Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/4L5bZEfxs_lJOK4BfAmMOzsmBU0.roa
File: 4L5bZEfxs_lJOK4BfAmMOzsmBU0.roa (raw, json)
Hash identifier: GMYe+YoEvIS4a3E3OCOhCpWGUYFBA7zfhIVo/TkgRFY=
Subject key identifier: E0:BE:5B:64:47:F1:B3:F9:49:38:AE:01:7C:09:8C:3B:3B:26:05:4D
Certificate issuer: /CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Certificate serial: 0184F7F292262118FAFB40801E5D1F3C206B
Authority key identifier: 79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/4L5bZEfxs_lJOK4BfAmMOzsmBU0.roa
Signing time: Fri 09 Dec 2022 17:33:00 +0000
ROA not before: Fri 09 Dec 2022 17:33:00 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212609
IP address blocks: 45.145.96.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:f7:f2:92:26:21:18:fa:fb:40:80:1e:5d:1f:3c:20:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=79a843d3a67bf202d0ae23df95e14ea871d8f15d
Validity
Not Before: Dec 9 17:33:00 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e0be5b6447f1b3f94938ae017c098c3b3b26054d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:67:cc:c5:f4:1d:ed:3c:4e:24:a7:5c:43:d0:
4e:9d:b1:8d:0b:c9:80:16:cb:d3:82:07:71:bd:eb:
ca:92:c7:99:2c:5b:3b:cf:72:4c:87:4e:d7:3f:49:
ad:2c:47:ee:8e:45:af:7a:52:ad:8e:15:a4:d1:4e:
b1:89:89:32:6d:2c:1a:2f:5b:44:9d:91:b2:b5:3f:
b6:e4:f4:86:a5:09:b9:08:1b:d1:03:30:53:0b:c6:
e8:82:60:15:7b:af:bf:23:61:f8:6f:16:62:f4:ff:
8d:89:71:af:0f:1a:ad:b1:cd:f8:db:f3:84:e6:13:
c0:8b:4f:36:f0:86:a3:d5:52:0f:e6:42:91:f1:b8:
b1:83:37:b0:8d:21:f9:d1:d3:37:4f:ff:ee:3d:60:
64:40:81:f7:be:cd:b4:cc:eb:b9:5f:d2:db:89:07:
a9:d7:44:c6:28:e8:c4:bb:1a:5f:b9:8b:e9:83:5d:
34:f6:71:70:b2:bf:86:a9:9b:25:df:b4:94:87:d8:
81:c1:ed:bb:9e:ee:8e:d0:ac:aa:27:7f:ca:41:27:
6b:a2:67:d6:6c:dd:34:9e:05:9d:11:e8:69:05:b4:
43:10:72:0a:9b:b1:5c:e8:58:c0:3c:19:4b:33:4d:
76:24:81:7e:05:49:a2:80:96:7b:b6:4a:72:e0:48:
00:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BE:5B:64:47:F1:B3:F9:49:38:AE:01:7C:09:8C:3B:3B:26:05:4D
X509v3 Authority Key Identifier:
keyid:79:A8:43:D3:A6:7B:F2:02:D0:AE:23:DF:95:E1:4E:A8:71:D8:F1:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/eahD06Z78gLQriPfleFOqHHY8V0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/4L5bZEfxs_lJOK4BfAmMOzsmBU0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/f70c6a-814b-461a-8541-b4dd22758951/1/eahD06Z78gLQriPfleFOqHHY8V0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.145.96.0/22
Signature Algorithm: sha256WithRSAEncryption
55:73:79:38:1a:d6:c7:11:e9:66:4a:7e:ed:24:b9:e9:07:bf:
19:89:39:42:ce:d8:ca:84:a8:5e:6c:bc:6f:d1:99:d0:a3:97:
34:58:4a:d1:17:49:47:97:21:dd:38:b3:94:89:53:6f:86:76:
8b:6f:16:d2:fa:c1:dd:ae:5c:33:f7:46:7c:42:f9:63:2e:e4:
01:20:fe:e5:3b:20:5d:19:58:4d:09:5e:42:42:15:8c:50:f3:
ee:5d:e7:c9:e0:54:07:ab:11:da:cb:5b:d7:40:b3:11:64:d8:
80:9c:70:2c:df:73:ca:43:02:ca:25:06:8a:3b:54:05:49:a3:
2a:1c:23:c3:8d:5a:e9:25:48:34:05:76:67:11:0e:04:ed:da:
8f:09:bc:26:57:73:18:49:96:10:08:65:c9:b8:61:4d:c7:91:
fa:31:76:61:90:0f:5d:51:77:b0:6e:d1:62:fe:f9:72:cc:74:
10:42:6e:35:32:51:c7:2f:14:1a:4a:7e:07:b8:06:34:77:4b:
db:0d:3e:b4:bc:07:ce:e1:ba:24:b1:90:3e:44:ca:b2:91:72:
4a:e0:2a:b0:5b:ec:24:3a:94:97:95:76:6a:af:c4:48:50:aa:
bd:7a:04:46:10:fe:ec:8f:b2:fc:d0:6d:76:08:08:3b:8c:d1:
ca:fc:8c:ce
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYT38pImIRj6+0CAHl0fPCBrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc5YTg0M2QzYTY3YmYyMDJkMGFlMjNkZjk1ZTE0ZWE4NzFk
OGYxNWQwHhcNMjIxMjA5MTczMzAwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlMGJlNWI2NDQ3ZjFiM2Y5NDkzOGFlMDE3YzA5OGMzYjNiMjYwNTRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmfMxfQd7TxOJKdcQ9BOnbGNC8mA
FsvTggdxvevKkseZLFs7z3JMh07XP0mtLEfujkWvelKtjhWk0U6xiYkybSwaL1tE
nZGytT+25PSGpQm5CBvRAzBTC8bogmAVe6+/I2H4bxZi9P+NiXGvDxqtsc342/OE
5hPAi0828Iaj1VIP5kKR8bixgzewjSH50dM3T//uPWBkQIH3vs20zOu5X9LbiQep
10TGKOjEuxpfuYvpg1009nFwsr+GqZsl37SUh9iBwe27nu6O0KyqJ3/KQSdromfW
bN00ngWdEehpBbRDEHIKm7Fc6FjAPBlLM012JIF+BUmigJZ7tkpy4EgAgwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFOC+W2RH8bP5STiuAXwJjDs7JgVNMB8GA1UdIwQY
MBaAFHmoQ9Ome/IC0K4j35XhTqhx2PFdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEt
YjRkZDIyNzU4OTUxLzEvNEw1YlpFZnhzX2xKT0s0QmZBbU1PenNtQlUwLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi9mNzBjNmEtODE0Yi00NjFhLTg1NDEtYjRkZDIyNzU4OTUx
LzEvZWFoRDA2Wjc4Z0xRcmlQZmxlRk9xSEhZOFYwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZFgMA0G
CSqGSIb3DQEBCwUAA4IBAQBVc3k4GtbHEelmSn7tJLnpB78ZiTlCztjKhKhebLxv
0ZnQo5c0WErRF0lHlyHdOLOUiVNvhnaLbxbS+sHdrlwz90Z8QvljLuQBIP7lOyBd
GVhNCV5CQhWMUPPuXefJ4FQHqxHay1vXQLMRZNiAnHAs33PKQwLKJQaKO1QFSaMq
HCPDjVrpJUg0BXZnEQ4E7dqPCbwmV3MYSZYQCGXJuGFNx5H6MXZhkA9dUXewbtFi
/vlyzHQQQm41MlHHLxQaSn4HuAY0d0vbDT60vAfO4boksZA+RMqykXJK4CqwW+wk
OpSXlXZqr8RIUKq9egRGEP7sj7L80G12CAg7jNHK/IzO
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:47:40 2024 by rpki-client on console-ams.rpki-client.org