Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/uEguTxzXhstr4R0c96T7k6t3-7k.roa
File: uEguTxzXhstr4R0c96T7k6t3-7k.roa (raw, json)
Hash identifier: twa0B6JQLFc5EYqQUxPMYRzyzOJUKpuIWlDq74Q/OSc=
Subject key identifier: B8:48:2E:4F:1C:D7:86:CB:6B:E1:1D:1C:F7:A4:FB:93:AB:77:FB:B9
Certificate issuer: /CN=bee0a94997672a920a290ccbfd049126f7075c99
Certificate serial: 07D5A3B1
Authority key identifier: BE:E0:A9:49:97:67:2A:92:0A:29:0C:CB:FD:04:91:26:F7:07:5C:99
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vuCpSZdnKpIKKQzL_QSRJvcHXJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/uEguTxzXhstr4R0c96T7k6t3-7k.roa
Signing time: Sat 01 Jan 2022 12:04:25 +0000
ROA not before: Sat 01 Jan 2022 12:04:25 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 51876
IP address blocks: 45.136.132.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131441585 (0x7d5a3b1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bee0a94997672a920a290ccbfd049126f7075c99
Validity
Not Before: Jan 1 12:04:25 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=b8482e4f1cd786cb6be11d1cf7a4fb93ab77fbb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:e6:18:b7:de:47:0d:de:e4:3a:1b:3f:72:12:
e4:86:28:ce:bc:64:7e:22:7e:48:4f:3b:8b:c8:9d:
f1:ca:e7:25:c9:5a:ea:f1:d3:5f:2d:4f:9c:78:32:
f1:ea:46:96:65:89:dc:e9:d0:77:4e:a8:fc:73:19:
88:fe:b6:ca:55:f2:d0:a7:3d:58:78:cc:22:f9:5a:
f2:2e:ec:b5:f3:74:20:f2:dd:f3:68:28:72:f3:de:
88:d8:b1:ca:49:48:b2:16:06:dd:a9:ff:f7:52:26:
ff:22:63:21:1f:68:59:70:93:34:68:5f:27:e6:7d:
40:66:08:67:3f:c1:40:29:52:92:cb:57:f4:cc:94:
7e:23:42:af:3b:3c:76:6e:2d:23:e1:28:c0:62:b7:
47:a6:4d:67:36:0f:5c:9d:70:6b:17:ad:55:39:63:
02:a0:ae:8a:02:d9:87:4e:97:ec:05:4f:fb:b2:44:
0d:49:e4:f6:6f:14:63:ba:a9:be:df:d7:21:13:e9:
ec:75:03:c5:fb:c4:1e:b2:37:be:60:75:d3:86:f9:
a5:08:27:c9:76:4c:58:63:4b:2d:4b:e3:47:d3:fb:
22:5c:7f:63:3c:2b:5c:41:6c:17:38:d5:cd:83:a9:
ba:bf:5b:e5:a6:f2:44:2e:ab:7d:5d:c9:10:9b:9d:
ec:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:48:2E:4F:1C:D7:86:CB:6B:E1:1D:1C:F7:A4:FB:93:AB:77:FB:B9
X509v3 Authority Key Identifier:
keyid:BE:E0:A9:49:97:67:2A:92:0A:29:0C:CB:FD:04:91:26:F7:07:5C:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vuCpSZdnKpIKKQzL_QSRJvcHXJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/uEguTxzXhstr4R0c96T7k6t3-7k.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/c3e329-15ef-423a-bb12-3a6063cfea95/1/vuCpSZdnKpIKKQzL_QSRJvcHXJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.136.132.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:24:ae:c2:04:4b:17:92:67:08:30:cd:73:f5:a6:0d:55:03:
fe:ca:8d:bb:6b:bc:c8:79:ee:6a:49:82:8a:4a:11:5d:98:48:
46:66:3e:fe:c7:3e:33:d5:72:02:f0:f0:44:74:82:a7:3d:2e:
24:3c:9c:ab:6b:e8:1a:96:43:8a:c9:d8:a7:08:5c:c1:08:9e:
3c:51:e0:28:14:d5:b9:fe:c6:be:ad:a6:b8:6e:e3:31:98:85:
52:24:71:16:ba:55:d4:66:7e:d9:b2:14:ed:4d:23:3c:d9:2d:
77:cb:0a:dd:b7:4f:7b:2f:52:d8:08:b0:c1:14:5d:16:d6:b4:
40:54:82:57:24:19:0d:cb:25:30:3f:1c:64:ec:5e:0d:a2:ce:
d7:fd:9e:57:ea:22:e0:76:fb:7f:9e:79:36:09:dd:e5:fe:10:
15:90:12:1c:06:b8:41:1f:a3:68:d9:a7:cb:3c:a2:d4:45:78:
cb:4f:c6:a9:b2:39:43:bf:31:37:33:dc:2c:d7:fe:89:ad:c0:
3a:7c:d2:03:3e:27:6e:d3:82:07:aa:2a:7c:58:d9:08:92:e3:
b2:c4:69:5b:2a:dd:b4:6c:d0:e4:db:ed:b5:35:aa:95:17:d6:
1f:5f:1f:e6:e4:a9:6c:45:3b:e1:1d:2f:16:de:2a:e4:77:73:
3f:4e:31:85
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEB9WjsTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZWUwYTk0OTk3NjcyYTkyMGEyOTBjY2JmZDA0OTEyNmY3MDc1Yzk5MB4XDTIyMDEw
MTEyMDQyNVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYjg0ODJlNGYxY2Q3
ODZjYjZiZTExZDFjZjdhNGZiOTNhYjc3ZmJiOTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPnmGLfeRw3e5DobP3IS5IYozrxkfiJ+SE87i8id8crnJcla
6vHTXy1PnHgy8epGlmWJ3OnQd06o/HMZiP62ylXy0Kc9WHjMIvla8i7stfN0IPLd
82gocvPeiNixyklIshYG3an/91Im/yJjIR9oWXCTNGhfJ+Z9QGYIZz/BQClSkstX
9MyUfiNCrzs8dm4tI+EowGK3R6ZNZzYPXJ1waxetVTljAqCuigLZh06X7AVP+7JE
DUnk9m8UY7qpvt/XIRPp7HUDxfvEHrI3vmB104b5pQgnyXZMWGNLLUvjR9P7Ilx/
YzwrXEFsFzjVzYOpur9b5abyRC6rfV3JEJud7GUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBS4SC5PHNeGy2vhHRz3pPuTq3f7uTAfBgNVHSMEGDAWgBS+4KlJl2cqkgop
DMv9BJEm9wdcmTAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3Z1Q3BTWmRuS3BJS0tRekxfUVNSSnZjSFhKay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZTkvYzNlMzI5LTE1ZWYtNDIzYS1iYjEyLTNhNjA2M2NmZWE5NS8x
L3VFZ3VUeHpYaHN0cjRSMGM5NlQ3azZ0My03ay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTkv
YzNlMzI5LTE1ZWYtNDIzYS1iYjEyLTNhNjA2M2NmZWE5NS8xL3Z1Q3BTWmRuS3BJ
S0tRekxfUVNSSnZjSFhKay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2IhDANBgkqhkiG9w0BAQsFAAOC
AQEAoCSuwgRLF5JnCDDNc/WmDVUD/sqNu2u8yHnuakmCikoRXZhIRmY+/sc+M9Vy
AvDwRHSCpz0uJDycq2voGpZDisnYpwhcwQiePFHgKBTVuf7Gvq2muG7jMZiFUiRx
FrpV1GZ+2bIU7U0jPNktd8sK3bdPey9S2AiwwRRdFta0QFSCVyQZDcslMD8cZOxe
DaLO1/2eV+oi4Hb7f555Ngnd5f4QFZASHAa4QR+jaNmnyzyi1EV4y0/GqbI5Q78x
NzPcLNf+ia3AOnzSAz4nbtOCB6oqfFjZCJLjssRpWyrdtGzQ5NvttTWqlRfWH18f
5uSpbEU74R0vFt4q5HdzP04xhQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:50:30 2024 by rpki-client on console-ams.rpki-client.org