Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/7dFqMsPdKi-PiD9ABDLoa0EBLqQ.roa
File: 7dFqMsPdKi-PiD9ABDLoa0EBLqQ.roa (raw, json)
Hash identifier: rmPqztL+H0RACFm41lOIU9KRFxJiGTDLBtN4XQKRKLc=
Subject key identifier: ED:D1:6A:32:C3:DD:2A:2F:8F:88:3F:40:04:32:E8:6B:41:01:2E:A4
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 03562F65
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/7dFqMsPdKi-PiD9ABDLoa0EBLqQ.roa
Signing time: Sat 01 Jan 2022 07:01:42 +0000
ROA not before: Sat 01 Jan 2022 07:01:42 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 14618
IP address blocks: 45.153.167.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55979877 (0x3562f65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jan 1 07:01:42 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=edd16a32c3dd2a2f8f883f400432e86b41012ea4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:28:ec:b6:11:d5:f9:64:00:4e:10:70:e9:68:
40:b0:b5:a4:d6:81:6b:08:19:49:f5:ff:8b:5d:28:
9f:50:7e:7c:cf:7c:d8:7b:24:7e:6a:15:f5:73:9c:
46:2e:6b:9c:e7:cd:ab:44:89:e6:19:7d:cd:e8:12:
38:74:a8:1b:6f:65:e3:a1:09:f6:84:1c:a9:75:30:
fa:2d:cd:64:9f:90:36:7f:a7:99:46:9c:c1:d9:cb:
aa:30:0c:b8:62:60:ed:ee:69:f5:46:c6:87:d0:8e:
ee:58:16:95:65:37:80:92:dc:18:e2:b3:99:21:76:
e9:cb:4a:6f:fe:f9:6b:d0:9e:72:67:b0:2e:45:b8:
15:cc:2d:d7:81:fb:d1:6a:25:38:44:9d:e0:26:36:
2f:09:1b:05:b4:56:00:25:6f:8b:19:2f:af:1f:70:
98:1a:60:ec:d8:11:ff:17:88:5d:18:3e:9f:e4:85:
4a:58:64:74:ee:65:e9:2d:8b:bd:6a:82:bc:c0:a4:
c0:e8:98:bd:48:93:0a:67:54:4c:07:62:d2:64:5a:
df:00:2e:9e:c9:c8:a0:24:fc:6b:b4:88:86:4f:32:
41:43:ab:7d:90:86:fb:d2:a0:ef:3d:be:fb:e8:1e:
96:71:3c:c1:7d:31:28:ea:60:ff:5a:05:96:b6:ed:
22:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:D1:6A:32:C3:DD:2A:2F:8F:88:3F:40:04:32:E8:6B:41:01:2E:A4
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/7dFqMsPdKi-PiD9ABDLoa0EBLqQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.167.0/24
Signature Algorithm: sha256WithRSAEncryption
1d:87:7d:f2:59:cc:71:80:9a:85:b9:f6:52:29:be:cc:0d:5c:
a0:14:e0:2c:65:ce:60:2e:a5:3f:14:24:e2:2f:d8:fb:0c:9c:
73:ff:7a:6c:ed:5d:b8:08:33:6b:5a:e6:d7:3c:a8:8f:3a:7b:
ab:3a:b8:ba:96:08:a3:71:1a:82:1f:9c:4d:5f:66:9a:40:f1:
88:4d:d9:03:46:70:5d:66:f2:b9:e1:cb:56:93:84:a4:98:bf:
e7:b3:05:1c:18:47:8f:e6:80:9c:39:05:a3:cd:fc:46:da:d6:
52:1d:7f:d8:15:98:77:3b:2a:e2:8c:92:c1:09:35:ce:00:2c:
b1:87:52:75:54:1b:7d:dd:37:bb:17:82:d2:a1:d3:cc:5b:49:
95:7a:f7:22:4b:38:3b:27:89:0e:09:20:ab:67:8f:b3:23:29:
cb:de:c8:48:59:96:03:5f:10:28:79:a5:01:9f:89:e0:6d:a4:
7f:c1:88:b8:1e:68:14:a4:31:38:5e:16:86:ff:f8:56:11:ab:
2f:1e:15:d8:b1:f9:fa:e6:bf:4f:88:c9:3a:43:16:c2:9f:4f:
5d:cd:d5:ac:93:5e:b1:1c:db:1d:ae:a5:61:00:30:fb:f6:18:
47:0e:c2:44:8b:e4:25:62:89:0b:3c:46:41:74:57:f4:36:ae:
bb:a6:24:3d
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEA1YvZTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2
Y2Q5OGMyYzU0YjBjYmVhMTM0ZTI3YTk4MWNmZGRlNzMyMzZlMDU1MB4XDTIyMDEw
MTA3MDE0MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZWRkMTZhMzJjM2Rk
MmEyZjhmODgzZjQwMDQzMmU4NmI0MTAxMmVhNDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMAo7LYR1flkAE4QcOloQLC1pNaBawgZSfX/i10on1B+fM98
2HskfmoV9XOcRi5rnOfNq0SJ5hl9zegSOHSoG29l46EJ9oQcqXUw+i3NZJ+QNn+n
mUacwdnLqjAMuGJg7e5p9UbGh9CO7lgWlWU3gJLcGOKzmSF26ctKb/75a9Cecmew
LkW4Fcwt14H70WolOESd4CY2LwkbBbRWACVvixkvrx9wmBpg7NgR/xeIXRg+n+SF
SlhkdO5l6S2LvWqCvMCkwOiYvUiTCmdUTAdi0mRa3wAunsnIoCT8a7SIhk8yQUOr
fZCG+9Kg7z2+++gelnE8wX0xKOpg/1oFlrbtIlcCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTt0Woyw90qL4+IP0AEMuhrQQEupDAfBgNVHSMEGDAWgBRs2YwsVLDL6hNO
J6mBz93nMjbgVTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L2JObU1MRlN3eS1vVFRpZXBnY19kNXpJMjRGVS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTEvMDE2MzhjLTZjYjktNDU4OS05MDliLWQzN2RmNjM0YTkyOS8x
LzdkRnFNc1BkS2ktUGlEOUFCRExvYTBFQkxxUS5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEv
MDE2MzhjLTZjYjktNDU4OS05MDliLWQzN2RmNjM0YTkyOS8xL2JObU1MRlN3eS1v
VFRpZXBnY19kNXpJMjRGVS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2ZpzANBgkqhkiG9w0BAQsFAAOC
AQEAHYd98lnMcYCahbn2Uim+zA1coBTgLGXOYC6lPxQk4i/Y+wycc/96bO1duAgz
a1rm1zyojzp7qzq4upYIo3Eagh+cTV9mmkDxiE3ZA0ZwXWbyueHLVpOEpJi/57MF
HBhHj+aAnDkFo838RtrWUh1/2BWYdzsq4oySwQk1zgAssYdSdVQbfd03uxeC0qHT
zFtJlXr3Iks4OyeJDgkgq2ePsyMpy97ISFmWA18QKHmlAZ+J4G2kf8GIuB5oFKQx
OF4Whv/4VhGrLx4V2LH5+ua/T4jJOkMWwp9PXc3VrJNesRzbHa6lYQAw+/YYRw7C
RIvkJWKJCzxGQXRX9Dauu6YkPQ==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:03 2023 by rpki-client on console-ams.rpki-client.org