Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/HeXK51ZSOoyWmXYknnwhSjOPcZk.roa
File: HeXK51ZSOoyWmXYknnwhSjOPcZk.roa (raw, json)
Hash identifier: puUPjjXPZ9jMmd7zpHXpYYcZBLfYtlUCW6OTTKqJjP0=
Subject key identifier: 1D:E5:CA:E7:56:52:3A:8C:96:99:76:24:9E:7C:21:4A:33:8F:71:99
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 013D462E
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/HeXK51ZSOoyWmXYknnwhSjOPcZk.roa
Signing time: Tue 24 May 2022 06:33:29 +0000
ROA not before: Tue 24 May 2022 06:33:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208548
IP address blocks: 45.156.147.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20792878 (0x13d462e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: May 24 06:33:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1de5cae756523a8c969976249e7c214a338f7199
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:1f:3a:34:f6:4a:cf:8f:20:0f:b7:17:4f:ba:
5b:3e:8c:a5:5e:99:ba:85:e2:28:48:41:9b:2d:21:
89:29:c8:57:5d:d4:fa:24:7c:87:17:1f:0b:8b:5f:
3f:74:46:f3:65:3b:b7:55:61:ec:4a:a6:4f:43:01:
8b:0f:5d:03:2a:7f:6c:9e:83:10:95:1d:c1:a9:ea:
8c:e8:ee:24:d8:e8:ab:b6:a3:27:89:b9:36:ba:e4:
f1:ac:06:d2:95:a4:a3:aa:05:6c:36:76:24:3d:ed:
f5:2d:97:7a:bf:1a:52:b1:c4:87:41:7d:dd:bf:e2:
9d:e6:37:48:a7:bd:e6:ba:b7:e3:6e:96:a8:42:50:
71:f6:3e:97:a4:f5:7a:84:af:db:c1:70:e8:cf:db:
19:35:2b:65:0d:f1:a0:30:b1:2b:f9:e3:e3:b6:d3:
e3:10:bd:73:6c:5e:fa:f1:c0:f3:28:b9:f9:5e:1c:
d8:8f:d9:25:d6:9c:68:eb:fd:e5:dd:e1:e4:e4:f7:
cb:28:f9:40:72:5c:47:55:7d:c9:49:c4:52:f0:c9:
c6:2f:fd:61:11:e2:09:a0:dc:51:2f:96:1c:91:1d:
ac:73:0f:f8:08:98:b8:7f:7e:9f:c1:e4:9f:f5:9e:
d8:f4:2c:fe:89:92:92:e5:8c:4c:6a:15:10:81:fb:
9e:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:E5:CA:E7:56:52:3A:8C:96:99:76:24:9E:7C:21:4A:33:8F:71:99
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/HeXK51ZSOoyWmXYknnwhSjOPcZk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.156.147.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:f8:ff:91:7f:c2:11:aa:83:98:ec:ab:e5:fa:81:1c:81:0c:
5e:2a:7a:d1:bc:ca:49:9d:87:83:2d:e4:25:3e:ec:b1:5e:51:
0b:3e:4c:4b:77:4e:2a:5a:1c:e0:df:f7:39:cc:b6:af:75:05:
0b:f4:89:63:67:b0:65:79:e9:34:25:d6:cc:a1:c6:94:14:00:
49:af:1d:8e:e8:59:e7:42:12:34:3e:1f:08:dc:cc:07:f5:09:
7c:4a:24:1d:96:d9:ca:01:2c:74:ca:e8:aa:fd:5e:02:6c:08:
6b:29:34:f1:b0:17:ea:68:93:87:11:2e:db:e0:ff:24:1e:a6:
66:cd:93:e6:3d:48:d9:cc:98:a4:83:7f:07:1f:f4:84:8d:8f:
3a:7c:6c:ce:c3:4e:a2:71:21:17:68:db:40:15:52:0f:d0:85:
3f:1b:2a:e5:d7:e7:7a:1c:e9:4c:0f:dc:cd:8f:a6:ff:87:08:
1f:71:81:ef:e3:b1:8c:24:09:e9:f2:91:40:10:44:e3:97:ba:
64:c9:fb:5a:8c:01:40:ee:2e:db:0e:73:a7:d6:75:c7:0e:78:
5e:de:41:85:53:f4:c7:eb:2c:c9:ba:2e:96:7d:65:ab:78:cd:
03:90:06:3b:98:2f:9d:84:7b:b5:6a:78:6c:7f:07:f6:57:02:
25:f0:54:04
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEAT1GLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YTdmMDM2ZTI1OTIzOTFmYjQ1YTNkZDMzY2FmMGIwNzk1Njk3M2NmMB4XDTIyMDUy
NDA2MzMyOVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoMWRlNWNhZTc1NjUy
M2E4Yzk2OTk3NjI0OWU3YzIxNGEzMzhmNzE5OTCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMUfOjT2Ss+PIA+3F0+6Wz6MpV6ZuoXiKEhBmy0hiSnIV13U
+iR8hxcfC4tfP3RG82U7t1Vh7EqmT0MBiw9dAyp/bJ6DEJUdwanqjOjuJNjoq7aj
J4m5Nrrk8awG0pWko6oFbDZ2JD3t9S2Xer8aUrHEh0F93b/ineY3SKe95rq3426W
qEJQcfY+l6T1eoSv28Fw6M/bGTUrZQ3xoDCxK/nj47bT4xC9c2xe+vHA8yi5+V4c
2I/ZJdacaOv95d3h5OT3yyj5QHJcR1V9yUnEUvDJxi/9YRHiCaDcUS+WHJEdrHMP
+AiYuH9+n8Hkn/We2PQs/omSkuWMTGoVEIH7nh8CAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBQd5crnVlI6jJaZdiSefCFKM49xmTAfBgNVHSMEGDAWgBQafwNuJZI5H7Ra
PdM8rwsHlWlzzzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0duOERiaVdTT1ItMFdqM1RQSzhMQjVWcGM4OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvMjRiZTFhLTE2ZGEtNDgxYy04YmNiLTM0MGQ2MjVjNmRiYS8x
L0hlWEs1MVpTT295V21YWWtubndoU2pPUGNaay5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
MjRiZTFhLTE2ZGEtNDgxYy04YmNiLTM0MGQ2MjVjNmRiYS8xL0duOERiaVdTT1It
MFdqM1RQSzhMQjVWcGM4OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2ckzANBgkqhkiG9w0BAQsFAAOC
AQEAm/j/kX/CEaqDmOyr5fqBHIEMXip60bzKSZ2Hgy3kJT7ssV5RCz5MS3dOKloc
4N/3Ocy2r3UFC/SJY2ewZXnpNCXWzKHGlBQASa8djuhZ50ISND4fCNzMB/UJfEok
HZbZygEsdMroqv1eAmwIayk08bAX6miThxEu2+D/JB6mZs2T5j1I2cyYpIN/Bx/0
hI2POnxszsNOonEhF2jbQBVSD9CFPxsq5dfnehzpTA/czY+m/4cIH3GB7+OxjCQJ
6fKRQBBE45e6ZMn7WowBQO4u2w5zp9Z1xw54Xt5BhVP0x+ssybouln1lq3jNA5AG
O5gvnYR7tWp4bH8H9lcCJfBUBA==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org