Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/qKoTxJnCDyzQ67TXE-UKmWzhb6Q.roa
File: qKoTxJnCDyzQ67TXE-UKmWzhb6Q.roa (raw, json)
Hash identifier: WHLORWVVH1ONiC7ivK9XwNRlRapEiduJF0gYV/ZiFrc=
Subject key identifier: A8:AA:13:C4:99:C2:0F:2C:D0:EB:B4:D7:13:E5:0A:99:6C:E1:6F:A4
Certificate issuer: /CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Certificate serial: 0181CF76A9B2786862221A03313811B7701D
Authority key identifier: 6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/qKoTxJnCDyzQ67TXE-UKmWzhb6Q.roa
Signing time: Tue 05 Jul 2022 17:44:29 +0000
ROA not before: Tue 05 Jul 2022 17:44:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212396
IP address blocks: 45.85.194.0/24 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:81:cf:76:a9:b2:78:68:62:22:1a:03:31:38:11:b7:70:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c8fd1a8ae5996c1e5692c1a8c42bfe9c3ba5745
Validity
Not Before: Jul 5 17:44:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a8aa13c499c20f2cd0ebb4d713e50a996ce16fa4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c6:9d:ce:bb:18:41:9f:25:3a:b5:27:8b:01:
fc:68:12:18:8c:cb:39:71:3d:bd:0a:bb:16:e4:ac:
ad:f5:1f:72:a4:35:25:80:36:62:ab:e7:51:38:81:
f1:ed:b1:78:75:0b:bd:6d:6f:97:c1:55:8f:a6:98:
e9:0d:d7:66:f7:e6:2a:b0:02:ec:9b:58:19:6b:28:
df:7a:98:54:21:b9:d0:59:c8:25:4f:01:b8:b7:5f:
f3:b3:8b:2d:1d:9d:1d:2e:83:3e:65:cc:a7:7c:98:
f8:5a:7d:b5:f5:e7:ca:ae:97:a7:23:10:a4:fc:0a:
c3:7c:a3:5e:c8:4e:f7:08:e4:90:46:47:62:d3:b7:
b5:b4:cb:80:d1:59:15:46:3f:03:08:13:59:30:76:
14:af:10:13:eb:ff:a7:2e:c8:d8:e8:59:6c:f4:3d:
08:47:eb:69:65:31:42:f1:fc:70:cd:0e:66:9e:2e:
b4:1b:d7:c5:67:79:62:b8:18:ed:38:49:b8:7d:69:
07:08:6b:fd:6d:7a:0b:38:7c:b0:a6:38:ff:8d:7f:
3b:ec:da:97:02:9a:94:1c:de:db:11:8d:cf:18:5c:
cc:9a:5c:73:68:1f:5a:94:05:b8:92:b5:12:49:5e:
16:a1:33:dd:f3:c6:77:6e:12:26:5e:4f:4f:b9:48:
1c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:AA:13:C4:99:C2:0F:2C:D0:EB:B4:D7:13:E5:0A:99:6C:E1:6F:A4
X509v3 Authority Key Identifier:
keyid:6C:8F:D1:A8:AE:59:96:C1:E5:69:2C:1A:8C:42:BF:E9:C3:BA:57:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bI_RqK5ZlsHlaSwajEK_6cO6V0U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/qKoTxJnCDyzQ67TXE-UKmWzhb6Q.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/492590-a02f-443e-aaa3-feac26eaecc2/1/bI_RqK5ZlsHlaSwajEK_6cO6V0U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.194.0/24
Signature Algorithm: sha256WithRSAEncryption
70:6f:cd:73:36:e7:54:6e:1e:c0:ed:2a:3e:07:4e:17:f3:e6:
5b:a7:78:bc:14:45:7e:c0:7a:ab:d0:10:42:dd:f2:6f:3e:67:
3a:b7:7d:a0:3c:8a:bf:20:94:27:71:59:73:67:bf:67:1f:44:
6b:6f:19:a8:91:00:7d:f3:e9:8f:7d:e1:7e:55:2d:df:7f:5c:
65:78:ec:bd:2b:40:76:ac:7a:84:92:b3:76:a1:79:1d:3e:65:
01:51:6a:0f:c1:e1:11:90:cc:9a:60:96:f4:30:98:f4:0a:47:
fb:aa:88:2a:1c:55:79:df:e6:7b:9b:a2:6c:1a:16:7b:66:1e:
c2:39:79:c7:fd:77:c8:51:48:15:e5:37:ee:de:68:9a:d5:32:
5c:b1:b8:55:03:cd:4c:54:d8:25:18:17:d3:0f:5d:c5:23:96:
6e:98:fe:79:c5:5a:60:8f:ad:49:37:e0:94:10:58:2d:14:ee:
c8:3f:c7:3b:45:7b:51:31:a5:56:eb:f9:3d:c1:fc:ae:b8:f0:
28:2f:d1:c7:29:12:e6:44:e6:c8:ea:ff:1e:1a:78:2c:82:71:
38:53:2a:72:9f:71:65:8a:ac:e8:cf:8b:d8:d8:58:d3:c0:04:
cc:97:9f:f8:67:28:00:63:fe:15:4a:0f:08:08:32:02:3e:4e:
ef:b4:e8:19
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYHPdqmyeGhiIhoDMTgRt3AdMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjOGZkMWE4YWU1OTk2YzFlNTY5MmMxYThjNDJiZmU5YzNi
YTU3NDUwHhcNMjIwNzA1MTc0NDI5WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGFhMTNjNDk5YzIwZjJjZDBlYmI0ZDcxM2U1MGE5OTZjZTE2ZmE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5MadzrsYQZ8lOrUniwH8aBIYjMs5
cT29CrsW5Kyt9R9ypDUlgDZiq+dROIHx7bF4dQu9bW+XwVWPppjpDddm9+YqsALs
m1gZayjfephUIbnQWcglTwG4t1/zs4stHZ0dLoM+ZcynfJj4Wn219efKrpenIxCk
/ArDfKNeyE73COSQRkdi07e1tMuA0VkVRj8DCBNZMHYUrxAT6/+nLsjY6Fls9D0I
R+tpZTFC8fxwzQ5mni60G9fFZ3liuBjtOEm4fWkHCGv9bXoLOHywpjj/jX877NqX
ApqUHN7bEY3PGFzMmlxzaB9alAW4krUSSV4WoTPd88Z3bhImXk9PuUgcxwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKiqE8SZwg8s0Ou01xPlCpls4W+kMB8GA1UdIwQY
MBaAFGyP0aiuWZbB5WksGoxCv+nDuldFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMt
ZmVhYzI2ZWFlY2MyLzEvcUtvVHhKbkNEeXpRNjdUWEUtVUttV3poYjZRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC80OTI1OTAtYTAyZi00NDNlLWFhYTMtZmVhYzI2ZWFlY2My
LzEvYklfUnFLNVpsc0hsYVN3YWpFS182Y082VjBVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALVXCMA0G
CSqGSIb3DQEBCwUAA4IBAQBwb81zNudUbh7A7So+B04X8+Zbp3i8FEV+wHqr0BBC
3fJvPmc6t32gPIq/IJQncVlzZ79nH0RrbxmokQB98+mPfeF+VS3ff1xleOy9K0B2
rHqEkrN2oXkdPmUBUWoPweERkMyaYJb0MJj0Ckf7qogqHFV53+Z7m6JsGhZ7Zh7C
OXnH/XfIUUgV5Tfu3mia1TJcsbhVA81MVNglGBfTD13FI5ZumP55xVpgj61JN+CU
EFgtFO7IP8c7RXtRMaVW6/k9wfyuuPAoL9HHKRLmRObI6v8eGngsgnE4Uypyn3Fl
iqzoz4vY2FjTwATMl5/4ZygAY/4VSg8ICDICPk7vtOgZ
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:04:18 2023 by rpki-client on console-fra.rpki-client.org