Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/sMZm7g6fz8JZClBYTRtxrIu8GA8.roa
File: sMZm7g6fz8JZClBYTRtxrIu8GA8.roa (raw, json)
Hash identifier: mGpHHj+Fy4p5/KKIV09GW8ZAIHN/Da53AQR9IA1L5HQ=
Subject key identifier: B0:C6:66:EE:0E:9F:CF:C2:59:0A:50:58:4D:1B:71:AC:8B:BC:18:0F
Certificate issuer: /CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Certificate serial: 03B2E060
Authority key identifier: E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/sMZm7g6fz8JZClBYTRtxrIu8GA8.roa
Signing time: Sat 01 Jan 2022 08:57:01 +0000
ROA not before: Sat 01 Jan 2022 08:57:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 56876
IP address blocks: 45.137.246.0/24 maxlen: 24
45.137.247.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 62054496 (0x3b2e060)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e2d0c49a0e97e0d5f3ced3b7b6b9f72ca0cb53d6
Validity
Not Before: Jan 1 08:57:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b0c666ee0e9fcfc2590a50584d1b71ac8bbc180f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:cb:f1:0d:91:ee:51:8f:94:64:fa:5b:5c:1c:
b1:9e:95:c2:a2:f9:a3:75:39:24:c6:b5:1d:55:45:
d8:b3:74:fe:28:00:73:0b:22:04:8f:37:3b:26:7e:
3a:f5:ba:7e:9d:cb:ee:57:ca:74:5b:72:10:32:49:
ef:aa:2e:20:0d:27:e7:60:17:67:a3:ca:6b:94:a2:
1d:1a:12:ac:1f:a0:58:2a:30:bd:74:71:6e:aa:26:
95:aa:f5:46:25:9e:a3:d0:0f:07:c2:7c:e4:3b:74:
0f:2c:59:07:c8:88:a5:f0:2f:5e:ba:50:0f:b0:4d:
4c:b9:0f:cc:2f:e0:d7:66:9b:c9:10:2b:88:49:e5:
e1:78:bd:b0:7e:6f:cb:ce:25:22:b0:1e:b0:7b:bd:
7d:b1:80:49:11:eb:e6:98:e5:8b:e5:88:b1:ae:2d:
52:30:b3:f8:40:f6:55:66:05:7a:38:f4:d5:b2:11:
3b:8e:7e:d2:a2:4a:f8:8a:09:24:24:65:26:d8:e7:
d8:94:c4:7d:63:07:4b:f1:e2:cf:e4:0a:f6:18:eb:
e1:b8:ad:69:12:4a:50:88:f5:12:89:d9:d2:e0:de:
eb:ad:e7:9c:a5:1b:00:0f:87:56:07:4c:6f:3e:1f:
31:8a:7b:3e:f5:c4:c8:1c:62:bb:07:67:43:e7:78:
8d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:C6:66:EE:0E:9F:CF:C2:59:0A:50:58:4D:1B:71:AC:8B:BC:18:0F
X509v3 Authority Key Identifier:
keyid:E2:D0:C4:9A:0E:97:E0:D5:F3:CE:D3:B7:B6:B9:F7:2C:A0:CB:53:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4tDEmg6X4NXzztO3trn3LKDLU9Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/sMZm7g6fz8JZClBYTRtxrIu8GA8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/9f0f7a-11eb-4383-bc6a-4690a007141f/1/4tDEmg6X4NXzztO3trn3LKDLU9Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.137.246.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:38:e5:00:18:b3:37:e0:b5:52:70:1a:f0:f6:a2:b3:65:72:
71:21:b7:95:a7:06:89:20:04:88:c5:a5:13:6d:77:c9:8b:9a:
3f:94:5c:f0:66:db:eb:d9:64:63:19:31:7d:7f:da:ca:a9:1a:
7d:b8:e2:79:8e:b2:fa:9c:cd:42:2b:0d:34:c5:5e:99:d1:95:
07:d7:81:8e:54:8d:81:3a:0e:18:81:04:d7:b4:fc:36:44:b7:
30:63:b4:04:1f:96:72:e2:7b:e7:73:4f:9d:79:be:fc:07:6d:
3e:18:e2:e5:66:8f:36:30:e8:60:ea:63:d2:c1:22:38:cd:3f:
41:bf:8e:f1:32:7b:31:11:dd:8b:f1:48:6c:40:63:7d:d7:f2:
df:d4:53:c4:9a:cd:1c:02:9b:ce:c1:ec:f1:b4:34:04:d9:e3:
aa:f0:f6:a0:0f:dc:a0:9b:f9:ce:3a:71:2a:a1:a9:6f:97:57:
e0:e5:64:72:67:8b:3b:7f:a9:58:00:ab:be:97:11:76:c3:d7:
1b:4f:67:3a:b0:e2:1f:c9:8f:af:46:2c:73:9d:35:30:08:c7:
30:4a:16:d1:a4:4c:16:30:3c:be:c6:b6:f7:95:a6:17:76:e4:
df:d5:83:0b:a2:30:d3:1e:be:ee:b0:7b:e7:59:0f:06:7c:6e:
2f:0f:ca:c1
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA7LgYDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
MmQwYzQ5YTBlOTdlMGQ1ZjNjZWQzYjdiNmI5ZjcyY2EwY2I1M2Q2MB4XDTIyMDEw
MTA4NTcwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjBjNjY2ZWUwZTlm
Y2ZjMjU5MGE1MDU4NGQxYjcxYWM4YmJjMTgwZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJPL8Q2R7lGPlGT6W1wcsZ6VwqL5o3U5JMa1HVVF2LN0/igA
cwsiBI83OyZ+OvW6fp3L7lfKdFtyEDJJ76ouIA0n52AXZ6PKa5SiHRoSrB+gWCow
vXRxbqomlar1RiWeo9APB8J85Dt0DyxZB8iIpfAvXrpQD7BNTLkPzC/g12abyRAr
iEnl4Xi9sH5vy84lIrAesHu9fbGASRHr5pjli+WIsa4tUjCz+ED2VWYFejj01bIR
O45+0qJK+IoJJCRlJtjn2JTEfWMHS/Hiz+QK9hjr4bitaRJKUIj1EonZ0uDe663n
nKUbAA+HVgdMbz4fMYp7PvXEyBxiuwdnQ+d4jSkCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSwxmbuDp/PwlkKUFhNG3Gsi7wYDzAfBgNVHSMEGDAWgBTi0MSaDpfg1fPO
07e2ufcsoMtT1jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzR0REVtZzZYNE5Yenp0TzN0cm4zTEtETFU5WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDAvOWYwZjdhLTExZWItNDM4My1iYzZhLTQ2OTBhMDA3MTQxZi8x
L3NNWm03ZzZmejhKWkNsQllUUnR4ckl1OEdBOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAv
OWYwZjdhLTExZWItNDM4My1iYzZhLTQ2OTBhMDA3MTQxZi8xLzR0REVtZzZYNE5Y
enp0TzN0cm4zTEtETFU5WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAS2J9jANBgkqhkiG9w0BAQsFAAOC
AQEADDjlABizN+C1UnAa8Pais2VycSG3lacGiSAEiMWlE213yYuaP5Rc8Gbb69lk
YxkxfX/ayqkafbjieY6y+pzNQisNNMVemdGVB9eBjlSNgToOGIEE17T8NkS3MGO0
BB+WcuJ753NPnXm+/AdtPhji5WaPNjDoYOpj0sEiOM0/Qb+O8TJ7MRHdi/FIbEBj
fdfy39RTxJrNHAKbzsHs8bQ0BNnjqvD2oA/coJv5zjpxKqGpb5dX4OVkcmeLO3+p
WACrvpcRdsPXG09nOrDiH8mPr0Ysc501MAjHMEoW0aRMFjA8vsa295WmF3bk39WD
C6Iw0x6+7rB751kPBnxuLw/KwQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:11 2023 by rpki-client on console-ams.rpki-client.org