Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rtE6wj1wdNohk0FcmjDcbCg_f_k.roa
File: rtE6wj1wdNohk0FcmjDcbCg_f_k.roa (raw, json)
Hash identifier: o8LX6Ltlg67AxgNPdmlRQnqbDEhVCjIXTt8s5kcOHm4=
Subject key identifier: AE:D1:3A:C2:3D:70:74:DA:21:93:41:5C:9A:30:DC:6C:28:3F:7F:F9
Certificate issuer: /CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Certificate serial: 0181D4BD8B6AF7F4927C89B242D418937212
Authority key identifier: 60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rtE6wj1wdNohk0FcmjDcbCg_f_k.roa
Signing time: Wed 06 Jul 2022 18:20:00 +0000
ROA not before: Wed 06 Jul 2022 18:20:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 210546
IP address blocks: 45.8.23.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:d4:bd:8b:6a:f7:f4:92:7c:89:b2:42:d4:18:93:72:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=606784c105085b9d6ad5f73a03b20d9a5c114caf
Validity
Not Before: Jul 6 18:20:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aed13ac23d7074da2193415c9a30dc6c283f7ff9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:ce:24:f2:e0:5f:6b:80:66:99:ca:7a:79:90:
45:56:ee:08:b3:0e:3c:81:dc:34:e4:65:50:40:3e:
2c:33:e0:3a:89:7e:ca:80:0e:07:37:ac:a2:d5:48:
b8:86:b5:d0:6b:25:a6:57:d8:50:ec:de:d3:22:5b:
f6:24:e1:68:bb:97:30:4e:42:f4:14:ee:9f:00:68:
1f:6f:e0:e4:2f:26:dc:b6:e1:64:37:5e:3d:4e:79:
be:c4:4f:63:64:c1:5a:c9:3b:21:5b:f3:7e:24:46:
3f:90:47:6f:d7:f9:a4:da:e1:d2:29:ec:ff:db:09:
98:4d:76:85:ba:7a:3f:7f:4e:43:f6:e7:36:0b:14:
28:ce:50:e9:b8:a9:aa:69:cd:ee:65:ac:d2:b0:48:
8d:34:62:e6:61:66:89:94:23:fc:85:cf:31:51:f3:
e4:66:b9:a5:5f:9b:bc:f2:ed:7b:c8:4f:7e:97:46:
1b:63:ab:bd:ef:2a:76:79:bf:17:6e:fd:96:09:3d:
9d:54:e5:7e:e9:a3:11:58:37:91:d0:14:de:3a:ce:
aa:e7:49:f7:33:cf:27:d9:a6:6c:f6:86:39:df:ed:
02:e1:c2:f0:57:64:e1:be:34:bb:e4:02:9d:61:96:
af:6a:ae:f2:39:8b:ed:6c:10:ba:df:a5:a5:6c:fe:
b1:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D1:3A:C2:3D:70:74:DA:21:93:41:5C:9A:30:DC:6C:28:3F:7F:F9
X509v3 Authority Key Identifier:
keyid:60:67:84:C1:05:08:5B:9D:6A:D5:F7:3A:03:B2:0D:9A:5C:11:4C:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/YGeEwQUIW51q1fc6A7INmlwRTK8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/rtE6wj1wdNohk0FcmjDcbCg_f_k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/2b834e-bad2-49ff-ba38-b4342ba91abc/1/YGeEwQUIW51q1fc6A7INmlwRTK8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.23.0/24
Signature Algorithm: sha256WithRSAEncryption
b7:05:cb:ce:e8:51:03:b1:69:32:f8:1f:65:4b:47:e5:24:ad:
24:bc:51:0f:49:59:83:c3:23:68:10:82:06:b4:34:90:a9:1a:
c3:89:b6:47:2f:c4:32:59:a6:49:d6:0b:71:98:af:da:09:4a:
47:bf:64:ff:66:02:eb:41:c2:c5:66:d7:61:e4:69:c9:45:ba:
3e:87:5d:f7:f6:71:f7:ba:1c:1e:0f:12:c6:8e:d6:87:d0:0a:
6b:17:0a:cc:ef:85:15:76:de:e9:0f:41:cb:dc:b3:f2:c4:47:
6b:ed:58:bf:a1:fb:d4:d8:d6:12:3c:cf:0a:6b:4f:04:96:4a:
1a:58:b6:2e:84:a6:d5:c4:25:62:d3:91:b3:b8:9d:05:16:76:
d8:59:f9:b3:74:6c:ee:9d:94:3c:3c:39:1a:7c:b8:8c:1a:28:
f9:41:f1:18:00:90:a5:bf:d5:b8:c6:a6:27:41:75:47:d9:60:
cb:13:24:3d:c8:0e:38:5a:5f:a7:7f:5e:cf:ae:03:d1:af:78:
50:35:62:8f:73:f5:83:58:e6:dc:a6:1d:f8:31:74:43:86:7b:
7e:20:c1:67:73:ac:b3:36:af:5d:8e:81:61:08:47:48:c5:74:
fa:6d:78:a7:04:cc:57:4b:a2:a5:de:8d:d0:57:9a:cf:48:93:
f9:ef:65:22
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHUvYtq9/SSfImyQtQYk3ISMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDYwNjc4NGMxMDUwODViOWQ2YWQ1ZjczYTAzYjIwZDlhNWMx
MTRjYWYwHhcNMjIwNzA2MTgyMDAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhZWQxM2FjMjNkNzA3NGRhMjE5MzQxNWM5YTMwZGM2YzI4M2Y3ZmY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhc4k8uBfa4Bmmcp6eZBFVu4Isw48
gdw05GVQQD4sM+A6iX7KgA4HN6yi1Ui4hrXQayWmV9hQ7N7TIlv2JOFou5cwTkL0
FO6fAGgfb+DkLybctuFkN149Tnm+xE9jZMFayTshW/N+JEY/kEdv1/mk2uHSKez/
2wmYTXaFuno/f05D9uc2CxQozlDpuKmqac3uZazSsEiNNGLmYWaJlCP8hc8xUfPk
ZrmlX5u88u17yE9+l0YbY6u97yp2eb8Xbv2WCT2dVOV+6aMRWDeR0BTeOs6q50n3
M88n2aZs9oY53+0C4cLwV2ThvjS75AKdYZavaq7yOYvtbBC636WlbP6xdQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFK7ROsI9cHTaIZNBXJow3GwoP3/5MB8GA1UdIwQY
MBaAFGBnhMEFCFudatX3OgOyDZpcEUyvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgt
YjQzNDJiYTkxYWJjLzEvcnRFNndqMXdkTm9oazBGY21qRGNiQ2dfZl9rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC8yYjgzNGUtYmFkMi00OWZmLWJhMzgtYjQzNDJiYTkxYWJj
LzEvWUdlRXdRVUlXNTFxMWZjNkE3SU5tbHdSVEs4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALQgXMA0G
CSqGSIb3DQEBCwUAA4IBAQC3BcvO6FEDsWky+B9lS0flJK0kvFEPSVmDwyNoEIIG
tDSQqRrDibZHL8QyWaZJ1gtxmK/aCUpHv2T/ZgLrQcLFZtdh5GnJRbo+h1339nH3
uhweDxLGjtaH0AprFwrM74UVdt7pD0HL3LPyxEdr7Vi/ofvU2NYSPM8Ka08Elkoa
WLYuhKbVxCVi05GzuJ0FFnbYWfmzdGzunZQ8PDkafLiMGij5QfEYAJClv9W4xqYn
QXVH2WDLEyQ9yA44Wl+nf17PrgPRr3hQNWKPc/WDWObcph34MXRDhnt+IMFnc6yz
Nq9djoFhCEdIxXT6bXinBMxXS6Kl3o3QV5rPSJP572Ui
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:54:43 2024 by rpki-client on console-fra.rpki-client.org