Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/9nglhq0lZP_hoU4kARsi3MzqxAk.roa
File: 9nglhq0lZP_hoU4kARsi3MzqxAk.roa (raw, json)
Hash identifier: JRogUPnVevD881iLIefdEQ4L4TZgr0bh4q0vidZlLRE=
Subject key identifier: F6:78:25:86:AD:25:64:FF:E1:A1:4E:24:01:1B:22:DC:CC:EA:C4:09
Certificate issuer: /CN=83286fa6da7d252e7828f84923f55919142b007f
Certificate serial: 181237A9
Authority key identifier: 83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/9nglhq0lZP_hoU4kARsi3MzqxAk.roa
Signing time: Mon 13 Jun 2022 08:34:02 +0000
ROA not before: Mon 13 Jun 2022 08:34:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 207871
IP address blocks: 45.151.166.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 403847081 (0x181237a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83286fa6da7d252e7828f84923f55919142b007f
Validity
Not Before: Jun 13 08:34:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f6782586ad2564ffe1a14e24011b22dccceac409
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:5b:86:7c:94:4a:79:78:77:f8:0b:1b:2f:30:
12:a0:c0:b9:4a:95:05:22:8b:e6:ed:19:b3:ef:b1:
dc:81:d3:8a:19:02:87:5f:5b:9f:4b:e3:c6:6e:09:
84:da:06:c4:57:e6:cb:d0:f1:2b:53:55:12:e1:88:
87:e0:57:e4:c9:2d:95:a7:38:db:5a:13:89:b5:e3:
69:32:33:49:f0:c0:16:a2:03:20:25:08:b8:6a:72:
92:37:09:24:96:44:7a:e2:47:1c:11:2e:d3:bd:9d:
b6:27:8c:4b:fd:a6:6c:74:44:4d:78:51:4a:78:28:
ec:f4:97:93:b8:21:7f:25:11:16:4b:4b:a5:44:67:
c6:e2:b1:98:dc:9d:7f:9e:9e:39:dd:2b:dd:55:f2:
f6:e8:8e:c6:9a:03:0e:14:0b:42:94:74:2c:b5:44:
79:a1:bd:11:16:e2:aa:a3:de:28:49:d8:79:43:11:
43:b8:87:4f:45:1c:7d:cf:e9:13:93:06:07:d8:21:
69:e2:f0:03:6c:c9:42:f2:26:5f:80:4a:35:4d:05:
de:99:7c:19:f5:68:10:c4:85:a9:ff:b7:32:7b:18:
51:13:9a:65:04:93:d2:aa:c0:af:57:4f:8a:86:b4:
e3:17:b0:07:3c:dc:5b:02:8a:52:38:50:73:45:12:
b0:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:78:25:86:AD:25:64:FF:E1:A1:4E:24:01:1B:22:DC:CC:EA:C4:09
X509v3 Authority Key Identifier:
keyid:83:28:6F:A6:DA:7D:25:2E:78:28:F8:49:23:F5:59:19:14:2B:00:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gyhvptp9JS54KPhJI_VZGRQrAH8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/9nglhq0lZP_hoU4kARsi3MzqxAk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ec583d-1aba-4798-8817-d6c9c6e86923/1/gyhvptp9JS54KPhJI_VZGRQrAH8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.166.0/24
Signature Algorithm: sha256WithRSAEncryption
05:fb:05:f3:27:10:eb:6f:ae:9e:04:99:d1:fd:70:98:cc:1d:
1f:92:01:fa:62:10:51:ad:36:30:22:02:23:45:41:4e:1c:31:
45:68:7b:54:07:b1:4e:ca:38:e5:41:b7:eb:b6:30:a7:be:8f:
c8:7b:df:b3:3b:e3:02:d6:55:37:0a:2e:5b:8b:01:7f:d8:65:
52:a9:e7:5d:61:66:ef:0f:fe:70:c2:54:8d:69:19:7f:fd:14:
a9:c0:21:4b:5e:2b:9b:4d:65:33:fe:41:af:23:56:a4:d4:5b:
c3:47:59:1c:0e:a8:0d:ca:3f:07:b5:1f:1b:d1:13:d2:fb:de:
32:9e:3f:bd:6e:20:50:22:7c:3f:cb:f4:ca:fc:c5:b3:91:54:
33:1a:1f:ba:cf:bf:83:7a:79:ec:51:d6:34:23:8f:e6:6a:32:
63:b6:5d:78:e5:83:f2:6a:cc:cc:01:bb:a1:ac:be:01:dc:8c:
2f:28:c2:12:d7:f4:f9:2d:62:0f:0d:7e:4e:96:8c:95:81:5d:
9c:02:7c:fd:7b:02:f2:90:85:32:28:3a:cb:da:94:35:6c:6d:
b8:c6:1f:34:da:31:11:ab:87:10:5b:23:e6:62:01:88:3f:2a:
78:d0:ab:15:07:81:0e:04:ae:2b:59:b5:26:fd:76:c0:27:24:
78:fa:44:46
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEGBI3qTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4
MzI4NmZhNmRhN2QyNTJlNzgyOGY4NDkyM2Y1NTkxOTE0MmIwMDdmMB4XDTIyMDYx
MzA4MzQwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjY3ODI1ODZhZDI1
NjRmZmUxYTE0ZTI0MDExYjIyZGNjY2VhYzQwOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAKNbhnyUSnl4d/gLGy8wEqDAuUqVBSKL5u0Zs++x3IHTihkC
h19bn0vjxm4JhNoGxFfmy9DxK1NVEuGIh+BX5Mktlac421oTibXjaTIzSfDAFqID
ICUIuGpykjcJJJZEeuJHHBEu072dtieMS/2mbHRETXhRSngo7PSXk7ghfyURFktL
pURnxuKxmNydf56eOd0r3VXy9uiOxpoDDhQLQpR0LLVEeaG9ERbiqqPeKEnYeUMR
Q7iHT0Ucfc/pE5MGB9ghaeLwA2zJQvImX4BKNU0F3pl8GfVoEMSFqf+3MnsYUROa
ZQST0qrAr1dPioa04xewBzzcWwKKUjhQc0USsFsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBT2eCWGrSVk/+GhTiQBGyLczOrECTAfBgNVHSMEGDAWgBSDKG+m2n0lLngo
+Ekj9VkZFCsAfzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2d5aHZwdHA5SlM1NEtQaEpJX1ZaR1JRckFIOC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZDkvZWM1ODNkLTFhYmEtNDc5OC04ODE3LWQ2YzljNmU4NjkyMy8x
LzluZ2xocTBsWlBfaG9VNGtBUnNpM016cXhBay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDkv
ZWM1ODNkLTFhYmEtNDc5OC04ODE3LWQ2YzljNmU4NjkyMy8xL2d5aHZwdHA5SlM1
NEtQaEpJX1ZaR1JRckFIOC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2XpjANBgkqhkiG9w0BAQsFAAOC
AQEABfsF8ycQ62+ungSZ0f1wmMwdH5IB+mIQUa02MCICI0VBThwxRWh7VAexTso4
5UG367Ywp76PyHvfszvjAtZVNwouW4sBf9hlUqnnXWFm7w/+cMJUjWkZf/0UqcAh
S14rm01lM/5BryNWpNRbw0dZHA6oDco/B7UfG9ET0vveMp4/vW4gUCJ8P8v0yvzF
s5FUMxofus+/g3p57FHWNCOP5moyY7ZdeOWD8mrMzAG7oay+AdyMLyjCEtf0+S1i
Dw1+TpaMlYFdnAJ8/XsC8pCFMig6y9qUNWxtuMYfNNoxEauHEFsj5mIBiD8qeNCr
FQeBDgSuK1m1Jv12wCckePpERg==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:40 2023 by rpki-client on console-ams.rpki-client.org