Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/J-f87lfy9bfxhm-HlWuTSFYDBRs.roa
File: J-f87lfy9bfxhm-HlWuTSFYDBRs.roa (raw, json)
Hash identifier: WsNWWXwLW3bTmxQrjs1LydYNHG1n0We2GHVeCiMtjbQ=
Subject key identifier: 27:E7:FC:EE:57:F2:F5:B7:F1:86:6F:87:95:6B:93:48:56:03:05:1B
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 01855DF5B337BCB9116F0748292DFE58936A
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/J-f87lfy9bfxhm-HlWuTSFYDBRs.roa
Signing time: Thu 29 Dec 2022 12:57:41 +0000
ROA not before: Thu 29 Dec 2022 12:57:41 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 3169
IP address blocks: 45.88.4.0/24 maxlen: 24
155.133.62.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:5d:f5:b3:37:bc:b9:11:6f:07:48:29:2d:fe:58:93:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Dec 29 12:57:41 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=27e7fcee57f2f5b7f1866f87956b93485603051b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:4a:2d:f6:15:db:2c:bf:14:ca:01:72:59:5d:
77:88:d5:e4:65:0c:fe:47:05:c6:cf:cc:49:41:83:
4a:6e:16:38:c8:f8:84:34:5d:e3:f3:2f:ec:86:79:
1e:f8:db:93:e2:14:07:4f:87:64:2d:75:1e:7a:e6:
37:a1:dc:05:61:42:f5:c6:b8:2a:60:fb:2e:05:95:
08:28:cc:cb:3f:ee:bd:62:8c:80:73:58:bc:2a:a8:
6f:ad:b6:b5:74:5a:5d:8a:88:f3:42:fc:b3:b9:9f:
9b:46:8d:95:66:bd:90:61:0f:8b:40:a6:5c:b9:3f:
4d:97:28:09:d3:d6:9b:1e:81:4c:c3:06:cd:a5:89:
2e:eb:c2:9f:1f:a0:d2:b1:d1:68:cc:2d:e0:4e:7a:
a7:a6:ef:5a:33:41:ea:32:45:d0:a0:6e:88:f7:6b:
ee:1c:ab:f5:51:d7:b5:69:ab:6c:1b:ac:93:fd:24:
78:9c:2a:c1:aa:22:6c:69:10:54:d4:27:a1:62:34:
72:2e:0d:80:0b:44:83:84:4f:d2:8c:5f:cf:5b:a0:
e6:45:87:65:e0:a0:2a:bd:a1:9c:36:0e:6f:cb:fb:
ce:63:a6:5c:a2:76:d5:9d:65:d1:91:85:44:71:08:
e9:84:b7:af:f6:07:8d:d3:38:c9:7d:d1:cc:7a:4b:
9a:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:E7:FC:EE:57:F2:F5:B7:F1:86:6F:87:95:6B:93:48:56:03:05:1B
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/J-f87lfy9bfxhm-HlWuTSFYDBRs.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.88.4.0/24
155.133.62.0/23
Signature Algorithm: sha256WithRSAEncryption
0f:5c:27:b0:90:e7:a9:f4:98:ab:d4:84:56:2e:6b:91:ec:f8:
27:8d:8b:bc:ba:17:f3:9e:88:81:03:73:e2:78:0e:a9:40:b6:
4b:8f:9e:96:53:b6:c5:5b:57:48:de:07:71:26:6a:3d:06:8a:
be:c2:a4:2e:6c:17:04:d2:7a:e0:ac:29:5c:26:c8:67:60:03:
3e:ec:e4:38:0d:4f:a9:63:87:e5:55:92:3f:94:b7:44:bd:c4:
ff:55:21:6a:99:4a:a3:c8:23:9d:06:b1:43:dc:92:2f:fe:45:
f8:36:c0:4d:42:d0:93:68:8a:f2:25:a5:0c:e2:92:a4:e2:93:
dd:74:01:b8:f6:88:a7:cf:ab:0a:ab:a6:9d:10:3c:9c:eb:ff:
39:3f:39:64:67:94:ab:ce:e7:96:39:16:fa:ca:d5:3a:84:3f:
0d:b6:72:e7:9a:1a:b8:4b:80:b6:9f:44:2f:91:1b:3b:66:f0:
bc:f9:5e:3d:27:aa:d7:0d:f8:6e:df:e8:12:e9:7d:c1:08:8f:
f7:7a:3f:35:12:ee:02:16:2b:c2:64:59:cb:2b:6b:78:25:fa:
98:62:24:49:4d:65:1d:37:86:3f:46:c2:35:ca:1c:23:12:95:
35:74:59:09:5a:c3:25:a4:40:cf:38:92:19:ce:c2:b4:bc:1c:
a3:67:1e:15
-----BEGIN CERTIFICATE-----
MIIFAzCCA+ugAwIBAgISAYVd9bM3vLkRbwdIKS3+WJNqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDExMWQ2ODE0Mzc1MjcxZDFhM2NiZDEyMTU1ZGIxMWQyYmQ0
MWE4ZDMwHhcNMjIxMjI5MTI1NzQxWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygyN2U3ZmNlZTU3ZjJmNWI3ZjE4NjZmODc5NTZiOTM0ODU2MDMwNTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgEot9hXbLL8UygFyWV13iNXkZQz+
RwXGz8xJQYNKbhY4yPiENF3j8y/shnke+NuT4hQHT4dkLXUeeuY3odwFYUL1xrgq
YPsuBZUIKMzLP+69YoyAc1i8Kqhvrba1dFpdiojzQvyzuZ+bRo2VZr2QYQ+LQKZc
uT9NlygJ09abHoFMwwbNpYku68KfH6DSsdFozC3gTnqnpu9aM0HqMkXQoG6I92vu
HKv1Ude1aatsG6yT/SR4nCrBqiJsaRBU1CehYjRyLg2AC0SDhE/SjF/PW6DmRYdl
4KAqvaGcNg5vy/vOY6ZconbVnWXRkYVEcQjphLev9geN0zjJfdHMekua9wIDAQAB
o4ICDzCCAgswHQYDVR0OBBYEFCfn/O5X8vW38YZvh5Vrk0hWAwUbMB8GA1UdIwQY
MBaAFBEdaBQ3UnHRo8vRIVXbEdK9QajTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQt
MjcxZDI1ZTIwNTc0LzEvSi1mODdsZnk5YmZ4aG0tSGxXdVRTRllEQlJzLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMS9hOGIxNGItZmIyNS00N2Y4LThiMGQtMjcxZDI1ZTIwNTc0
LzEvRVIxb0ZEZFNjZEdqeTlFaFZkc1IwcjFCcU5NLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCUGCCsGAQUFBwEHAQH/BBYwFDASBAIAATAMAwQALVgEAwQB
m4U+MA0GCSqGSIb3DQEBCwUAA4IBAQAPXCewkOep9Jir1IRWLmuR7PgnjYu8uhfz
noiBA3PieA6pQLZLj56WU7bFW1dI3gdxJmo9Boq+wqQubBcE0nrgrClcJshnYAM+
7OQ4DU+pY4flVZI/lLdEvcT/VSFqmUqjyCOdBrFD3JIv/kX4NsBNQtCTaIryJaUM
4pKk4pPddAG49oinz6sKq6adEDyc6/85PzlkZ5SrzueWORb6ytU6hD8NtnLnmhq4
S4C2n0QvkRs7ZvC8+V49J6rXDfhu3+gS6X3BCI/3ej81Eu4CFivCZFnLK2t4JfqY
YiRJTWUdN4Y/RsI1yhwjEpU1dFkJWsMlpEDPOJIZzsK0vByjZx4V
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:17 2023 by rpki-client on console-fra.rpki-client.org