Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/MHDjVfLD8JeUAThZtPC1AxI_S7E.roa
File: MHDjVfLD8JeUAThZtPC1AxI_S7E.roa (raw, json)
Hash identifier: KDTh724cwsHgZiSt1ml7yYc5WgjyvnWcNht02lqpL50=
Subject key identifier: 30:70:E3:55:F2:C3:F0:97:94:01:38:59:B4:F0:B5:03:12:3F:4B:B1
Certificate issuer: /CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Certificate serial: 045DAA99
Authority key identifier: B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/MHDjVfLD8JeUAThZtPC1AxI_S7E.roa
Signing time: Thu 03 Mar 2022 16:04:49 +0000
ROA not before: Thu 03 Mar 2022 16:04:49 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43641
IP address blocks: 45.11.56.0/24 maxlen: 24
45.134.174.0/24 maxlen: 24
2a09:2dc1::/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73247385 (0x45daa99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b32c9c26df7ccd8ad38d89bd5d49380b93b1e009
Validity
Not Before: Mar 3 16:04:49 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=3070e355f2c3f09794013859b4f0b503123f4bb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:44:54:93:a6:81:ad:10:5d:82:5c:1a:d3:6c:
c8:b1:61:18:a1:a6:36:21:ef:13:88:4d:1f:79:e8:
6f:59:fd:53:85:99:27:8b:dc:4c:dc:5a:d4:47:0e:
c8:8e:ea:6b:41:66:3c:2b:ff:63:08:6e:4e:cf:e3:
37:91:24:70:5c:dd:8f:be:7a:c8:0e:08:bb:d2:3f:
6a:a0:93:26:e0:5a:df:dd:ee:31:ab:1d:ca:01:35:
27:22:fa:c9:24:d0:f7:af:ad:99:43:b2:0c:63:eb:
12:0e:ea:fb:1d:d9:d6:ef:ad:21:e4:66:ec:44:38:
2d:c4:0f:1f:e1:14:ca:e9:1d:f0:fd:72:71:bb:01:
ed:f5:6c:e9:0a:99:b7:c0:60:d8:a6:fe:25:f4:f4:
d9:af:e3:bc:24:8c:2b:39:0d:71:41:d2:c8:88:37:
45:df:8f:db:31:f1:e7:73:33:39:a9:e9:af:c1:0a:
78:20:3d:fc:de:5d:40:4e:cb:ad:d0:94:65:b0:5d:
5a:77:28:e1:3f:e7:9a:9c:0b:17:ee:97:44:39:ef:
67:41:2c:dc:46:fc:8b:0d:26:f3:c7:d7:d8:12:7e:
53:fd:f0:27:27:1d:09:a6:37:41:4d:d4:a9:21:95:
92:a8:04:1f:88:99:44:e9:5e:61:6b:8c:1f:2c:09:
84:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:70:E3:55:F2:C3:F0:97:94:01:38:59:B4:F0:B5:03:12:3F:4B:B1
X509v3 Authority Key Identifier:
keyid:B3:2C:9C:26:DF:7C:CD:8A:D3:8D:89:BD:5D:49:38:0B:93:B1:E0:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/syycJt98zYrTjYm9XUk4C5Ox4Ak.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/MHDjVfLD8JeUAThZtPC1AxI_S7E.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d5da0c-9cf3-4f8b-a562-cb11bc5b2f1b/1/syycJt98zYrTjYm9XUk4C5Ox4Ak.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.11.56.0/24
45.134.174.0/24
IPv6:
2a09:2dc1::/32
Signature Algorithm: sha256WithRSAEncryption
99:14:84:9a:f5:23:c5:8c:8c:1d:04:18:37:a2:c3:50:02:8f:
1e:9f:65:6a:da:2b:7f:16:28:49:c1:f4:4d:79:fa:04:df:ae:
1d:88:a5:9a:d0:36:a4:b5:8d:99:5c:5d:10:8c:ca:64:4f:d2:
b5:78:6a:f8:b2:90:9a:62:ad:85:0f:37:96:19:82:7b:ac:46:
aa:d3:89:8a:ad:b7:f7:2f:66:5e:3d:9c:12:cc:29:9c:77:4f:
a5:7a:71:bc:a5:a6:47:4c:b6:e7:3c:06:69:27:b8:86:0c:e5:
c8:63:c7:4b:41:37:ca:31:fd:c4:9e:8e:00:fb:3a:7c:f3:21:
b0:89:05:67:07:c0:42:98:df:02:a1:b9:67:e2:c4:71:75:84:
7f:7c:a3:0e:cb:7d:8a:6c:d8:8a:9e:0c:00:26:f0:f0:c9:cb:
42:4a:27:ae:f0:8b:06:1e:ad:74:64:b8:37:d9:ad:9a:a2:ca:
14:e6:76:24:4a:cd:92:78:96:ca:df:57:50:4e:ec:df:26:b4:
ea:9f:15:b4:82:0e:ed:2e:a6:d6:98:08:ac:d1:e7:5f:a4:ae:
38:81:c9:bd:f9:18:a3:71:5e:45:72:db:4c:20:cb:7e:01:54:
8c:cd:3e:ce:d6:6e:a5:4b:a8:1c:6e:a0:73:09:da:db:ad:71:
c2:ff:82:bf
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgIEBF2qmTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
MzJjOWMyNmRmN2NjZDhhZDM4ZDg5YmQ1ZDQ5MzgwYjkzYjFlMDA5MB4XDTIyMDMw
MzE2MDQ0OVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMzA3MGUzNTVmMmMz
ZjA5Nzk0MDEzODU5YjRmMGI1MDMxMjNmNGJiMTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAM9EVJOmga0QXYJcGtNsyLFhGKGmNiHvE4hNH3nob1n9U4WZ
J4vcTNxa1EcOyI7qa0FmPCv/YwhuTs/jN5EkcFzdj756yA4Iu9I/aqCTJuBa393u
MasdygE1JyL6ySTQ96+tmUOyDGPrEg7q+x3Z1u+tIeRm7EQ4LcQPH+EUyukd8P1y
cbsB7fVs6QqZt8Bg2Kb+JfT02a/jvCSMKzkNcUHSyIg3Rd+P2zHx53MzOanpr8EK
eCA9/N5dQE7LrdCUZbBdWnco4T/nmpwLF+6XRDnvZ0Es3Eb8iw0m88fX2BJ+U/3w
JycdCaY3QU3UqSGVkqgEH4iZROleYWuMHywJhMcCAwEAAaOCAh4wggIaMB0GA1Ud
DgQWBBQwcONV8sPwl5QBOFm08LUDEj9LsTAfBgNVHSMEGDAWgBSzLJwm33zNitON
ib1dSTgLk7HgCTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3N5eWNKdDk4ellyVGpZbTlYVWs0QzVPeDRBay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvY2QvZDVkYTBjLTljZjMtNGY4Yi1hNTYyLWNiMTFiYzViMmYxYi8x
L01IRGpWZkxEOEplVUFUaFp0UEMxQXhJX1M3RS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2Qv
ZDVkYTBjLTljZjMtNGY4Yi1hNTYyLWNiMTFiYzViMmYxYi8xL3N5eWNKdDk4elly
VGpZbTlYVWs0QzVPeDRBay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0
BggrBgEFBQcBBwEB/wQlMCMwEgQCAAEwDAMEAC0LOAMEAC2GrjANBAIAAjAHAwUA
KgktwTANBgkqhkiG9w0BAQsFAAOCAQEAmRSEmvUjxYyMHQQYN6LDUAKPHp9lator
fxYoScH0TXn6BN+uHYilmtA2pLWNmVxdEIzKZE/StXhq+LKQmmKthQ83lhmCe6xG
qtOJiq239y9mXj2cEswpnHdPpXpxvKWmR0y25zwGaSe4hgzlyGPHS0E3yjH9xJ6O
APs6fPMhsIkFZwfAQpjfAqG5Z+LEcXWEf3yjDst9imzYip4MACbw8MnLQkonrvCL
Bh6tdGS4N9mtmqLKFOZ2JErNkniWyt9XUE7s3ya06p8VtIIO7S6m1pgIrNHnX6Su
OIHJvfkYo3FeRXLbTCDLfgFUjM0+ztZupUuoHG6gcwna261xwv+Cvw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:21 2024 by rpki-client on console-fra.rpki-client.org