Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/_XQvSiWOHPiKciYtWQffLMVmX7o.roa
File: _XQvSiWOHPiKciYtWQffLMVmX7o.roa (raw, json)
Hash identifier: SsbSyt92TFKC6OFKvOFraX0ZENYEPtXM4LgDwkCivfs=
Subject key identifier: FD:74:2F:4A:25:8E:1C:F8:8A:72:26:2D:59:07:DF:2C:C5:66:5F:BA
Certificate issuer: /CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Certificate serial: 0724A1E1
Authority key identifier: 1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/_XQvSiWOHPiKciYtWQffLMVmX7o.roa
Signing time: Sat 11 Jun 2022 14:51:02 +0000
ROA not before: Sat 11 Jun 2022 14:51:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43043
IP address blocks: 45.146.160.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119841249 (0x724a1e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1d5af3ae21f97ec4ec75d51a85a3e162ed7a9ed7
Validity
Not Before: Jun 11 14:51:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=fd742f4a258e1cf88a72262d5907df2cc5665fba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:05:b1:73:75:20:4d:0e:16:9a:af:39:96:6c:
77:18:4d:58:b1:c2:c0:b4:23:9d:e2:ba:23:50:ab:
4b:24:c0:c3:72:28:d4:7e:e8:bc:c9:b2:e7:a7:3e:
3a:9d:a8:e1:4c:e2:54:cf:2b:75:8d:74:27:75:a1:
67:e4:70:4c:8c:b3:5e:c2:54:f6:d7:6a:eb:8a:3d:
f8:47:02:d5:a0:43:3f:c3:f3:37:1c:ac:4a:23:54:
82:6f:8c:93:98:14:b9:26:d1:60:6f:f5:ce:c0:01:
d5:de:cd:c9:a6:d3:77:d0:1e:4b:9d:87:f9:6d:71:
4f:68:f5:07:66:64:e1:f5:b4:f2:83:3e:af:ea:34:
99:87:cc:f1:c4:85:c0:8b:2b:b4:2d:49:1e:c4:0b:
6c:15:d9:cc:c3:5a:2d:f5:f3:a9:05:5a:6f:cd:33:
86:5b:d5:92:0b:df:cb:49:73:2f:3d:84:b6:2a:6f:
65:1b:90:eb:64:80:51:44:7b:76:9f:22:ce:84:c3:
b0:5e:60:a3:56:76:9d:d6:ae:40:53:88:36:92:af:
62:53:c0:8d:6c:25:46:a2:d1:47:8d:5d:37:8f:4e:
67:70:b7:36:35:4c:7d:75:bf:70:db:eb:1a:e8:5b:
3a:43:f5:22:b8:a8:5c:7b:e2:0d:50:e0:b9:5d:7c:
79:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:74:2F:4A:25:8E:1C:F8:8A:72:26:2D:59:07:DF:2C:C5:66:5F:BA
X509v3 Authority Key Identifier:
keyid:1D:5A:F3:AE:21:F9:7E:C4:EC:75:D5:1A:85:A3:E1:62:ED:7A:9E:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HVrzriH5fsTsddUahaPhYu16ntc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/_XQvSiWOHPiKciYtWQffLMVmX7o.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d34acf-3a5f-464f-95ee-908bba12b21a/1/HVrzriH5fsTsddUahaPhYu16ntc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.146.160.0/24
Signature Algorithm: sha256WithRSAEncryption
36:ef:c7:6c:ed:c0:1c:fa:4b:8a:32:17:e3:f6:84:bb:2a:6b:
d7:b4:d6:fd:0c:b2:a8:11:bc:a0:37:53:1c:90:76:71:34:bd:
14:99:02:45:6d:60:d7:23:77:26:06:ce:5b:f8:d2:34:c2:2b:
22:e5:34:16:29:18:08:56:b1:1e:91:07:9b:1d:5b:5d:1b:d7:
95:ee:ee:78:97:f0:c8:fe:69:56:f1:23:b6:0e:3b:85:1e:63:
eb:81:83:54:9d:9b:3a:c7:4e:e8:92:7b:8c:eb:21:b6:e8:f3:
00:e3:ac:80:00:13:dc:3d:45:19:7d:b1:62:35:df:dc:95:74:
ac:76:a0:45:87:8e:f2:99:7c:c8:35:6a:b7:e1:42:e1:b5:7e:
cc:82:f1:d9:3b:96:b1:bc:51:86:c0:46:34:87:02:ea:0c:ab:
1e:61:2b:75:7c:18:04:5c:78:ab:fd:e4:20:ea:d9:74:ed:7c:
22:d5:ff:81:ad:78:be:5b:6f:10:82:3d:cb:c1:06:d7:44:8f:
5b:12:5c:86:a6:2c:3f:c6:5c:79:3c:25:42:2a:ce:e3:fa:61:
db:02:3e:6a:54:2c:8d:c5:8d:f0:5b:dd:d0:b0:86:c0:42:7a:
79:4d:0f:93:4e:7f:54:d2:2c:c7:2c:00:e4:fe:a0:db:15:b9:
62:f3:cf:62
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBySh4TANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
ZDVhZjNhZTIxZjk3ZWM0ZWM3NWQ1MWE4NWEzZTE2MmVkN2E5ZWQ3MB4XDTIyMDYx
MTE0NTEwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZmQ3NDJmNGEyNThl
MWNmODhhNzIyNjJkNTkwN2RmMmNjNTY2NWZiYTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJoFsXN1IE0OFpqvOZZsdxhNWLHCwLQjneK6I1CrSyTAw3Io
1H7ovMmy56c+Op2o4UziVM8rdY10J3WhZ+RwTIyzXsJU9tdq64o9+EcC1aBDP8Pz
NxysSiNUgm+Mk5gUuSbRYG/1zsAB1d7NyabTd9AeS52H+W1xT2j1B2Zk4fW08oM+
r+o0mYfM8cSFwIsrtC1JHsQLbBXZzMNaLfXzqQVab80zhlvVkgvfy0lzLz2Etipv
ZRuQ62SAUUR7dp8izoTDsF5go1Z2ndauQFOINpKvYlPAjWwlRqLRR41dN49OZ3C3
NjVMfXW/cNvrGuhbOkP1IrioXHviDVDguV18eS8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT9dC9KJY4c+IpyJi1ZB98sxWZfujAfBgNVHSMEGDAWgBQdWvOuIfl+xOx1
1RqFo+Fi7Xqe1zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0hWcnpyaUg1ZnNUc2RkVWFoYVBoWXUxNm50Yy5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2IvZDM0YWNmLTNhNWYtNDY0Zi05NWVlLTkwOGJiYTEyYjIxYS8x
L19YUXZTaVdPSFBpS2NpWXRXUWZmTE1WbVg3by5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Iv
ZDM0YWNmLTNhNWYtNDY0Zi05NWVlLTkwOGJiYTEyYjIxYS8xL0hWcnpyaUg1ZnNU
c2RkVWFoYVBoWXUxNm50Yy5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2SoDANBgkqhkiG9w0BAQsFAAOC
AQEANu/HbO3AHPpLijIX4/aEuypr17TW/QyyqBG8oDdTHJB2cTS9FJkCRW1g1yN3
JgbOW/jSNMIrIuU0FikYCFaxHpEHmx1bXRvXle7ueJfwyP5pVvEjtg47hR5j64GD
VJ2bOsdO6JJ7jOshtujzAOOsgAAT3D1FGX2xYjXf3JV0rHagRYeO8pl8yDVqt+FC
4bV+zILx2TuWsbxRhsBGNIcC6gyrHmErdXwYBFx4q/3kIOrZdO18ItX/ga14vltv
EII9y8EG10SPWxJchqYsP8ZceTwlQirO4/ph2wI+alQsjcWN8Fvd0LCGwEJ6eU0P
k05/VNIsxywA5P6g2xW5YvPPYg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:02 2023 by rpki-client on console-fra.rpki-client.org