Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/dSdieXaIns58R7HAOc7RBdeNeC4.roa
File: dSdieXaIns58R7HAOc7RBdeNeC4.roa (raw, json)
Hash identifier: VSh92aMRfdbtZSVDgLEko1f4wDa2XW5VtAXYpTHQoFY=
Subject key identifier: 75:27:62:79:76:88:9E:CE:7C:47:B1:C0:39:CE:D1:05:D7:8D:78:2E
Certificate issuer: /CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Certificate serial: 01825DE8F178BFDA5B7159CDF8B7BDB8AAEB
Authority key identifier: 2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/dSdieXaIns58R7HAOc7RBdeNeC4.roa
Signing time: Tue 02 Aug 2022 09:35:23 +0000
ROA not before: Tue 02 Aug 2022 09:35:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 834
IP address blocks: 45.155.64.0/23 maxlen: 24
45.155.66.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:82:5d:e8:f1:78:bf:da:5b:71:59:cd:f8:b7:bd:b8:aa:eb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b145a8bdf2bca150f25ed54a277b8f653efdb3e
Validity
Not Before: Aug 2 09:35:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=7527627976889ece7c47b1c039ced105d78d782e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8a:d1:d3:7d:2c:50:5f:5e:ea:3c:39:6a:38:
be:8b:d3:80:af:ca:1b:f8:be:0a:7c:80:5c:bc:5d:
8b:29:76:89:e1:8e:73:eb:ec:ac:f1:57:cd:61:00:
7e:c9:64:dd:a8:d6:09:44:af:70:39:8c:65:3e:4c:
34:3c:8e:9d:a5:8e:44:e7:69:c4:ff:f7:c1:df:d8:
9f:a2:e6:66:d5:19:63:10:4c:73:51:b6:3a:fe:fa:
02:01:ff:a0:fc:0d:36:db:61:ef:1b:7b:1a:e0:ed:
1a:5c:3f:a0:ac:37:4f:e2:e5:da:1d:b1:f2:f1:e3:
a6:2a:1f:7f:9c:68:aa:12:ea:08:b0:61:3d:10:a8:
f5:ed:9b:31:08:69:70:88:1f:95:52:f0:3a:94:74:
ab:79:95:8c:10:33:40:eb:eb:c4:fe:62:b2:22:a6:
c9:cf:42:42:9a:71:4b:3a:c2:58:fa:00:0d:a1:4f:
12:bb:f1:fa:f0:9c:02:56:6b:21:94:ef:c0:bd:ed:
e7:9d:5e:18:a7:db:b9:f3:48:9f:80:f0:4e:45:6e:
e5:40:14:53:1f:e7:94:0e:6f:6d:86:fa:6f:00:6f:
f1:90:49:77:3e:0a:eb:2f:c6:d0:42:a6:f2:ea:9c:
b9:d0:63:5a:f0:ab:09:be:16:6e:c2:e5:6a:e3:a4:
5c:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:27:62:79:76:88:9E:CE:7C:47:B1:C0:39:CE:D1:05:D7:8D:78:2E
X509v3 Authority Key Identifier:
keyid:2B:14:5A:8B:DF:2B:CA:15:0F:25:ED:54:A2:77:B8:F6:53:EF:DB:3E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxRai98ryhUPJe1Uone49lPv2z4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/dSdieXaIns58R7HAOc7RBdeNeC4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/0d8c8f-ff2c-4da8-b443-3040bed3cccd/1/KxRai98ryhUPJe1Uone49lPv2z4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.155.64.0/22
Signature Algorithm: sha256WithRSAEncryption
4e:ef:81:46:6d:cb:92:1e:1b:dd:05:dc:fe:b3:55:aa:21:bd:
52:39:0e:ff:bc:c2:ed:06:a8:29:be:1a:dc:46:91:b9:36:b5:
f5:90:e0:98:12:6d:9c:4b:47:6b:27:49:52:80:49:d1:5d:b9:
d5:62:a1:9c:e2:c7:02:8a:ca:4f:ca:46:11:76:78:23:2c:59:
12:b4:5d:cf:be:af:38:3a:26:e7:0f:45:ac:05:a7:d6:56:79:
44:d2:b3:38:97:9e:25:d0:18:0b:f1:2e:e9:0b:ec:3b:fe:90:
0c:76:5a:12:37:c3:2b:cd:32:b2:db:78:8f:62:d5:6e:88:f3:
33:8b:d6:8b:fc:5f:3c:ec:e2:50:8c:b9:67:2b:04:ec:b0:f0:
4a:d5:27:cb:17:c7:fc:70:66:67:a5:ee:92:31:6a:3e:12:90:
4f:15:a8:08:28:b6:ef:0a:94:60:7d:59:fa:77:11:e1:e6:b8:
c0:bd:12:2b:c0:3b:d4:cb:5f:aa:87:10:7d:53:22:9e:74:7a:
48:20:4d:32:70:ed:f6:30:60:41:86:bf:9a:76:ab:61:3d:d8:
38:f3:23:54:fd:27:a1:11:82:a1:61:a9:8a:5c:56:45:16:eb:
60:0f:39:8b:84:14:39:33:02:72:a5:8a:e5:3a:09:a9:36:7a:
05:80:e8:75
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYJd6PF4v9pbcVnN+Le9uKrrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiMTQ1YThiZGYyYmNhMTUwZjI1ZWQ1NGEyNzdiOGY2NTNl
ZmRiM2UwHhcNMjIwODAyMDkzNTIzWhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg3NTI3NjI3OTc2ODg5ZWNlN2M0N2IxYzAzOWNlZDEwNWQ3OGQ3ODJlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo4rR030sUF9e6jw5aji+i9OAr8ob
+L4KfIBcvF2LKXaJ4Y5z6+ys8VfNYQB+yWTdqNYJRK9wOYxlPkw0PI6dpY5E52nE
//fB39ifouZm1RljEExzUbY6/voCAf+g/A0222HvG3sa4O0aXD+grDdP4uXaHbHy
8eOmKh9/nGiqEuoIsGE9EKj17ZsxCGlwiB+VUvA6lHSreZWMEDNA6+vE/mKyIqbJ
z0JCmnFLOsJY+gANoU8Su/H68JwCVmshlO/Ave3nnV4Yp9u580ifgPBORW7lQBRT
H+eUDm9thvpvAG/xkEl3PgrrL8bQQqby6py50GNa8KsJvhZuwuVq46RcbQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFHUnYnl2iJ7OfEexwDnO0QXXjXguMB8GA1UdIwQY
MBaAFCsUWovfK8oVDyXtVKJ3uPZT79s+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMt
MzA0MGJlZDNjY2NkLzEvZFNkaWVYYUluczU4UjdIQU9jN1JCZGVOZUM0LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS8wZDhjOGYtZmYyYy00ZGE4LWI0NDMtMzA0MGJlZDNjY2Nk
LzEvS3hSYWk5OHJ5aFVQSmUxVW9uZTQ5bFB2Mno0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLZtAMA0G
CSqGSIb3DQEBCwUAA4IBAQBO74FGbcuSHhvdBdz+s1WqIb1SOQ7/vMLtBqgpvhrc
RpG5NrX1kOCYEm2cS0drJ0lSgEnRXbnVYqGc4scCispPykYRdngjLFkStF3Pvq84
OibnD0WsBafWVnlE0rM4l54l0BgL8S7pC+w7/pAMdloSN8MrzTKy23iPYtVuiPMz
i9aL/F887OJQjLlnKwTssPBK1SfLF8f8cGZnpe6SMWo+EpBPFagIKLbvCpRgfVn6
dxHh5rjAvRIrwDvUy1+qhxB9UyKedHpIIE0ycO32MGBBhr+adqthPdg48yNU/Seh
EYKhYamKXFZFFutgDzmLhBQ5MwJypYrlOgmpNnoFgOh1
-----END CERTIFICATE-----
Generated at Wed Dec 27 18:40:34 2023 by rpki-client on console.sobornost.net