Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5eaFjZ39fhWIsu9GucCHs-g3VaQ.roa
File: 5eaFjZ39fhWIsu9GucCHs-g3VaQ.roa (raw, json)
Hash identifier: wJ4Ecwrtyb7PJ0+qssW1n+Ms54wFpt1m/ztCIoU+6QI=
Subject key identifier: E5:E6:85:8D:9D:FD:7E:15:88:B2:EF:46:B9:C0:87:B3:E8:37:55:A4
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 018331D02EC104C2D5BC0501B6644B44BF6E
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5eaFjZ39fhWIsu9GucCHs-g3VaQ.roa
Signing time: Mon 12 Sep 2022 13:07:50 +0000
ROA not before: Mon 12 Sep 2022 13:07:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 60068
IP address blocks: 45.138.211.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:31:d0:2e:c1:04:c2:d5:bc:05:01:b6:64:4b:44:bf:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Sep 12 13:07:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e5e6858d9dfd7e1588b2ef46b9c087b3e83755a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:26:2d:59:97:e8:58:1e:36:67:5b:28:4e:f2:
bc:38:4c:25:2d:77:09:6f:9d:8d:54:83:c4:d9:b9:
95:0a:ad:0e:a5:74:f9:2f:a3:d7:90:35:2d:c9:46:
94:cf:17:0f:d6:6b:da:ae:38:52:3e:b2:da:f5:bb:
1e:13:b4:72:9c:b1:8e:a4:e9:24:c4:5d:d3:28:d2:
f9:0c:09:67:ef:11:d5:31:c0:a0:79:65:47:8a:5d:
e5:73:47:b4:fe:68:de:1a:63:46:8e:cc:19:ea:de:
b7:28:19:8a:19:07:4c:c2:28:87:85:7f:27:4c:3c:
c6:65:fc:e5:37:74:1f:bb:87:95:7a:aa:c8:d4:39:
71:78:c4:26:a0:c1:97:ba:f4:34:62:78:9c:aa:b0:
1d:0f:ec:11:d5:7d:7f:84:6f:ee:e4:77:83:ad:0f:
71:82:9e:1e:0c:9e:38:47:0a:f2:f0:2b:b3:94:64:
71:9e:5e:7e:83:39:71:cf:23:01:f0:1c:b1:27:7d:
9c:02:4d:e4:79:47:99:05:b4:29:34:b3:81:3e:1a:
3b:f1:1f:cf:9e:e8:2f:7f:cd:92:d6:de:79:ef:16:
40:25:92:ef:bf:f5:b0:fd:3f:0c:1a:66:d9:41:39:
92:78:ff:23:ea:0a:01:c1:4c:b5:82:88:86:91:2a:
a8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:E6:85:8D:9D:FD:7E:15:88:B2:EF:46:B9:C0:87:B3:E8:37:55:A4
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/5eaFjZ39fhWIsu9GucCHs-g3VaQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.138.211.0/24
Signature Algorithm: sha256WithRSAEncryption
6e:2b:db:57:57:ed:ec:65:21:e7:dc:71:fd:03:05:b5:a9:be:
06:e0:62:cd:01:ee:4d:84:2a:92:27:4c:12:5c:9f:01:07:85:
51:af:e0:05:6c:9d:67:59:63:4d:20:36:ff:50:90:ac:80:22:
46:b9:31:b4:66:99:4a:04:f6:c1:49:86:46:09:67:b8:20:9e:
c9:51:61:33:d1:48:70:c1:73:68:3c:51:18:e5:91:e3:dc:10:
5c:44:e8:83:d9:16:8f:95:ba:08:c4:20:b6:c9:91:bf:91:12:
66:7c:ad:d4:66:f3:29:c9:fb:23:16:b7:30:f9:57:27:67:6d:
0b:75:be:b6:59:2b:2d:98:76:a4:2c:dd:19:d4:06:5e:05:aa:
5f:83:f5:8d:f7:86:b6:ca:07:d6:13:9a:74:c7:90:bb:76:75:
73:2a:0e:7f:61:55:16:7a:e2:93:11:d7:53:eb:64:e0:f4:4e:
73:b5:a9:e1:73:e6:fe:2a:54:72:72:f4:55:30:1b:3c:2a:51:
66:42:cc:80:a5:d7:73:74:13:ce:5d:cf:fe:a7:3d:7a:a9:cb:
f0:47:ab:da:42:bd:97:7c:b0:86:68:94:53:81:05:f6:43:8f:
ca:47:ce:9c:b8:32:64:8f:9a:bb:db:be:8d:9f:45:e7:65:13:
94:08:76:0e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYMx0C7BBMLVvAUBtmRLRL9uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjIwOTEyMTMwNzUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlNWU2ODU4ZDlkZmQ3ZTE1ODhiMmVmNDZiOWMwODdiM2U4Mzc1NWE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsyYtWZfoWB42Z1soTvK8OEwlLXcJ
b52NVIPE2bmVCq0OpXT5L6PXkDUtyUaUzxcP1mvarjhSPrLa9bseE7RynLGOpOkk
xF3TKNL5DAln7xHVMcCgeWVHil3lc0e0/mjeGmNGjswZ6t63KBmKGQdMwiiHhX8n
TDzGZfzlN3Qfu4eVeqrI1DlxeMQmoMGXuvQ0YnicqrAdD+wR1X1/hG/u5HeDrQ9x
gp4eDJ44Rwry8CuzlGRxnl5+gzlxzyMB8ByxJ32cAk3keUeZBbQpNLOBPho78R/P
nugvf82S1t557xZAJZLvv/Ww/T8MGmbZQTmSeP8j6goBwUy1goiGkSqo5QIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOXmhY2d/X4ViLLvRrnAh7PoN1WkMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvNWVhRmpaMzlmaFdJc3U5R3VjQ0hzLWczVmFRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYrTMA0G
CSqGSIb3DQEBCwUAA4IBAQBuK9tXV+3sZSHn3HH9AwW1qb4G4GLNAe5NhCqSJ0wS
XJ8BB4VRr+AFbJ1nWWNNIDb/UJCsgCJGuTG0ZplKBPbBSYZGCWe4IJ7JUWEz0Uhw
wXNoPFEY5ZHj3BBcROiD2RaPlboIxCC2yZG/kRJmfK3UZvMpyfsjFrcw+VcnZ20L
db62WSstmHakLN0Z1AZeBapfg/WN94a2ygfWE5p0x5C7dnVzKg5/YVUWeuKTEddT
62Tg9E5ztanhc+b+KlRycvRVMBs8KlFmQsyApddzdBPOXc/+pz16qcvwR6vaQr2X
fLCGaJRTgQX2Q4/KR86cuDJkj5q7276Nn0XnZROUCHYO
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:17 2023 by rpki-client on console-fra.rpki-client.org