Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/QtjMP7Vb0sK3WMjtZn3HhDUy7dA.roa
File: QtjMP7Vb0sK3WMjtZn3HhDUy7dA.roa (raw, json)
Hash identifier: hn+QuHezLNPjEFS/qVI9PSgOeer536Mz7RBZERScVsM=
Subject key identifier: 42:D8:CC:3F:B5:5B:D2:C2:B7:58:C8:ED:66:7D:C7:84:35:32:ED:D0
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 01821D6DFB753E951B872B0E1EE4EBC71EBD
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/QtjMP7Vb0sK3WMjtZn3HhDUy7dA.roa
Signing time: Wed 20 Jul 2022 21:05:23 +0000
ROA not before: Wed 20 Jul 2022 21:05:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 39782
IP address blocks: 45.82.222.0/24 maxlen: 24
45.82.221.0/24 maxlen: 24
45.82.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:1d:6d:fb:75:3e:95:1b:87:2b:0e:1e:e4:eb:c7:1e:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jul 20 21:05:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=42d8cc3fb55bd2c2b758c8ed667dc7843532edd0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7c:a3:e5:af:19:e1:bc:e7:4c:96:9b:31:51:
a3:a6:f1:a1:6a:d7:fe:8f:c9:b7:57:44:40:db:b4:
b5:1e:85:d7:b9:10:f1:3e:4c:65:8b:53:84:93:37:
58:f1:22:e7:29:aa:d5:55:5a:67:0c:e2:80:48:88:
2a:70:fa:dd:e0:f6:51:7f:90:6a:e0:1a:2f:7f:30:
88:30:16:62:2d:6d:9e:b6:3e:c6:41:32:2b:49:be:
d8:88:10:f0:78:c3:8b:81:47:f1:37:7a:89:8b:0d:
a5:79:3a:2d:ac:21:a4:fd:e7:1f:8d:e9:23:14:1d:
3e:32:d0:59:81:0b:41:04:8f:b7:bd:50:64:06:0b:
79:23:50:d8:60:40:44:cf:99:a0:b4:9a:a2:97:d2:
d0:2c:72:ad:bf:73:85:c7:e8:4f:3f:ee:2d:34:36:
75:c8:54:bc:2f:83:67:6a:a5:75:74:27:49:2d:ab:
8d:26:d1:3f:54:39:e2:26:f3:7c:55:ee:51:a1:44:
59:95:81:4d:95:05:bc:2b:db:81:f3:30:35:a0:02:
af:7a:d5:0a:48:19:84:26:c2:b0:38:83:cd:eb:06:
19:60:21:94:a3:29:c8:09:38:b9:c7:af:38:23:aa:
74:3e:1a:ff:20:86:ac:30:8f:f6:a8:77:2c:1e:e4:
b3:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D8:CC:3F:B5:5B:D2:C2:B7:58:C8:ED:66:7D:C7:84:35:32:ED:D0
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/QtjMP7Vb0sK3WMjtZn3HhDUy7dA.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.82.220.0-45.82.222.255
Signature Algorithm: sha256WithRSAEncryption
60:d0:89:bd:f6:a3:0e:f2:fb:ea:82:1e:c2:f5:8c:27:ef:da:
11:82:88:a2:c6:41:65:85:67:13:81:1d:d9:c0:99:0a:90:e3:
75:02:05:5d:24:a6:d7:f4:42:7f:99:6d:56:cb:c5:f7:b8:d7:
96:1f:ad:bd:f9:1f:c3:10:d8:18:19:69:af:3e:55:0b:33:10:
15:0a:b1:ad:02:8c:b1:8d:69:b2:ff:d7:f3:8e:47:a1:e5:0c:
13:ea:d0:2e:cf:97:4f:e4:35:31:35:8f:50:8c:4f:45:6f:c1:
ae:9d:2b:85:f7:25:97:d0:58:a2:c6:ba:3c:40:24:aa:74:f5:
32:d5:be:62:e7:a2:cb:4f:4b:d4:f1:08:fe:33:d8:bd:22:3d:
90:2b:e0:99:e5:de:41:31:31:71:85:a1:ee:14:66:e4:3d:9e:
1b:c3:30:67:b5:df:6b:d2:2e:c7:98:cb:22:11:bf:a7:b4:90:
af:af:95:95:8f:fe:68:6a:7f:8e:89:3b:96:5f:e6:82:3c:d5:
b6:49:bd:4b:57:0f:a9:3b:f1:ff:e9:19:45:07:ff:99:d5:aa:
74:3f:c3:06:2f:bf:fc:ad:93:54:fe:49:26:61:1b:c4:3a:ab:
0b:b4:57:78:d3:9e:59:f2:1f:7e:2c:ea:9f:d6:3f:ca:f9:60:
d3:87:12:bd
-----BEGIN CERTIFICATE-----
MIIFBTCCA+2gAwIBAgISAYIdbft1PpUbhysOHuTrxx69MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGUyZDBjNDlhMGU5N2UwZDVmM2NlZDNiN2I2YjlmNzJjYTBj
YjUzZDYwHhcNMjIwNzIwMjEwNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg0MmQ4Y2MzZmI1NWJkMmMyYjc1OGM4ZWQ2NjdkYzc4NDM1MzJlZGQwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu3yj5a8Z4bznTJabMVGjpvGhatf+
j8m3V0RA27S1HoXXuRDxPkxli1OEkzdY8SLnKarVVVpnDOKASIgqcPrd4PZRf5Bq
4BovfzCIMBZiLW2etj7GQTIrSb7YiBDweMOLgUfxN3qJiw2leTotrCGk/ecfjekj
FB0+MtBZgQtBBI+3vVBkBgt5I1DYYEBEz5mgtJqil9LQLHKtv3OFx+hPP+4tNDZ1
yFS8L4NnaqV1dCdJLauNJtE/VDniJvN8Ve5RoURZlYFNlQW8K9uB8zA1oAKvetUK
SBmEJsKwOIPN6wYZYCGUoynICTi5x684I6p0Phr/IIasMI/2qHcsHuSzvQIDAQAB
o4ICETCCAg0wHQYDVR0OBBYEFELYzD+1W9LCt1jI7WZ9x4Q1Mu3QMB8GA1UdIwQY
MBaAFOLQxJoOl+DV887Tt7a59yygy1PWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNHRERW1nNlg0Tlh6enRPM3RybjNMS0RMVTlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC85ZjBmN2EtMTFlYi00MzgzLWJjNmEt
NDY5MGEwMDcxNDFmLzEvUXRqTVA3VmIwc0szV01qdFpuM0hoRFV5N2RBLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMC85ZjBmN2EtMTFlYi00MzgzLWJjNmEtNDY5MGEwMDcxNDFm
LzEvNHRERW1nNlg0Tlh6enRPM3RybjNMS0RMVTlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCcGCCsGAQUFBwEHAQH/BBgwFjAUBAIAATAOMAwDBAItUtwD
BAAtUt4wDQYJKoZIhvcNAQELBQADggEBAGDQib32ow7y++qCHsL1jCfv2hGCiKLG
QWWFZxOBHdnAmQqQ43UCBV0kptf0Qn+ZbVbLxfe415Yfrb35H8MQ2BgZaa8+VQsz
EBUKsa0CjLGNabL/1/OOR6HlDBPq0C7Pl0/kNTE1j1CMT0Vvwa6dK4X3JZfQWKLG
ujxAJKp09TLVvmLnostPS9TxCP4z2L0iPZAr4Jnl3kExMXGFoe4UZuQ9nhvDMGe1
32vSLseYyyIRv6e0kK+vlZWP/mhqf46JO5Zf5oI81bZJvUtXD6k78f/pGUUH/5nV
qnQ/wwYvv/ytk1T+SSZhG8Q6qwu0V3jTnlnyH34s6p/WP8r5YNOHEr0=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:10 2023 by rpki-client on console-ams.rpki-client.org