Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/I4djfLA773PzpTszxGAg-0EeZXE.roa
File: I4djfLA773PzpTszxGAg-0EeZXE.roa (raw, json)
Hash identifier: 6Zw8u+93PN6HkFIVO27rn70S/dcfjORX29FcjC/1e+s=
Subject key identifier: 23:87:63:7C:B0:3B:EF:73:F3:A5:3B:33:C4:60:20:FB:41:1E:65:71
Certificate issuer: /CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Certificate serial: 018233E0BEDE8179EA44BA0F53B48F61484A
Authority key identifier: 6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/I4djfLA773PzpTszxGAg-0EeZXE.roa
Signing time: Mon 25 Jul 2022 05:42:23 +0000
ROA not before: Mon 25 Jul 2022 05:42:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 7018
IP address blocks: 45.140.195.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:33:e0:be:de:81:79:ea:44:ba:0f:53:b4:8f:61:48:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cd98c2c54b0cbea134e27a981cfdde73236e055
Validity
Not Before: Jul 25 05:42:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=2387637cb03bef73f3a53b33c46020fb411e6571
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:00:ad:f1:e2:a3:54:32:a4:35:26:31:cb:74:
ad:e2:90:38:d0:05:b1:fe:f2:08:6f:52:03:02:41:
92:69:35:fd:b5:40:42:3d:c6:d6:3d:da:18:aa:66:
61:a5:aa:11:20:d6:fc:89:cb:83:29:c2:03:57:58:
2b:4e:46:60:bc:b6:28:7b:60:a8:9d:ef:85:98:96:
88:cd:59:20:70:76:1e:4b:ca:31:8e:6c:84:b1:58:
9e:87:6c:7a:39:db:1e:04:e1:bf:d9:89:ea:54:64:
d3:5e:eb:be:1a:9d:d9:4a:42:a9:17:c3:3f:12:29:
30:74:1f:04:34:23:32:ac:70:76:16:f0:0e:3a:8b:
9b:3d:04:9f:4d:30:21:fb:dc:01:ab:a9:80:6e:80:
b0:ff:d5:cd:b0:d8:f6:86:1b:2a:2f:b0:de:57:1c:
54:b2:f0:42:f8:48:04:c9:b7:f5:9e:05:4e:7e:b6:
68:6e:be:05:d4:f7:d0:9f:9a:50:4f:9e:64:57:de:
bf:94:dd:ee:97:e4:db:db:40:31:ef:42:6c:85:a0:
a2:df:e2:4d:30:66:69:52:1a:3b:31:00:5d:c8:c6:
2a:c6:e5:84:6e:31:58:e5:5a:4a:78:b5:16:75:70:
e5:75:bd:3c:c5:72:2e:26:86:76:7a:49:ba:f0:eb:
28:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:87:63:7C:B0:3B:EF:73:F3:A5:3B:33:C4:60:20:FB:41:1E:65:71
X509v3 Authority Key Identifier:
keyid:6C:D9:8C:2C:54:B0:CB:EA:13:4E:27:A9:81:CF:DD:E7:32:36:E0:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmMLFSwy-oTTiepgc_d5zI24FU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/I4djfLA773PzpTszxGAg-0EeZXE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/01638c-6cb9-4589-909b-d37df634a929/1/bNmMLFSwy-oTTiepgc_d5zI24FU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.140.195.0/24
Signature Algorithm: sha256WithRSAEncryption
c0:1d:a6:81:64:b5:6c:07:98:e5:04:dc:27:df:ca:07:46:34:
71:f6:df:fe:9f:fb:3a:d4:26:2d:ec:9f:3c:d3:43:85:0b:d9:
d7:57:6a:c6:b8:6c:16:fa:c6:d5:00:a3:ea:8d:b2:2b:e1:8f:
74:00:86:c9:e9:8d:04:58:c0:ac:27:f2:d0:9a:cd:43:4a:53:
c1:31:99:e0:b3:c6:52:65:bc:4d:cf:fa:df:34:f6:20:8f:b4:
39:52:05:56:fc:07:f6:07:1d:13:81:f8:ea:9b:77:21:c5:c2:
9a:98:2d:64:45:a1:9b:6e:3e:67:3d:c9:d1:cf:11:bd:b0:d0:
af:c4:90:7d:32:23:64:a9:34:13:68:41:6a:b8:5b:da:4e:32:
3a:0b:f0:73:9c:99:23:05:b3:57:40:5d:ba:23:36:d0:1f:26:
b3:69:e1:36:8d:f9:0a:86:a6:28:a2:bf:27:fc:1c:7a:37:91:
dd:ee:a5:57:3b:31:b4:6c:de:68:f9:a7:b3:09:d7:e3:09:61:
fa:d4:79:18:fb:34:50:b9:de:38:2d:a7:ac:04:c4:69:ed:01:
78:77:d0:74:e0:75:74:90:e7:18:e5:bc:fe:82:67:80:b9:a8:
92:3f:69:6a:26:19:37:b1:f7:af:f6:cf:80:61:38:39:40:74:
d1:3a:3e:2e
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYIz4L7egXnqRLoPU7SPYUhKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZDk4YzJjNTRiMGNiZWExMzRlMjdhOTgxY2ZkZGU3MzIz
NmUwNTUwHhcNMjIwNzI1MDU0MjIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyMzg3NjM3Y2IwM2JlZjczZjNhNTNiMzNjNDYwMjBmYjQxMWU2NTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtwCt8eKjVDKkNSYxy3St4pA40AWx
/vIIb1IDAkGSaTX9tUBCPcbWPdoYqmZhpaoRINb8icuDKcIDV1grTkZgvLYoe2Co
ne+FmJaIzVkgcHYeS8oxjmyEsVieh2x6OdseBOG/2YnqVGTTXuu+Gp3ZSkKpF8M/
EikwdB8ENCMyrHB2FvAOOoubPQSfTTAh+9wBq6mAboCw/9XNsNj2hhsqL7DeVxxU
svBC+EgEybf1ngVOfrZobr4F1PfQn5pQT55kV96/lN3ul+Tb20Ax70JshaCi3+JN
MGZpUho7MQBdyMYqxuWEbjFY5VpKeLUWdXDldb08xXIuJoZ2ekm68OsoHwIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFCOHY3ywO+9z86U7M8RgIPtBHmVxMB8GA1UdIwQY
MBaAFGzZjCxUsMvqE04nqYHP3ecyNuBVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWIt
ZDM3ZGY2MzRhOTI5LzEvSTRkamZMQTc3M1B6cFRzenhHQWctMEVlWlhFLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lMS8wMTYzOGMtNmNiOS00NTg5LTkwOWItZDM3ZGY2MzRhOTI5
LzEvYk5tTUxGU3d5LW9UVGllcGdjX2Q1ekkyNEZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALYzDMA0G
CSqGSIb3DQEBCwUAA4IBAQDAHaaBZLVsB5jlBNwn38oHRjRx9t/+n/s61CYt7J88
00OFC9nXV2rGuGwW+sbVAKPqjbIr4Y90AIbJ6Y0EWMCsJ/LQms1DSlPBMZngs8ZS
ZbxNz/rfNPYgj7Q5UgVW/Af2Bx0Tgfjqm3chxcKamC1kRaGbbj5nPcnRzxG9sNCv
xJB9MiNkqTQTaEFquFvaTjI6C/BznJkjBbNXQF26IzbQHyazaeE2jfkKhqYoor8n
/Bx6N5Hd7qVXOzG0bN5o+aezCdfjCWH61HkY+zRQud44LaesBMRp7QF4d9B04HV0
kOcY5bz+gmeAuaiSP2lqJhk3sfev9s+AYTg5QHTROj4u
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:03 2023 by rpki-client on console-ams.rpki-client.org