Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/klSpqF-BM7uV5qJjNvUA8fEA7tw.roa
File: klSpqF-BM7uV5qJjNvUA8fEA7tw.roa (raw, json)
Hash identifier: PYva0IwaS5s0GGAo4KPCQrJdpwZv7kYdSquLkP9PQg4=
Subject key identifier: 92:54:A9:A8:5F:81:33:BB:95:E6:A2:63:36:F5:00:F1:F1:00:EE:DC
Certificate issuer: /CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Certificate serial: 0171394B
Authority key identifier: 1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/klSpqF-BM7uV5qJjNvUA8fEA7tw.roa
Signing time: Wed 15 Jun 2022 06:03:44 +0000
ROA not before: Wed 15 Jun 2022 06:03:44 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 1239
IP address blocks: 2.59.183.0/24 maxlen: 24
2.59.182.0/24 maxlen: 24
45.156.144.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24197451 (0x171394b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7f036e2592391fb45a3dd33caf0b07956973cf
Validity
Not Before: Jun 15 06:03:44 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9254a9a85f8133bb95e6a26336f500f1f100eedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:c3:4e:5d:e6:d7:47:f4:0e:a5:70:16:d0:e2:
bb:d2:63:31:e0:e6:4d:3a:90:44:86:2b:0b:13:70:
4f:4c:0e:8f:94:4c:d8:af:93:a0:7d:87:92:ce:bb:
54:a5:67:e4:33:b6:96:15:f8:35:15:c7:cb:89:ff:
74:a4:ee:7a:8b:3a:2e:02:ef:cc:f8:7f:0f:ff:ff:
4e:30:a7:5f:15:62:4c:86:20:9d:b0:13:fe:f1:c0:
49:ea:17:a5:87:93:af:f6:f2:5d:57:15:83:5c:72:
cd:1d:c5:0b:c6:19:00:f7:9f:8e:8b:57:28:5f:a6:
37:47:32:aa:22:19:1f:97:39:ce:b2:1f:c9:4c:2e:
da:9e:ee:f7:05:a6:5d:33:72:f8:8e:ce:c8:03:a4:
b0:be:85:4b:e7:99:7f:70:1d:90:f3:b4:36:24:83:
fa:c9:a9:4a:ac:56:8d:ed:19:3e:b9:39:6e:f3:76:
48:cf:dc:e2:66:fc:0a:0f:c1:32:9f:66:b9:8b:ba:
c4:4b:61:36:4a:06:c9:a8:65:07:88:de:c7:ad:27:
8c:11:62:4e:a1:91:26:b2:a4:37:5c:7b:ab:5d:a2:
51:7a:db:de:97:10:c1:9e:20:f3:73:c7:f3:5b:5a:
f5:2d:10:c9:c2:a0:c3:ea:03:2f:00:8a:25:29:33:
eb:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:54:A9:A8:5F:81:33:BB:95:E6:A2:63:36:F5:00:F1:F1:00:EE:DC
X509v3 Authority Key Identifier:
keyid:1A:7F:03:6E:25:92:39:1F:B4:5A:3D:D3:3C:AF:0B:07:95:69:73:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/klSpqF-BM7uV5qJjNvUA8fEA7tw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/24be1a-16da-481c-8bcb-340d625c6dba/1/Gn8DbiWSOR-0Wj3TPK8LB5Vpc88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.59.182.0/23
45.156.144.0/24
Signature Algorithm: sha256WithRSAEncryption
17:57:7c:af:05:75:4a:5f:2c:02:ca:9d:e7:ec:06:12:b0:73:
26:53:2f:54:ae:5e:93:32:ce:b4:86:cd:d3:3f:fc:d9:ed:6f:
a3:71:08:e4:c8:32:fa:a3:2a:64:27:98:25:95:8b:25:a3:9e:
e0:56:c1:01:bf:95:61:69:b5:79:8b:9b:e6:4c:09:8d:20:8e:
0b:9c:7b:b1:3e:5b:cb:06:45:c2:21:50:02:2b:33:fa:d0:ee:
3b:19:9b:6b:47:80:62:56:d7:54:e4:47:e4:19:46:cc:20:69:
86:fe:61:95:95:69:db:e5:59:82:36:21:ef:dc:f9:f9:02:f0:
d9:48:2f:a2:98:df:c5:23:18:40:27:10:1d:e2:d1:20:5c:28:
32:e3:7b:fb:82:11:cd:b1:de:0d:3d:c0:b5:84:8c:86:ac:25:
4a:86:d2:63:4f:7f:3a:b5:07:40:aa:b7:df:3c:0e:8e:d2:3f:
9f:ee:9d:91:ae:3a:81:d4:88:e9:0f:ae:f9:49:08:c3:aa:b7:
2c:06:0a:00:24:66:6f:47:9c:e0:fd:08:a9:94:9f:eb:5d:7d:
52:e5:57:cf:94:2b:8b:c1:e6:87:6a:46:7b:e1:1c:8c:a2:54:
40:2a:0b:6f:34:31:12:69:96:c2:2f:f4:8e:eb:0d:52:0d:ec:
47:b3:4b:73
-----BEGIN CERTIFICATE-----
MIIE9TCCA92gAwIBAgIEAXE5SzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
YTdmMDM2ZTI1OTIzOTFmYjQ1YTNkZDMzY2FmMGIwNzk1Njk3M2NmMB4XDTIyMDYx
NTA2MDM0NFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOTI1NGE5YTg1Zjgx
MzNiYjk1ZTZhMjYzMzZmNTAwZjFmMTAwZWVkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAPPDTl3m10f0DqVwFtDiu9JjMeDmTTqQRIYrCxNwT0wOj5RM
2K+ToH2Hks67VKVn5DO2lhX4NRXHy4n/dKTueos6LgLvzPh/D///TjCnXxViTIYg
nbAT/vHASeoXpYeTr/byXVcVg1xyzR3FC8YZAPefjotXKF+mN0cyqiIZH5c5zrIf
yUwu2p7u9wWmXTNy+I7OyAOksL6FS+eZf3AdkPO0NiSD+smpSqxWje0ZPrk5bvN2
SM/c4mb8Cg/BMp9muYu6xEthNkoGyahlB4jex60njBFiTqGRJrKkN1x7q12iUXrb
3pcQwZ4g83PH81ta9S0QycKgw+oDLwCKJSkz6x8CAwEAAaOCAg8wggILMB0GA1Ud
DgQWBBSSVKmoX4Ezu5XmomM29QDx8QDu3DAfBgNVHSMEGDAWgBQafwNuJZI5H7Ra
PdM8rwsHlWlzzzAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0duOERiaVdTT1ItMFdqM1RQSzhMQjVWcGM4OC5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvMjRiZTFhLTE2ZGEtNDgxYy04YmNiLTM0MGQ2MjVjNmRiYS8x
L2tsU3BxRi1CTTd1VjVxSmpOdlVBOGZFQTd0dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
MjRiZTFhLTE2ZGEtNDgxYy04YmNiLTM0MGQ2MjVjNmRiYS8xL0duOERiaVdTT1It
MFdqM1RQSzhMQjVWcGM4OC5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAl
BggrBgEFBQcBBwEB/wQWMBQwEgQCAAEwDAMEAQI7tgMEAC2ckDANBgkqhkiG9w0B
AQsFAAOCAQEAF1d8rwV1Sl8sAsqd5+wGErBzJlMvVK5ekzLOtIbN0z/82e1vo3EI
5Mgy+qMqZCeYJZWLJaOe4FbBAb+VYWm1eYub5kwJjSCOC5x7sT5bywZFwiFQAisz
+tDuOxmba0eAYlbXVORH5BlGzCBphv5hlZVp2+VZgjYh79z5+QLw2UgvopjfxSMY
QCcQHeLRIFwoMuN7+4IRzbHeDT3AtYSMhqwlSobSY09/OrUHQKq33zwOjtI/n+6d
ka46gdSI6Q+u+UkIw6q3LAYKACRmb0ec4P0IqZSf6119UuVXz5Qri8Hmh2pGe+Ec
jKJUQCoLbzQxEmmWwi/0jusNUg3sR7NLcw==
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:09:53 2023 by rpki-client on console-ams.rpki-client.org