Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/7_CeSzHYidZB6oOVVSq4SX8j7Ok.roa
File: 7_CeSzHYidZB6oOVVSq4SX8j7Ok.roa (raw, json)
Hash identifier: fgh0dDOloDYs2naqFaqIzNZxYbRGAFwjec8UMzM6U28=
Subject key identifier: EF:F0:9E:4B:31:D8:89:D6:41:EA:83:95:55:2A:B8:49:7F:23:EC:E9
Certificate issuer: /CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd
Certificate serial: 01841EFB3761567C755FD148A3A5ECEBDDEE
Authority key identifier: BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/7_CeSzHYidZB6oOVVSq4SX8j7Ok.roa
Signing time: Fri 28 Oct 2022 14:24:50 +0000
ROA not before: Fri 28 Oct 2022 14:24:50 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 9009
IP address blocks: 45.85.240.0/24 maxlen: 24
45.85.241.0/24 maxlen: 24
45.85.243.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:84:1e:fb:37:61:56:7c:75:5f:d1:48:a3:a5:ec:eb:dd:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb83e99bf7254f948057a5e981be6fa5c2054dd
Validity
Not Before: Oct 28 14:24:50 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=eff09e4b31d889d641ea8395552ab8497f23ece9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:00:89:df:17:e0:c1:c4:88:2c:34:7e:96:cc:
93:f9:9a:c4:a5:45:34:33:93:c6:34:f2:e5:e3:9f:
27:0f:5e:3b:0b:17:77:55:00:97:43:7f:48:fc:0e:
dd:d3:07:3b:30:f5:b0:42:9d:2d:10:1a:dc:b3:64:
ab:c4:da:fd:ce:e8:da:5d:46:2b:0a:4b:cc:5c:8c:
e6:77:49:37:5c:80:4d:c7:1b:96:7a:24:59:38:cd:
19:cd:b2:84:bb:bc:51:6e:43:10:2f:84:3b:6c:04:
dc:ff:f6:cc:0e:70:47:84:8f:d8:94:0c:fb:ce:1d:
32:c6:32:9e:c1:73:79:10:0b:3c:02:79:36:64:df:
fb:38:f3:48:0c:ea:ea:45:be:7d:4f:16:ba:e8:b1:
f2:20:77:26:b8:11:4a:c3:5a:33:39:c0:dd:c9:aa:
62:32:88:24:d8:51:7c:c4:e3:77:3a:4e:34:c0:62:
bd:e7:a9:40:97:9a:0d:a6:57:4e:c0:ac:62:5f:7e:
c3:e2:3f:36:d9:8d:25:40:d6:5c:0c:f8:af:1d:00:
9b:53:65:80:e0:f3:04:60:e7:bb:9b:0a:fc:28:d0:
db:f1:1e:5d:14:cc:22:4e:13:74:8b:fd:c5:51:f4:
9e:23:76:3a:01:f9:15:c2:b6:3b:e2:f0:b8:f3:a9:
5f:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:F0:9E:4B:31:D8:89:D6:41:EA:83:95:55:2A:B8:49:7F:23:EC:E9
X509v3 Authority Key Identifier:
keyid:BD:B8:3E:99:BF:72:54:F9:48:05:7A:5E:98:1B:E6:FA:5C:20:54:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbg-mb9yVPlIBXpemBvm-lwgVN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/7_CeSzHYidZB6oOVVSq4SX8j7Ok.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/5e205a-ec0a-4fee-aef1-e495aaa0cac0/1/vbg-mb9yVPlIBXpemBvm-lwgVN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.85.240.0/23
45.85.243.0/24
Signature Algorithm: sha256WithRSAEncryption
13:e0:84:fb:42:da:9e:2f:7e:ab:a2:fe:90:35:32:cd:44:cb:
f4:38:a5:ea:cf:7c:cb:2c:45:95:62:3d:d1:63:7f:5e:b2:fc:
af:eb:8b:5b:79:cf:5b:8c:ec:30:62:aa:43:80:f2:88:52:ac:
1e:91:97:02:cc:84:6b:83:4f:ca:d9:fb:2d:ae:ee:d5:ff:70:
9d:88:7d:89:86:09:6c:cb:5d:99:7e:1a:0c:bd:a6:c1:53:cc:
c4:b4:19:2d:99:5e:20:d0:a9:64:55:a9:48:28:8c:22:dd:6f:
47:18:12:92:a5:b1:2b:03:f0:60:b1:35:ca:4d:89:de:4e:91:
e9:e1:7d:69:39:3c:b5:a2:08:58:83:6e:bf:2b:f0:58:35:07:
6d:86:dc:f1:7e:c8:10:d2:45:b6:47:20:a4:fa:07:99:73:30:
2e:e8:42:24:fc:76:bc:6a:c2:77:af:19:cd:6c:c9:42:8a:58:
8c:b4:8c:97:9c:2a:af:3e:f8:10:d5:a5:a0:98:99:fe:a8:36:
bb:6b:2f:f3:63:fa:6d:97:d2:49:92:a2:ad:3a:3e:57:c2:12:
e8:cc:d3:d5:f9:01:f4:64:5e:ad:a5:02:ad:91:43:8d:62:32:
a0:6a:6d:d0:44:89:36:98:50:01:b7:3c:2f:e1:8e:1c:bd:c2:
f8:9a:ff:39
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYQe+zdhVnx1X9FIo6Xs693uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYjgzZTk5YmY3MjU0Zjk0ODA1N2E1ZTk4MWJlNmZhNWMy
MDU0ZGQwHhcNMjIxMDI4MTQyNDUwWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhlZmYwOWU0YjMxZDg4OWQ2NDFlYTgzOTU1NTJhYjg0OTdmMjNlY2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAigCJ3xfgwcSILDR+lsyT+ZrEpUU0
M5PGNPLl458nD147Cxd3VQCXQ39I/A7d0wc7MPWwQp0tEBrcs2SrxNr9zujaXUYr
CkvMXIzmd0k3XIBNxxuWeiRZOM0ZzbKEu7xRbkMQL4Q7bATc//bMDnBHhI/YlAz7
zh0yxjKewXN5EAs8Ank2ZN/7OPNIDOrqRb59Txa66LHyIHcmuBFKw1ozOcDdyapi
Mogk2FF8xON3Ok40wGK956lAl5oNpldOwKxiX37D4j822Y0lQNZcDPivHQCbU2WA
4PMEYOe7mwr8KNDb8R5dFMwiThN0i/3FUfSeI3Y6AfkVwrY74vC486lfwwIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFO/wnksx2InWQeqDlVUquEl/I+zpMB8GA1UdIwQY
MBaAFL24Ppm/clT5SAV6Xpgb5vpcIFTdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmJnLW1iOXlWUGxJQlhwZW1Cdm0tbHdnVk4wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lOC81ZTIwNWEtZWMwYS00ZmVlLWFlZjEt
ZTQ5NWFhYTBjYWMwLzEvN19DZVN6SFlpZFpCNm9PVlZTcTRTWDhqN09rLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lOC81ZTIwNWEtZWMwYS00ZmVlLWFlZjEtZTQ5NWFhYTBjYWMw
LzEvdmJnLW1iOXlWUGxJQlhwZW1Cdm0tbHdnVk4wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQBLVXwAwQA
LVXzMA0GCSqGSIb3DQEBCwUAA4IBAQAT4IT7QtqeL36rov6QNTLNRMv0OKXqz3zL
LEWVYj3RY39esvyv64tbec9bjOwwYqpDgPKIUqwekZcCzIRrg0/K2fstru7V/3Cd
iH2Jhglsy12ZfhoMvabBU8zEtBktmV4g0KlkValIKIwi3W9HGBKSpbErA/BgsTXK
TYneTpHp4X1pOTy1oghYg26/K/BYNQdthtzxfsgQ0kW2RyCk+geZczAu6EIk/Ha8
asJ3rxnNbMlCiliMtIyXnCqvPvgQ1aWgmJn+qDa7ay/zY/ptl9JJkqKtOj5XwhLo
zNPV+QH0ZF6tpQKtkUONYjKgam3QRIk2mFABtzwv4Y4cvcL4mv85
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:57:59 2024 by rpki-client on console-fra.rpki-client.org