Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/b6c426-76d5-4a82-9b5f-856b65c75c26/1/8C9Cgixrs6xYaGLJoBdjHsXlZpk.roa
File: 8C9Cgixrs6xYaGLJoBdjHsXlZpk.roa (raw, json)
Hash identifier: XrJeFab27GLqYmDM2JFecWg/dsJK5yZ+D31QFcjfXS4=
Subject key identifier: F0:2F:42:82:2C:6B:B3:AC:58:68:62:C9:A0:17:63:1E:C5:E5:66:99
Certificate issuer: /CN=ded7239db81d61f98d586383ccc125d66106cb30
Certificate serial: 070DE479
Authority key identifier: DE:D7:23:9D:B8:1D:61:F9:8D:58:63:83:CC:C1:25:D6:61:06:CB:30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/3tcjnbgdYfmNWGODzMEl1mEGyzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/b6c426-76d5-4a82-9b5f-856b65c75c26/1/8C9Cgixrs6xYaGLJoBdjHsXlZpk.roa
Signing time: Sat 01 Jan 2022 10:01:39 +0000
ROA not before: Sat 01 Jan 2022 10:01:39 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50629
IP address blocks: 45.151.240.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118350969 (0x70de479)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ded7239db81d61f98d586383ccc125d66106cb30
Validity
Not Before: Jan 1 10:01:39 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f02f42822c6bb3ac586862c9a017631ec5e56699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:04:78:5c:9a:01:53:38:02:26:63:61:14:80:
8a:7b:54:76:84:76:ca:89:dc:99:6e:f3:1a:d6:7f:
07:e3:d4:bd:7f:9c:ee:33:97:ff:43:78:73:93:5a:
34:91:63:9c:d1:71:d9:f1:96:f4:b0:17:54:39:3e:
49:be:b1:b8:93:29:9d:b1:cb:5d:df:9b:c4:4f:ce:
dd:e2:c8:42:3c:d4:da:24:6f:5b:4e:30:79:d0:55:
a8:14:5c:cb:5a:24:58:0d:1c:a7:78:3a:3c:15:de:
70:4c:5a:9f:22:58:28:2b:f3:da:8c:d2:aa:ed:c7:
ac:90:eb:00:90:9d:f1:f4:ad:f9:14:e6:ad:9a:85:
de:4b:d5:1d:ef:e7:4c:d7:8b:c7:76:59:15:fc:03:
a9:51:0a:61:91:d8:fb:99:52:ef:ae:53:07:aa:36:
95:d2:4e:30:28:d1:58:8c:d9:84:35:3f:e4:bc:84:
39:95:cc:b7:26:1a:00:32:72:f1:56:1a:a1:08:ee:
45:34:e3:4b:45:0f:5e:bf:d2:c1:fa:fa:fa:87:3e:
37:5d:4a:59:8d:75:5d:42:cb:1a:7c:66:c9:58:58:
cc:c3:59:7c:29:6f:ee:a3:ed:44:9d:44:94:d4:8a:
bb:e5:22:ba:c2:58:ef:c2:ff:2f:69:4c:2a:5d:08:
34:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:2F:42:82:2C:6B:B3:AC:58:68:62:C9:A0:17:63:1E:C5:E5:66:99
X509v3 Authority Key Identifier:
keyid:DE:D7:23:9D:B8:1D:61:F9:8D:58:63:83:CC:C1:25:D6:61:06:CB:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/3tcjnbgdYfmNWGODzMEl1mEGyzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b6c426-76d5-4a82-9b5f-856b65c75c26/1/8C9Cgixrs6xYaGLJoBdjHsXlZpk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/b6c426-76d5-4a82-9b5f-856b65c75c26/1/3tcjnbgdYfmNWGODzMEl1mEGyzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.151.240.0/22
Signature Algorithm: sha256WithRSAEncryption
c3:3e:90:a9:f7:5a:c3:8e:06:f4:1b:30:eb:cd:49:75:35:7e:
51:dd:26:dc:10:c9:e0:98:cd:e2:c6:41:64:06:a1:8e:8c:0c:
b2:87:96:56:44:02:84:d2:94:7c:4c:e1:42:e5:d7:22:90:dd:
ee:d2:0f:ab:8d:aa:9d:c3:41:1d:47:00:0b:e8:5c:e9:25:33:
fd:e9:31:e7:f4:9a:16:44:aa:61:b2:86:23:bf:44:8a:d8:7c:
09:4e:b8:85:60:fb:8e:6f:bf:ac:e2:ea:ef:a2:3f:07:2b:15:
35:dc:ca:60:17:95:76:d6:8a:33:9a:53:38:1b:5d:43:bd:32:
81:34:47:86:77:09:bb:9f:4e:b3:07:48:50:33:90:97:5c:ca:
5d:03:ab:4a:64:b4:b8:60:92:2f:59:ce:4f:6a:5f:e7:58:bc:
9a:d0:da:19:c5:2c:be:39:89:85:a9:c3:73:a8:03:ce:31:a3:
7d:a4:b6:d2:ab:9a:c1:ec:81:17:ae:0b:7c:51:68:23:ea:59:
3a:c4:ea:a4:a4:17:02:82:65:03:a8:06:85:d9:b6:e0:a7:84:
4d:3e:d9:cb:04:c2:06:a4:a7:2c:fe:f7:64:cf:95:46:7c:1f:
07:46:09:83:fb:06:4e:c9:7b:48:4e:7a:e2:e6:75:ff:66:07:
47:60:97:ed
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBw3keTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhk
ZWQ3MjM5ZGI4MWQ2MWY5OGQ1ODYzODNjY2MxMjVkNjYxMDZjYjMwMB4XDTIyMDEw
MTEwMDEzOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjAyZjQyODIyYzZi
YjNhYzU4Njg2MmM5YTAxNzYzMWVjNWU1NjY5OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBANIEeFyaAVM4AiZjYRSAintUdoR2yoncmW7zGtZ/B+PUvX+c
7jOX/0N4c5NaNJFjnNFx2fGW9LAXVDk+Sb6xuJMpnbHLXd+bxE/O3eLIQjzU2iRv
W04wedBVqBRcy1okWA0cp3g6PBXecExanyJYKCvz2ozSqu3HrJDrAJCd8fSt+RTm
rZqF3kvVHe/nTNeLx3ZZFfwDqVEKYZHY+5lS765TB6o2ldJOMCjRWIzZhDU/5LyE
OZXMtyYaADJy8VYaoQjuRTTjS0UPXr/Swfr6+oc+N11KWY11XULLGnxmyVhYzMNZ
fClv7qPtRJ1ElNSKu+UiusJY78L/L2lMKl0INKUCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTwL0KCLGuzrFhoYsmgF2MexeVmmTAfBgNVHSMEGDAWgBTe1yOduB1h+Y1Y
Y4PMwSXWYQbLMDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
LzN0Y2puYmdkWWZtTldHT0R6TUVsMW1FR3l6QS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWIvYjZjNDI2LTc2ZDUtNGE4Mi05YjVmLTg1NmI2NWM3NWMyNi8x
LzhDOUNnaXhyczZ4WWFHTEpvQmRqSHNYbFpway5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIv
YjZjNDI2LTc2ZDUtNGE4Mi05YjVmLTg1NmI2NWM3NWMyNi8xLzN0Y2puYmdkWWZt
TldHT0R6TUVsMW1FR3l6QS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAi2X8DANBgkqhkiG9w0BAQsFAAOC
AQEAwz6Qqfdaw44G9Bsw681JdTV+Ud0m3BDJ4JjN4sZBZAahjowMsoeWVkQChNKU
fEzhQuXXIpDd7tIPq42qncNBHUcAC+hc6SUz/ekx5/SaFkSqYbKGI79Eith8CU64
hWD7jm+/rOLq76I/BysVNdzKYBeVdtaKM5pTOBtdQ70ygTRHhncJu59OswdIUDOQ
l1zKXQOrSmS0uGCSL1nOT2pf51i8mtDaGcUsvjmJhanDc6gDzjGjfaS20quaweyB
F64LfFFoI+pZOsTqpKQXAoJlA6gGhdm24KeETT7ZywTCBqSnLP73ZM+VRnwfB0YJ
g/sGTsl7SE564uZ1/2YHR2CX7Q==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:05:58 2023 by rpki-client on console-fra.rpki-client.org