Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/u0Xbp5gyHcmEOEMBn_17zlEFmT8.roa
File: u0Xbp5gyHcmEOEMBn_17zlEFmT8.roa (raw, json)
Hash identifier: KOPgfTkXXNwZIMIgt8mewXBo79yLdEcHL2E3P5fWYm0=
Subject key identifier: BB:45:DB:A7:98:32:1D:C9:84:38:43:01:9F:FD:7B:CE:51:05:99:3F
Certificate issuer: /CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Certificate serial: 0503D011
Authority key identifier: 11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/u0Xbp5gyHcmEOEMBn_17zlEFmT8.roa
Signing time: Sat 01 Jan 2022 11:56:12 +0000
ROA not before: Sat 01 Jan 2022 11:56:12 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212968
IP address blocks: 155.133.126.0/24 maxlen: 24
2a06:1e00:2d::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84135953 (0x503d011)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=111d6814375271d1a3cbd12155db11d2bd41a8d3
Validity
Not Before: Jan 1 11:56:12 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=bb45dba798321dc9843843019ffd7bce5105993f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:a9:96:27:0c:47:d8:f3:8a:95:c9:3b:47:f4:
1b:25:c2:2c:5c:bf:f8:e0:8a:e3:94:b7:71:13:a7:
d4:29:94:c1:30:b9:7c:8a:b3:fa:4c:3c:4b:c2:80:
be:bc:5f:3e:71:95:b6:ff:28:29:4f:76:76:8c:9f:
02:f6:e3:b8:17:c0:01:62:c4:53:40:fd:18:9b:23:
6a:04:c0:50:4c:a8:a0:2d:dd:44:00:69:ac:db:58:
11:81:24:c0:67:8f:d0:25:79:f1:7d:fd:51:d9:e7:
f2:a4:ef:37:71:eb:02:eb:16:14:b7:13:4a:07:94:
17:21:fb:9b:12:ac:4b:4c:ae:e4:dc:96:83:84:7d:
65:15:7c:c5:15:e9:0b:eb:c4:4e:46:b0:97:ec:b9:
00:2c:ae:db:4f:4d:7e:4a:6c:3d:75:df:f7:02:fc:
f1:66:ca:c6:bd:23:1b:66:c9:f9:08:c2:d6:19:72:
d4:9c:fd:a7:9e:28:05:9e:fa:e9:06:30:56:2f:89:
6f:b4:1e:d3:b3:8f:0b:86:71:e3:62:3c:c9:11:f2:
b3:f2:e2:91:38:dc:35:1b:ad:6e:0e:30:42:5f:33:
38:95:46:01:b7:e5:4a:ff:41:b3:6c:a9:c9:c6:c4:
e1:65:26:1b:b3:8b:69:75:8a:59:0c:62:4a:4e:2e:
33:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:45:DB:A7:98:32:1D:C9:84:38:43:01:9F:FD:7B:CE:51:05:99:3F
X509v3 Authority Key Identifier:
keyid:11:1D:68:14:37:52:71:D1:A3:CB:D1:21:55:DB:11:D2:BD:41:A8:D3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ER1oFDdScdGjy9EhVdsR0r1BqNM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/u0Xbp5gyHcmEOEMBn_17zlEFmT8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/a8b14b-fb25-47f8-8b0d-271d25e20574/1/ER1oFDdScdGjy9EhVdsR0r1BqNM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
155.133.126.0/24
IPv6:
2a06:1e00:2d::/48
Signature Algorithm: sha256WithRSAEncryption
35:fa:a1:47:0b:d0:2b:ed:71:8c:5e:60:4d:41:db:83:8d:0b:
14:69:41:ef:ba:73:a7:9a:2c:da:22:18:4d:9d:5f:c0:04:35:
ee:4d:4c:de:11:ba:9d:3d:57:49:72:b4:0b:20:13:a6:84:40:
c9:d7:71:b5:00:06:d3:01:28:f4:e9:58:bf:c0:26:1b:36:f3:
dc:a2:3b:e4:fd:10:3f:b4:57:5c:dc:cf:46:93:5e:64:7b:ea:
12:ec:93:c7:71:4d:1b:81:a2:17:97:a4:41:12:4d:3e:f5:b9:
07:90:dd:1c:45:01:35:f4:bb:03:66:40:54:f2:80:50:ba:dd:
1c:fc:90:30:5c:58:43:b7:5e:b6:d5:61:b0:5c:44:b1:01:dd:
90:dd:f7:f0:08:41:b9:95:55:4b:79:64:a9:01:1f:6f:a8:74:
57:d3:72:e5:ca:e3:d6:1a:3d:5b:a5:b3:7a:c5:e9:e8:a0:0f:
e4:c3:05:04:1e:c6:b2:f2:a3:59:96:26:c7:9a:15:c7:d7:22:
b3:f5:72:e7:f3:66:9e:6c:ee:72:6f:07:cf:06:87:a5:05:86:
be:22:c8:31:27:57:a0:a3:8f:57:ef:73:c4:87:22:a0:85:71:
28:13:4a:75:f0:a2:6a:83:a6:76:fc:8a:e3:7c:17:e0:2c:93:
29:2a:46:ab
-----BEGIN CERTIFICATE-----
MIIFADCCA+igAwIBAgIEBQPQETANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygx
MTFkNjgxNDM3NTI3MWQxYTNjYmQxMjE1NWRiMTFkMmJkNDFhOGQzMB4XDTIyMDEw
MTExNTYxMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYmI0NWRiYTc5ODMy
MWRjOTg0Mzg0MzAxOWZmZDdiY2U1MTA1OTkzZjCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALWplicMR9jzipXJO0f0GyXCLFy/+OCK45S3cROn1CmUwTC5
fIqz+kw8S8KAvrxfPnGVtv8oKU92doyfAvbjuBfAAWLEU0D9GJsjagTAUEyooC3d
RABprNtYEYEkwGeP0CV58X39Udnn8qTvN3HrAusWFLcTSgeUFyH7mxKsS0yu5NyW
g4R9ZRV8xRXpC+vETkawl+y5ACyu209NfkpsPXXf9wL88WbKxr0jG2bJ+QjC1hly
1Jz9p54oBZ766QYwVi+Jb7Qe07OPC4Zx42I8yRHys/LikTjcNRutbg4wQl8zOJVG
AbflSv9Bs2ypycbE4WUmG7OLaXWKWQxiSk4uM3UCAwEAAaOCAhowggIWMB0GA1Ud
DgQWBBS7RdunmDIdyYQ4QwGf/XvOUQWZPzAfBgNVHSMEGDAWgBQRHWgUN1Jx0aPL
0SFV2xHSvUGo0zAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0VSMW9GRGRTY2RHank5RWhWZHNSMHIxQnFOTS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjEvYThiMTRiLWZiMjUtNDdmOC04YjBkLTI3MWQyNWUyMDU3NC8x
L3UwWGJwNWd5SGNtRU9FTUJuXzE3emxFRm1UOC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEv
YThiMTRiLWZiMjUtNDdmOC04YjBkLTI3MWQyNWUyMDU3NC8xL0VSMW9GRGRTY2RH
ank5RWhWZHNSMHIxQnFOTS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAw
BggrBgEFBQcBBwEB/wQhMB8wDAQCAAEwBgMEAJuFfjAPBAIAAjAJAwcAKgYeAAAt
MA0GCSqGSIb3DQEBCwUAA4IBAQA1+qFHC9Ar7XGMXmBNQduDjQsUaUHvunOnmiza
IhhNnV/ABDXuTUzeEbqdPVdJcrQLIBOmhEDJ13G1AAbTASj06Vi/wCYbNvPcojvk
/RA/tFdc3M9Gk15ke+oS7JPHcU0bgaIXl6RBEk0+9bkHkN0cRQE19LsDZkBU8oBQ
ut0c/JAwXFhDt1621WGwXESxAd2Q3ffwCEG5lVVLeWSpAR9vqHRX03LlyuPWGj1b
pbN6xenooA/kwwUEHsay8qNZlibHmhXH1yKz9XLn82aebO5ybwfPBoelBYa+Isgx
J1ego49X73PEhyKghXEoE0p18KJqg6Z2/IrjfBfgLJMpKkar
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:10:12 2023 by rpki-client on console-ams.rpki-client.org