Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/i1RbNusJyIGh0QPBz0S4eKtia9w.roa
File: i1RbNusJyIGh0QPBz0S4eKtia9w.roa (raw, json)
Hash identifier: a5Dan0QEgDlG/JbmWGVMpMklOex+Cotwtji/p/v3wBI=
Subject key identifier: 8B:54:5B:36:EB:09:C8:81:A1:D1:03:C1:CF:44:B8:78:AB:62:6B:DC
Certificate issuer: /CN=bf56ba98c6745a63026d78fc284722399d2eb849
Certificate serial: 0188C8BB
Authority key identifier: BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/i1RbNusJyIGh0QPBz0S4eKtia9w.roa
Signing time: Sat 01 Jan 2022 01:56:03 +0000
ROA not before: Sat 01 Jan 2022 01:56:03 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 50959
IP address blocks: 45.15.43.0/24 maxlen: 24
2a07:4900::/29 maxlen: 29
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 25741499 (0x188c8bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf56ba98c6745a63026d78fc284722399d2eb849
Validity
Not Before: Jan 1 01:56:03 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=8b545b36eb09c881a1d103c1cf44b878ab626bdc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2f:ee:8e:ee:2e:75:db:d8:3b:4e:a4:3e:76:
3f:1a:7b:79:ad:53:58:b1:62:cd:7b:7c:2e:f3:bf:
8a:ea:b6:25:5e:25:ce:28:7c:b2:e6:84:81:b5:62:
d3:66:02:5f:21:f1:8d:d4:ee:54:09:19:07:40:f4:
cd:6e:6c:ec:4a:a5:36:e1:3b:87:ba:c7:e2:04:d1:
f8:fd:a7:85:1b:f3:69:b9:51:a5:df:2c:2a:ac:d6:
65:90:56:dc:4a:06:a2:a7:e4:a4:95:ed:c6:cc:59:
8a:99:eb:98:87:17:fa:f5:df:21:c0:8b:ee:c7:4b:
08:f2:18:28:01:35:15:b1:9c:c8:42:e4:2f:3e:15:
1c:62:60:1f:a2:6c:e1:e3:ed:fe:dc:f2:9d:55:77:
7f:2d:5f:2a:da:9e:19:7a:dd:3d:dd:b8:cf:d4:7e:
f7:9d:8f:da:cb:cd:e4:28:c9:df:2c:14:8f:1d:c8:
b0:63:7f:02:46:34:2c:af:10:3b:19:84:85:e9:5f:
f7:13:c7:b3:24:a4:7f:63:c6:ba:12:5d:10:7d:ba:
7d:92:90:3e:9e:8a:90:c5:60:95:68:00:fc:e1:ef:
18:0b:7b:bd:b6:98:1d:fd:0b:3d:1c:f1:04:aa:36:
e8:04:09:16:3e:d8:f1:e7:56:4c:72:9b:09:50:4b:
9d:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:54:5B:36:EB:09:C8:81:A1:D1:03:C1:CF:44:B8:78:AB:62:6B:DC
X509v3 Authority Key Identifier:
keyid:BF:56:BA:98:C6:74:5A:63:02:6D:78:FC:28:47:22:39:9D:2E:B8:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/i1RbNusJyIGh0QPBz0S4eKtia9w.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/3343d2-5253-4243-a01f-587fc84acefe/1/v1a6mMZ0WmMCbXj8KEciOZ0uuEk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.15.43.0/24
IPv6:
2a07:4900::/29
Signature Algorithm: sha256WithRSAEncryption
9b:f9:77:d0:7f:98:dc:45:55:bd:39:a5:86:81:ff:d9:41:17:
97:1e:b9:ca:2a:32:f6:66:98:07:08:9c:6d:63:a3:ee:88:a4:
a1:98:3b:12:63:e9:a8:9b:6c:03:07:9b:df:81:74:8c:af:85:
1c:06:c4:31:44:69:f6:0a:67:da:8a:89:e7:60:4d:ca:30:7f:
35:c1:0b:c9:3b:4d:e7:12:b7:42:e7:ac:ca:35:73:1c:da:11:
d0:b0:84:d0:4f:4a:58:4b:2f:21:88:bd:4e:4b:ec:b3:4a:4a:
3e:74:fa:3e:71:56:4d:0a:e4:de:7f:c3:e0:ba:7f:dd:bc:35:
5f:e7:59:cd:9b:38:f0:04:1c:a9:a9:53:44:fd:ef:59:0e:73:
e7:d6:05:cb:ce:35:ff:7f:48:a7:28:dc:7f:27:01:48:95:82:
16:3f:81:6e:70:06:64:49:2d:d7:a4:01:c8:9c:52:91:96:27:
1a:78:8c:81:2e:4c:e4:c9:88:b9:ab:bd:70:be:e7:f5:01:b7:
e7:c2:76:90:89:21:c4:fa:7d:cd:06:13:e8:f6:91:de:5c:17:
7d:ea:03:ab:d2:28:64:31:70:19:5b:f7:45:a9:18:ad:bb:81:
c9:f0:7f:2e:21:32:71:1e:26:ef:2b:c6:74:40:05:c6:ad:a6:
5d:ff:ba:db
-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgIEAYjIuzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhi
ZjU2YmE5OGM2NzQ1YTYzMDI2ZDc4ZmMyODQ3MjIzOTlkMmViODQ5MB4XDTIyMDEw
MTAxNTYwM1oXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoOGI1NDViMzZlYjA5
Yzg4MWExZDEwM2MxY2Y0NGI4NzhhYjYyNmJkYzCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAJYv7o7uLnXb2DtOpD52Pxp7ea1TWLFizXt8LvO/iuq2JV4l
zih8suaEgbVi02YCXyHxjdTuVAkZB0D0zW5s7EqlNuE7h7rH4gTR+P2nhRvzablR
pd8sKqzWZZBW3EoGoqfkpJXtxsxZipnrmIcX+vXfIcCL7sdLCPIYKAE1FbGcyELk
Lz4VHGJgH6Js4ePt/tzynVV3fy1fKtqeGXrdPd24z9R+952P2svN5CjJ3ywUjx3I
sGN/AkY0LK8QOxmEhelf9xPHsySkf2PGuhJdEH26fZKQPp6KkMVglWgA/OHvGAt7
vbaYHf0LPRzxBKo26AQJFj7Y8edWTHKbCVBLnUcCAwEAAaOCAhgwggIUMB0GA1Ud
DgQWBBSLVFs26wnIgaHRA8HPRLh4q2Jr3DAfBgNVHSMEGDAWgBS/VrqYxnRaYwJt
ePwoRyI5nS64STAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L3YxYTZtTVowV21NQ2JYajhLRWNpT1owdXVFay5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvZjcvMzM0M2QyLTUyNTMtNDI0My1hMDFmLTU4N2ZjODRhY2VmZS8x
L2kxUmJOdXNKeUlHaDBRUEJ6MFM0ZUt0aWE5dy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcv
MzM0M2QyLTUyNTMtNDI0My1hMDFmLTU4N2ZjODRhY2VmZS8xL3YxYTZtTVowV21N
Q2JYajhLRWNpT1owdXVFay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAu
BggrBgEFBQcBBwEB/wQfMB0wDAQCAAEwBgMEAC0PKzANBAIAAjAHAwUDKgdJADAN
BgkqhkiG9w0BAQsFAAOCAQEAm/l30H+Y3EVVvTmlhoH/2UEXlx65yioy9maYBwic
bWOj7oikoZg7EmPpqJtsAweb34F0jK+FHAbEMURp9gpn2oqJ52BNyjB/NcELyTtN
5xK3QuesyjVzHNoR0LCE0E9KWEsvIYi9Tkvss0pKPnT6PnFWTQrk3n/D4Lp/3bw1
X+dZzZs48AQcqalTRP3vWQ5z59YFy841/39IpyjcfycBSJWCFj+BbnAGZEkt16QB
yJxSkZYnGniMgS5M5MmIuau9cL7n9QG358J2kIkhxPp9zQYT6PaR3lwXfeoDq9Io
ZDFwGVv3RakYrbuByfB/LiEycR4m7yvGdEAFxq2mXf+62w==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:00:03 2024 by rpki-client on console-fra.rpki-client.org