Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/pRzZOGTDHSltjMVoA4WjAwsRNFQ.roa
File: pRzZOGTDHSltjMVoA4WjAwsRNFQ.roa (raw, json)
Hash identifier: DOQgq0BplCLg46ofu2W2+4emCcxl8aswsaljpa5arLo=
Subject key identifier: A5:1C:D9:38:64:C3:1D:29:6D:8C:C5:68:03:85:A3:03:0B:11:34:54
Certificate issuer: /CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Certificate serial: 03C90947
Authority key identifier: E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/pRzZOGTDHSltjMVoA4WjAwsRNFQ.roa
Signing time: Tue 01 Feb 2022 18:00:06 +0000
ROA not before: Tue 01 Feb 2022 18:00:06 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 61317
IP address blocks: 45.149.154.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 63506759 (0x3c90947)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e795c9617ca5a6a3bff263fc1837992fd1ac47f2
Validity
Not Before: Feb 1 18:00:06 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=a51cd93864c31d296d8cc5680385a3030b113454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1f:f5:4c:06:ad:55:2f:1a:af:e1:f6:4c:d0:
7a:fd:7c:01:7d:08:fc:d6:64:43:44:2e:e9:50:36:
07:c1:53:91:75:c2:e4:66:6f:af:ac:c0:4a:6f:1d:
09:30:11:68:f0:7d:49:20:cf:01:88:aa:24:93:22:
7a:21:51:dc:05:2e:17:1a:db:76:af:1e:65:25:4e:
ac:99:71:6d:86:bf:13:6e:a2:69:0b:df:43:7e:08:
47:63:c1:ec:38:04:35:9d:70:5b:2c:01:3c:93:0d:
31:c3:16:99:e0:a4:2e:b7:34:df:07:97:68:a1:51:
f2:49:38:17:de:19:31:c1:6f:9c:04:00:81:ae:2c:
23:3d:6a:d5:4a:58:15:f8:ff:90:9d:bb:d5:ba:9a:
7e:76:4e:74:f9:f2:3d:06:5b:ed:f8:c6:66:60:ae:
77:c8:57:5b:2d:bb:ec:b1:6a:39:db:63:2f:52:fa:
72:72:d4:d3:13:b5:b7:f1:9d:bf:60:06:f8:d6:bf:
0f:72:a3:bf:87:af:3f:9e:55:71:9e:3e:0d:ee:8c:
a7:a8:22:12:ba:38:72:43:a8:25:bc:93:19:9a:12:
a0:b8:04:11:ed:68:56:93:34:10:28:30:c7:0b:fb:
79:78:94:e5:6b:3b:7b:f3:05:12:24:14:bc:ad:e8:
69:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:1C:D9:38:64:C3:1D:29:6D:8C:C5:68:03:85:A3:03:0B:11:34:54
X509v3 Authority Key Identifier:
keyid:E7:95:C9:61:7C:A5:A6:A3:BF:F2:63:FC:18:37:99:2F:D1:AC:47:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/55XJYXylpqO_8mP8GDeZL9GsR_I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/pRzZOGTDHSltjMVoA4WjAwsRNFQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/986dde-5f68-4c21-b546-d540df886bab/1/55XJYXylpqO_8mP8GDeZL9GsR_I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.149.154.0/24
Signature Algorithm: sha256WithRSAEncryption
0d:d7:e7:88:bd:3d:c4:cd:65:e0:a8:75:fd:d6:df:17:26:63:
f5:c7:51:4b:4b:bf:ae:6c:4c:ea:22:62:c8:50:48:bd:76:05:
56:de:da:ce:3f:fd:f0:96:60:4a:69:bc:7a:7d:ec:79:5b:60:
6e:eb:cc:2b:86:04:36:3f:d0:e9:c2:ad:f0:ad:5f:0b:70:50:
66:0f:95:4c:52:e7:9f:c1:28:08:72:36:d0:18:aa:85:a4:7f:
0c:d5:86:95:95:a6:61:41:d4:3e:be:81:a7:54:fc:0f:7e:0b:
46:5f:e5:9c:d0:d2:66:33:5e:25:3f:bd:7e:29:4f:31:af:c1:
d5:fd:34:ff:bd:fc:84:ac:81:d9:ba:39:89:55:d4:00:b7:d6:
d0:a0:14:ff:e7:87:9e:b6:6d:f8:a0:09:58:0d:aa:db:67:f7:
f5:f3:c5:df:99:79:0a:73:41:03:1f:09:d5:b8:3d:9b:55:0d:
0a:9a:65:ef:3b:46:2e:2d:a9:9d:b5:e9:18:da:c1:11:29:3d:
9c:91:b5:b5:fe:eb:6c:6a:95:12:1e:79:50:c2:6e:27:d4:48:
2a:83:a0:18:57:d3:18:78:bd:b6:15:dc:27:36:18:9d:59:58:
1c:77:f3:26:6e:9c:49:4f:a5:da:07:fd:cd:7e:7d:9a:c0:06:
64:c8:12:da
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA8kJRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhl
Nzk1Yzk2MTdjYTVhNmEzYmZmMjYzZmMxODM3OTkyZmQxYWM0N2YyMB4XDTIyMDIw
MTE4MDAwNloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYTUxY2Q5Mzg2NGMz
MWQyOTZkOGNjNTY4MDM4NWEzMDMwYjExMzQ1NDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALAf9UwGrVUvGq/h9kzQev18AX0I/NZkQ0Qu6VA2B8FTkXXC
5GZvr6zASm8dCTARaPB9SSDPAYiqJJMieiFR3AUuFxrbdq8eZSVOrJlxbYa/E26i
aQvfQ34IR2PB7DgENZ1wWywBPJMNMcMWmeCkLrc03weXaKFR8kk4F94ZMcFvnAQA
ga4sIz1q1UpYFfj/kJ271bqafnZOdPnyPQZb7fjGZmCud8hXWy277LFqOdtjL1L6
cnLU0xO1t/Gdv2AG+Na/D3Kjv4evP55VcZ4+De6Mp6giEro4ckOoJbyTGZoSoLgE
Ee1oVpM0ECgwxwv7eXiU5Ws7e/MFEiQUvK3oaY0CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBSlHNk4ZMMdKW2MxWgDhaMDCxE0VDAfBgNVHSMEGDAWgBTnlclhfKWmo7/y
Y/wYN5kv0axH8jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzU1WEpZWHlscHFPXzhtUDhHRGVaTDlHc1JfSS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTAvOTg2ZGRlLTVmNjgtNGMyMS1iNTQ2LWQ1NDBkZjg4NmJhYi8x
L3BSelpPR1RESFNsdGpNVm9BNFdqQXdzUk5GUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAv
OTg2ZGRlLTVmNjgtNGMyMS1iNTQ2LWQ1NDBkZjg4NmJhYi8xLzU1WEpZWHlscHFP
XzhtUDhHRGVaTDlHc1JfSS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2VmjANBgkqhkiG9w0BAQsFAAOC
AQEADdfniL09xM1l4Kh1/dbfFyZj9cdRS0u/rmxM6iJiyFBIvXYFVt7azj/98JZg
Smm8en3seVtgbuvMK4YENj/Q6cKt8K1fC3BQZg+VTFLnn8EoCHI20BiqhaR/DNWG
lZWmYUHUPr6Bp1T8D34LRl/lnNDSZjNeJT+9filPMa/B1f00/738hKyB2bo5iVXU
ALfW0KAU/+eHnrZt+KAJWA2q22f39fPF35l5CnNBAx8J1bg9m1UNCppl7ztGLi2p
nbXpGNrBESk9nJG1tf7rbGqVEh55UMJuJ9RIKoOgGFfTGHi9thXcJzYYnVlYHHfz
Jm6cSU+l2gf9zX59msAGZMgS2g==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:56:53 2024 by rpki-client on console-fra.rpki-client.org