Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/YWvlFGWr_lF7-CesTqfoJdb1M2g.roa
File: YWvlFGWr_lF7-CesTqfoJdb1M2g.roa (raw, json)
Hash identifier: MmeFf2u2+UDGMho5ib3vVe58n9KKACYGBvEYVDt0U6Q=
Subject key identifier: 61:6B:E5:14:65:AB:FE:51:7B:F8:27:AC:4E:A7:E8:25:D6:F5:33:68
Certificate issuer: /CN=b69d28b7d028cabb9684a80e14baaf15ca6fd2f6
Certificate serial: 06CCEB98
Authority key identifier: B6:9D:28:B7:D0:28:CA:BB:96:84:A8:0E:14:BA:AF:15:CA:6F:D2:F6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tp0ot9AoyruWhKgOFLqvFcpv0vY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/YWvlFGWr_lF7-CesTqfoJdb1M2g.roa
Signing time: Sat 01 Jan 2022 07:54:52 +0000
ROA not before: Sat 01 Jan 2022 07:54:52 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 203201
IP address blocks: 45.144.60.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114092952 (0x6cceb98)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b69d28b7d028cabb9684a80e14baaf15ca6fd2f6
Validity
Not Before: Jan 1 07:54:52 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=616be51465abfe517bf827ac4ea7e825d6f53368
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:47:b4:14:c4:d6:be:b7:94:77:1c:51:31:73:
71:5f:c2:52:06:ce:0f:9e:de:5e:4d:f2:db:e4:93:
29:2d:66:b2:6c:e3:32:77:87:46:ab:75:f0:3a:4d:
8e:0d:5d:97:49:e7:f6:fa:3d:07:71:b0:70:10:c4:
dc:a9:76:df:fe:97:e0:b8:01:bc:56:5a:37:36:fa:
03:51:9e:f2:be:74:84:00:7f:d1:8e:05:0a:0e:f8:
25:dc:0e:d7:af:0d:31:fa:f2:f2:da:d6:bf:ff:c7:
06:ed:12:69:30:32:4b:5b:ee:7b:8a:15:f7:d7:68:
5a:dd:d5:6c:e6:87:58:30:ee:d2:a4:fc:47:45:b5:
05:47:15:10:94:70:df:a8:a9:01:72:2c:2f:3d:66:
ea:a6:3d:d1:47:26:3f:9c:7f:3c:78:ab:31:71:0f:
ba:60:30:fe:fe:07:37:82:f2:d0:4f:43:76:49:0d:
54:6a:75:8e:00:c6:9f:d0:a6:ac:6a:eb:3a:a2:c4:
f4:d3:d3:70:2c:e8:ec:2a:26:be:76:ca:74:88:e2:
8f:84:e1:cc:90:f0:27:50:08:93:75:f0:03:54:69:
98:33:e9:cb:e0:8a:25:c8:cc:63:60:4c:43:b7:6e:
d5:93:76:3c:78:fb:de:20:81:bc:2a:23:3b:08:83:
f2:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:6B:E5:14:65:AB:FE:51:7B:F8:27:AC:4E:A7:E8:25:D6:F5:33:68
X509v3 Authority Key Identifier:
keyid:B6:9D:28:B7:D0:28:CA:BB:96:84:A8:0E:14:BA:AF:15:CA:6F:D2:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tp0ot9AoyruWhKgOFLqvFcpv0vY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/YWvlFGWr_lF7-CesTqfoJdb1M2g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/b22c1e-ca4c-481e-91a2-5c93239e5e2e/1/tp0ot9AoyruWhKgOFLqvFcpv0vY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.144.60.0/24
Signature Algorithm: sha256WithRSAEncryption
0a:68:72:c4:e2:3f:5d:9c:7a:12:b6:fc:54:60:05:14:e4:a4:
f7:97:b6:dd:43:8a:02:d4:6f:03:a7:c6:e5:5c:16:7e:38:d1:
2e:3e:03:fd:c0:23:19:d6:c7:c5:e4:11:29:40:d5:64:b0:01:
59:c7:89:f1:16:96:fc:d2:c4:ce:59:11:28:08:35:2d:98:be:
1f:74:98:2e:68:9d:36:eb:1d:8a:fc:df:a7:27:f2:82:ef:7c:
44:48:ba:20:dd:94:21:bf:44:c3:bb:fc:56:57:94:e3:94:50:
9c:7e:73:63:01:88:cf:45:89:f4:b4:35:c4:f7:ef:04:40:fa:
10:dd:b0:af:19:b5:63:39:2e:9f:c6:3a:23:1e:c3:56:34:98:
b8:ca:34:3f:39:ac:66:08:df:c8:ff:af:a7:e4:19:1a:3b:31:
71:71:1e:a0:c8:11:c7:70:bf:62:43:8a:fe:a3:15:ab:a8:cc:
3a:3f:3d:d4:41:79:bb:9d:d7:36:a0:59:8b:d7:0b:a8:5c:af:
6a:28:96:60:fc:e0:1d:96:c9:61:48:71:fe:99:de:95:46:ec:
9e:b6:ea:c8:78:ba:d1:21:c1:d6:34:7d:95:cb:9d:55:34:af:
21:e3:a5:b9:f1:c6:f7:57:70:23:a4:73:7c:0b:35:9e:f7:da:
6b:0b:97:48
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIEBszrmDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
NjlkMjhiN2QwMjhjYWJiOTY4NGE4MGUxNGJhYWYxNWNhNmZkMmY2MB4XDTIyMDEw
MTA3NTQ1MloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoNjE2YmU1MTQ2NWFi
ZmU1MTdiZjgyN2FjNGVhN2U4MjVkNmY1MzM2ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALxHtBTE1r63lHccUTFzcV/CUgbOD57eXk3y2+STKS1msmzj
MneHRqt18DpNjg1dl0nn9vo9B3GwcBDE3Kl23/6X4LgBvFZaNzb6A1Ge8r50hAB/
0Y4FCg74JdwO168NMfry8trWv//HBu0SaTAyS1vue4oV99doWt3VbOaHWDDu0qT8
R0W1BUcVEJRw36ipAXIsLz1m6qY90UcmP5x/PHirMXEPumAw/v4HN4Ly0E9DdkkN
VGp1jgDGn9CmrGrrOqLE9NPTcCzo7ComvnbKdIjij4ThzJDwJ1AIk3XwA1RpmDPp
y+CKJcjMY2BMQ7du1ZN2PHj73iCBvCojOwiD8sECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBRha+UUZav+UXv4J6xOp+gl1vUzaDAfBgNVHSMEGDAWgBS2nSi30CjKu5aE
qA4Uuq8Vym/S9jAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3RwMG90OUFveXJ1V2hLZ09GTHF2RmNwdjB2WS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZWQvYjIyYzFlLWNhNGMtNDgxZS05MWEyLTVjOTMyMzllNWUyZS8x
L1lXdmxGR1dyX2xGNy1DZXNUcWZvSmRiMU0yZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQv
YjIyYzFlLWNhNGMtNDgxZS05MWEyLTVjOTMyMzllNWUyZS8xL3RwMG90OUFveXJ1
V2hLZ09GTHF2RmNwdjB2WS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAC2QPDANBgkqhkiG9w0BAQsFAAOC
AQEACmhyxOI/XZx6Erb8VGAFFOSk95e23UOKAtRvA6fG5VwWfjjRLj4D/cAjGdbH
xeQRKUDVZLABWceJ8RaW/NLEzlkRKAg1LZi+H3SYLmidNusdivzfpyfygu98REi6
IN2UIb9Ew7v8VleU45RQnH5zYwGIz0WJ9LQ1xPfvBED6EN2wrxm1Yzkun8Y6Ix7D
VjSYuMo0PzmsZgjfyP+vp+QZGjsxcXEeoMgRx3C/YkOK/qMVq6jMOj891EF5u53X
NqBZi9cLqFyvaiiWYPzgHZbJYUhx/pnelUbsnrbqyHi60SHB1jR9lcudVTSvIeOl
ufHG91dwI6RzfAs1nvfaawuXSA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:58:48 2024 by rpki-client on console-fra.rpki-client.org