Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/1-Kii5Eytj8x_RtPP4-Crzz3_sO0.roa
File: 1-Kii5Eytj8x_RtPP4-Crzz3_sO0.roa (raw, json)
Hash identifier: QuWXIaAk3DLD9PzKpKu2t5pRPOeTUiNfzfNyZJZyAdQ=
Subject key identifier: F8:A8:A2:E4:4C:AD:8F:CC:7F:46:D3:CF:E3:E0:AB:CF:3D:FF:B0:ED
Certificate issuer: /CN=525915b4c72407afb7941e5be294ac7133b107b3
Certificate serial: 037EDE76
Authority key identifier: 52:59:15:B4:C7:24:07:AF:B7:94:1E:5B:E2:94:AC:71:33:B1:07:B3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UlkVtMckB6-3lB5b4pSscTOxB7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/1-Kii5Eytj8x_RtPP4-Crzz3_sO0.roa
Signing time: Sat 01 Jan 2022 05:56:01 +0000
ROA not before: Sat 01 Jan 2022 05:56:01 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44683
IP address blocks: 45.152.244.0/22 maxlen: 22
2a0f:6d00::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 58646134 (0x37ede76)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=525915b4c72407afb7941e5be294ac7133b107b3
Validity
Not Before: Jan 1 05:56:01 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=f8a8a2e44cad8fcc7f46d3cfe3e0abcf3dffb0ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:35:44:8a:68:84:ed:80:2f:fd:5d:80:94:d4:
79:d6:37:42:0d:a4:a4:72:65:e7:65:10:f6:74:5d:
86:66:a1:19:5c:b1:86:f2:7b:61:92:4d:32:90:ea:
ab:74:86:2c:d4:93:a7:64:25:95:68:40:b6:64:b2:
88:59:ca:67:8a:e1:91:52:d8:d1:c0:2b:d1:f1:77:
81:fb:a4:ce:08:64:65:1a:75:f3:7d:99:56:43:77:
09:79:ad:72:c8:1c:d5:22:4f:aa:00:32:13:a6:0c:
f5:3c:72:fa:c4:e3:ce:0b:62:92:6f:87:b1:e2:9f:
32:88:61:d2:bb:3c:fe:66:33:87:91:a9:76:ad:a9:
ea:95:9b:63:40:19:c8:3a:fc:80:37:80:8b:41:cd:
33:7c:b8:26:64:45:64:7e:7a:12:34:27:26:0c:4f:
cd:8c:08:22:f5:0c:20:51:e1:28:58:cd:9b:6c:59:
e0:68:47:78:f4:11:9e:80:76:61:96:f6:8a:63:ca:
c2:96:b3:7b:9a:a9:f8:35:27:94:b1:b6:1a:6e:dc:
f6:58:03:82:3e:07:72:93:0e:ab:d3:ec:c5:71:9c:
1d:50:0c:ca:56:95:fb:25:e5:40:0f:31:6a:30:5d:
6d:9c:78:67:dc:8d:4b:5c:ae:6f:be:94:30:56:11:
0c:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A8:A2:E4:4C:AD:8F:CC:7F:46:D3:CF:E3:E0:AB:CF:3D:FF:B0:ED
X509v3 Authority Key Identifier:
keyid:52:59:15:B4:C7:24:07:AF:B7:94:1E:5B:E2:94:AC:71:33:B1:07:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UlkVtMckB6-3lB5b4pSscTOxB7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/1-Kii5Eytj8x_RtPP4-Crzz3_sO0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/851708-19f9-4ecc-a442-0ce3a2efc8dd/1/UlkVtMckB6-3lB5b4pSscTOxB7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.152.244.0/22
IPv6:
2a0f:6d00::/29
Signature Algorithm: sha256WithRSAEncryption
3b:b4:9b:3f:86:0c:de:72:da:02:14:dc:cc:6e:e1:88:cc:fc:
b3:e6:32:a3:4c:51:d5:95:04:f1:52:13:04:0a:ac:25:a6:54:
18:01:d5:c2:78:f7:e4:01:82:e5:33:55:62:c0:94:6a:2f:55:
69:3b:9c:e1:19:b8:7e:c2:5a:3d:a1:e8:8a:90:86:9f:5f:2f:
c1:4c:ba:59:c6:e4:f0:fc:8d:c9:3f:30:73:ac:3b:30:d8:26:
5b:5d:b9:b2:9b:a1:52:30:ca:e0:5a:1c:4f:d2:07:8d:83:b4:
3e:3b:5e:64:bf:9a:70:dc:97:77:7f:62:ba:90:ac:41:bc:c8:
8d:02:5c:bf:63:83:4e:91:5a:b3:2a:d6:61:ad:d6:e7:85:76:
90:f7:0c:ee:28:25:53:4b:5e:be:e8:47:71:50:4a:31:e9:06:
e3:be:e5:ba:aa:23:9e:dd:1a:79:06:00:9b:95:8a:70:30:ff:
d0:b8:12:95:07:b2:fa:cb:e4:ab:44:c8:e0:b3:c5:de:50:87:
64:59:03:7d:c6:3c:71:2f:48:8a:0f:bc:03:6f:06:65:96:5f:
d6:ef:15:05:98:fe:6d:30:ac:72:13:52:b7:14:0b:1a:5b:d7:
f8:2f:3e:2b:b4:34:8c:c4:de:09:07:4f:a0:48:3a:99:2e:33:
4d:ef:d0:b1
-----BEGIN CERTIFICATE-----
MIIE/zCCA+egAwIBAgIEA37edjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
MjU5MTViNGM3MjQwN2FmYjc5NDFlNWJlMjk0YWM3MTMzYjEwN2IzMB4XDTIyMDEw
MTA1NTYwMVoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZjhhOGEyZTQ0Y2Fk
OGZjYzdmNDZkM2NmZTNlMGFiY2YzZGZmYjBlZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBALg1RIpohO2AL/1dgJTUedY3Qg2kpHJl52UQ9nRdhmahGVyx
hvJ7YZJNMpDqq3SGLNSTp2QllWhAtmSyiFnKZ4rhkVLY0cAr0fF3gfukzghkZRp1
832ZVkN3CXmtcsgc1SJPqgAyE6YM9Txy+sTjzgtikm+HseKfMohh0rs8/mYzh5Gp
dq2p6pWbY0AZyDr8gDeAi0HNM3y4JmRFZH56EjQnJgxPzYwIIvUMIFHhKFjNm2xZ
4GhHePQRnoB2YZb2imPKwpaze5qp+DUnlLG2Gm7c9lgDgj4HcpMOq9PsxXGcHVAM
ylaV+yXlQA8xajBdbZx4Z9yNS1yub76UMFYRDJ0CAwEAAaOCAhkwggIVMB0GA1Ud
DgQWBBT4qKLkTK2PzH9G08/j4KvPPf+w7TAfBgNVHSMEGDAWgBRSWRW0xyQHr7eU
HlvilKxxM7EHszAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1Vsa1Z0TWNrQjYtM2xCNWI0cFNzY1RPeEI3TS5jZXIwgY4GCCsGAQUFBwELBIGB
MH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjUvODUxNzA4LTE5ZjktNGVjYy1hNDQyLTBjZTNhMmVmYzhkZC8x
LzEtS2lpNUV5dGo4eF9SdFBQNC1Dcnp6M19zTzAucm9hMIGBBgNVHR8EejB4MHag
dKByhnByc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1
Lzg1MTcwOC0xOWY5LTRlY2MtYTQ0Mi0wY2UzYTJlZmM4ZGQvMS9VbGtWdE1ja0I2
LTNsQjViNHBTc2NUT3hCN00uY3JsMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIw
LgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYDBAItmPQwDQQCAAIwBwMFAyoPbQAw
DQYJKoZIhvcNAQELBQADggEBADu0mz+GDN5y2gIU3Mxu4YjM/LPmMqNMUdWVBPFS
EwQKrCWmVBgB1cJ49+QBguUzVWLAlGovVWk7nOEZuH7CWj2h6IqQhp9fL8FMulnG
5PD8jck/MHOsOzDYJltdubKboVIwyuBaHE/SB42DtD47XmS/mnDcl3d/YrqQrEG8
yI0CXL9jg06RWrMq1mGt1ueFdpD3DO4oJVNLXr7oR3FQSjHpBuO+5bqqI57dGnkG
AJuVinAw/9C4EpUHsvrL5KtEyOCzxd5Qh2RZA33GPHEvSIoPvANvBmWWX9bvFQWY
/m0wrHITUrcUCxpb1/gvPiu0NIzE3gkHT6BIOpkuM03v0LE=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:06:31 2023 by rpki-client on console-fra.rpki-client.org