdDVFRQYWxqY3p2RVFoMTItWGo2TGEzVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYzgvYmZmNGFhLTRmMDctNDEyOS04YWQ2LWM3OTE0YWI2NDI3My8x
L2dEOUtwbzlLa21obHVqZXc2RGRqdUo2Z1BZYy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzgv
YmZmNGFhLTRmMDctNDEyOS04YWQ2LWM3OTE0YWI2NDI3My8xLzFIWDdDVFRQYWxq
Y3p2RVFoMTItWGo2TGEzVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEBAXiEAMEAi2dODANBgkqhkiG9w0B
AQsFAAOCAQEAeSPsFDSm1HOgN+5gA2Qsc5TO61FCzaYHPXbrPwWqpz43h1pf1+1W
IBg1QiBeX/iL/SLTDIyoFxQRGIqlIewEjWl+u+Mf7Or7ks9KsJyA+kLH/ecHvEFG
lxxjl9pcFatjIE9+LJcxdVHlFqab84/9Anir39Y+Nd9ek/03QKK5MZXjw1H7GhQo
zaLdHpH06t+iRGzzrmP38D5YLowkRdE/F3PNs6s4bZ8JOtAp2ph8wx2bA2dAZd84
3tVM4hmoFWzbkh8Ag4hmfkr4R52olriEtwFt6PGY9ZJihdZZDKL+XQSgF7sQxTrN
GXQyOgbfm/3NDEWn/BVR1SLSpFEnNIrHiw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:43:51 2024 by rpki-client on console-ams.rpki-client.org